AWS sns medium security documentation change
Summary
Added documentation about subscription suspension when exceeding 10 TPS for email endpoints
Security assessment
The change documents a rate limiting mechanism that prevents email endpoint abuse. This addresses potential denial-of-service risks by automatically suspending subscriptions that exceed message thresholds, which is a security control measure.
Diff
diff --git a/sns/latest/dg/sns-email-notifications.md b/sns/latest/dg/sns-email-notifications.md index a1df6d463..72d2d2778 100644 --- a//sns/latest/dg/sns-email-notifications.md +++ b//sns/latest/dg/sns-email-notifications.md @@ -24 +24,6 @@ You can subscribe an email address to an Amazon SNS topic using the AWS Manageme -To prevent mailing list recipients from unsubscribing all recipients from Amazon SNS topic emails, see [Set up an email subscription that requires authentication to unsubscribe](https://aws.amazon.com/premiumsupport/knowledge-center/prevent-unsubscribe-all-sns-topic/) from AWS Support. + * To prevent mailing list recipients from unsubscribing all recipients from Amazon SNS topic emails, see [Set up an email subscription that requires authentication to unsubscribe](https://aws.amazon.com/premiumsupport/knowledge-center/prevent-unsubscribe-all-sns-topic/) from AWS Support. + + * Exceeding the limit of 10 messages per second (TPS) for an email or email-json endpoint will trigger an automatic suspension of the subscription, placing it in a pending confirmation status. The subscription remains in PendingConfirmation state for 48 hours, after which it will be automatically deleted unless action is taken. + + +