AWS Security ChangesHomeSearch

AWS AWSCloudFormation documentation change

Service: AWSCloudFormation · 2025-11-19 · Documentation low

File: AWSCloudFormation/latest/UserGuide/security-data-protection.md

Summary

Updated branding from 'AWS CloudFormation' to 'CloudFormation' throughout document. Maintained same security recommendations regarding sensitive data handling and encryption practices.

Security assessment

Changes are purely branding/terminology updates without altering security guidance. No evidence of addressing vulnerabilities or new security features.

Diff

diff --git a/AWSCloudFormation/latest/UserGuide/security-data-protection.md b/AWSCloudFormation/latest/UserGuide/security-data-protection.md
index 0bba5f138..55ba6a3e2 100644
--- a//AWSCloudFormation/latest/UserGuide/security-data-protection.md
+++ b//AWSCloudFormation/latest/UserGuide/security-data-protection.md
@@ -7 +7 @@ Encryption at restEncryption in transitInternetwork traffic privacy
-# Data protection in AWS CloudFormation
+# Data protection in CloudFormation
@@ -28 +28 @@ For data protection purposes, we recommend that you protect AWS account credenti
-We strongly recommend that you never put confidential or sensitive information, such as your customers' email addresses, into tags or free-form text fields such as a **Name** field. This includes when you work with AWS CloudFormation or other AWS services using the console, API, AWS CLI, or AWS SDKs. Any data that you enter into tags or free-form text fields used for names may be used for billing or diagnostic logs. If you provide a URL to an external server, we strongly recommend that you do not include credentials information in the URL to validate your request to that server.
+We strongly recommend that you never put confidential or sensitive information, such as your customers' email addresses, into tags or free-form text fields such as a **Name** field. This includes when you work with CloudFormation or other AWS services using the console, API, AWS CLI, or AWS SDKs. Any data that you enter into tags or free-form text fields used for names may be used for billing or diagnostic logs. If you provide a URL to an external server, we strongly recommend that you do not include credentials information in the URL to validate your request to that server.
@@ -32 +32 @@ We strongly recommend that you never put confidential or sensitive information,
-Following the AWS shared responsibility model, AWS CloudFormation stores your data encrypted at rest. Customers are responsible for setting encryption and storage policies for data stored in their accounts. For example, we recommend enabling at-rest encryption for templates and other data stored in S3 buckets or SNS topics. Customers similarly define encryption settings for any data storage systems provisioned by CloudFormation.
+Following the AWS shared responsibility model, CloudFormation stores your data encrypted at rest. Customers are responsible for setting encryption and storage policies for data stored in their accounts. For example, we recommend enabling at-rest encryption for templates and other data stored in S3 buckets or SNS topics. Customers similarly define encryption settings for any data storage systems provisioned by CloudFormation.
@@ -36 +36 @@ Following the AWS shared responsibility model, AWS CloudFormation stores your da
-AWS CloudFormation uses encrypted channels for service communications under the shared responsibility model.
+CloudFormation uses encrypted channels for service communications under the shared responsibility model.
@@ -40 +40 @@ AWS CloudFormation uses encrypted channels for service communications under the
-AWS CloudFormation service communications are securely encrypted by default between Regions or Availability Zones.
+CloudFormation service communications are securely encrypted by default between Regions or Availability Zones.