AWS sagemaker-unified-studio documentation change
Summary
Added documentation about KMS permissions for customer-managed keys.
Security assessment
Documents encryption capability using customer-managed keys (security feature), but doesn't indicate any security vulnerability resolution.
Diff
diff --git a/sagemaker-unified-studio/latest/adminguide/security-iam-awsmanpol-SageMakerStudioAdminIAMDefaultExecutionPolicy.md b/sagemaker-unified-studio/latest/adminguide/security-iam-awsmanpol-SageMakerStudioAdminIAMDefaultExecutionPolicy.md index fee15e530..41720d55b 100644 --- a//sagemaker-unified-studio/latest/adminguide/security-iam-awsmanpol-SageMakerStudioAdminIAMDefaultExecutionPolicy.md +++ b//sagemaker-unified-studio/latest/adminguide/security-iam-awsmanpol-SageMakerStudioAdminIAMDefaultExecutionPolicy.md @@ -54,0 +55,2 @@ This is the administrative execution policy for using IAM roles with Amazon Sage + * AWS KMS permissions are required to support customer managed key. Resources provisioned by Amazon SageMaker Unified Studio can be encrypted with your customer managed key. +