AWS Security ChangesHomeSearch

AWS aws-backup documentation change

Service: aws-backup · 2025-11-07 · Documentation low

File: aws-backup/latest/devguide/API_DescribeBackupVault.md

Summary

Added EncryptionKeyType field to response documentation showing encryption key ownership type

Security assessment

Provides visibility into encryption key types without addressing vulnerabilities. Improves security transparency but isn't a security fix.

Diff

diff --git a/aws-backup/latest/devguide/API_DescribeBackupVault.md b/aws-backup/latest/devguide/API_DescribeBackupVault.md
index 67851f2c1..008bd1f1b 100644
--- a//aws-backup/latest/devguide/API_DescribeBackupVault.md
+++ b//aws-backup/latest/devguide/API_DescribeBackupVault.md
@@ -48,0 +49 @@ The request does not have a request body.
+       "EncryptionKeyType": "**_string_** ",
@@ -108,0 +110,9 @@ Type: String
+**EncryptionKeyType **
+    
+
+The type of encryption key used for the backup vault. Valid values are CUSTOMER_MANAGED_KMS_KEY for customer-managed keys or AWS_OWNED_KMS_KEY for AWS-owned keys.
+
+Type: String
+
+Valid Values: `AWS_OWNED_KMS_KEY | CUSTOMER_MANAGED_KMS_KEY`
+