AWS AmazonS3 documentation change
Summary
Updated AWS KMS documentation links with corrected URL formatting (added double slashes)
Security assessment
Changes are purely URL formatting fixes without substantive content modifications to security features or vulnerabilities. No security implications identified.
Diff
diff --git a/AmazonS3/latest/userguide/specifying-dsse-encryption.md b/AmazonS3/latest/userguide/specifying-dsse-encryption.md index 0a5ef48b7..82771d41b 100644 --- a//AmazonS3/latest/userguide/specifying-dsse-encryption.md +++ b//AmazonS3/latest/userguide/specifying-dsse-encryption.md @@ -17 +17 @@ You can use multi-Region AWS KMS keys in Amazon S3. However, Amazon S3 currently -If you want to use a KMS key that is owned by a different account, you must have permission to use the key. For more information about cross-account permissions for KMS keys, see [Creating KMS keys that other accounts can use](https://docs.aws.amazon.com/kms/latest/developerguide/key-policy-modifying-external-accounts.html#cross-account-console) in the _AWS Key Management Service Developer Guide_. +If you want to use a KMS key that is owned by a different account, you must have permission to use the key. For more information about cross-account permissions for KMS keys, see [Creating KMS keys that other accounts can use](https://docs.aws.amazon.com//kms/latest/developerguide/key-policy-modifying-external-accounts.html#cross-account-console) in the _AWS Key Management Service Developer Guide_. @@ -54 +54 @@ This section describes how to set or change the type of encryption of an object -Both the AWS managed key (`aws/s3`) and your customer managed keys appear in this list. For more information about customer managed keys, see [Customer keys and AWS keys](https://docs.aws.amazon.com/kms/latest/developerguide/concepts.html#key-mgmt) in the _AWS Key Management Service Developer Guide_. +Both the AWS managed key (`aws/s3`) and your customer managed keys appear in this list. For more information about customer managed keys, see [Customer keys and AWS keys](https://docs.aws.amazon.com//kms/latest/developerguide/concepts.html#key-mgmt) in the _AWS Key Management Service Developer Guide_. @@ -60 +60 @@ Both the AWS managed key (`aws/s3`) and your customer managed keys appear in thi -For more information about creating an AWS KMS key, see [Creating keys](https://docs.aws.amazon.com/kms/latest/developerguide/create-keys.html) in the _AWS Key Management Service Developer Guide_. +For more information about creating an AWS KMS key, see [Creating keys](https://docs.aws.amazon.com//kms/latest/developerguide/create-keys.html) in the _AWS Key Management Service Developer Guide_. @@ -66 +66 @@ You can use only KMS keys that are available in the same AWS Region as the bucke -Amazon S3 supports only symmetric encryption KMS keys, and not asymmetric KMS keys. For more information, see [Identifying asymmetric KMS keys](https://docs.aws.amazon.com/kms/latest/developerguide/find-symm-asymm.html) in the _AWS Key Management Service Developer Guide_. +Amazon S3 supports only symmetric encryption KMS keys, and not asymmetric KMS keys. For more information, see [Identifying asymmetric KMS keys](https://docs.aws.amazon.com//kms/latest/developerguide/find-symm-asymm.html) in the _AWS Key Management Service Developer Guide_. @@ -166 +166 @@ You can use the `x-amz-server-side-encryption-aws-kms-key-id` header to specify -When you use an AWS KMS key for server-side encryption in Amazon S3, you must choose a symmetric encryption KMS key. Amazon S3 supports only symmetric encryption KMS keys. For more information about these keys, see [Symmetric encryption KMS keys](https://docs.aws.amazon.com/kms/latest/developerguide/concepts.html#symmetric-cmks) in the _AWS Key Management Service Developer Guide_. +When you use an AWS KMS key for server-side encryption in Amazon S3, you must choose a symmetric encryption KMS key. Amazon S3 supports only symmetric encryption KMS keys. For more information about these keys, see [Symmetric encryption KMS keys](https://docs.aws.amazon.com//kms/latest/developerguide/concepts.html#symmetric-cmks) in the _AWS Key Management Service Developer Guide_. @@ -168 +168 @@ When you use an AWS KMS key for server-side encryption in Amazon S3, you must ch -When you upload a new object or copy an existing object, you can specify the use of DSSE-KMS to encrypt your data. To do this, add the `--server-side-encryption aws:kms:dsse` parameter to the request. Use the `--ssekms-key-id `example-key-id`` parameter to add your [customer managed AWS KMS key](https://docs.aws.amazon.com/kms/latest/developerguide/concepts.html#customer-cmk) that you created. If you specify `--server-side-encryption aws:kms:dsse`, but do not provide an AWS KMS key ID, then Amazon S3 will use the AWS managed key (`aws/s3`). +When you upload a new object or copy an existing object, you can specify the use of DSSE-KMS to encrypt your data. To do this, add the `--server-side-encryption aws:kms:dsse` parameter to the request. Use the `--ssekms-key-id `example-key-id`` parameter to add your [customer managed AWS KMS key](https://docs.aws.amazon.com//kms/latest/developerguide/concepts.html#customer-cmk) that you created. If you specify `--server-side-encryption aws:kms:dsse`, but do not provide an AWS KMS key ID, then Amazon S3 will use the AWS managed key (`aws/s3`).