AWS security-lake documentation change
Summary
Fixed a broken URL for KMS key policy modification documentation.
Security assessment
The change addresses a documentation link issue without modifying security guidance or fixing vulnerabilities.
Diff
diff --git a/security-lake/latest/userguide/data-protection.md b/security-lake/latest/userguide/data-protection.md index 1d10f5c26..13952e16e 100644 --- a//security-lake/latest/userguide/data-protection.md +++ b//security-lake/latest/userguide/data-protection.md @@ -57 +57 @@ Security Lake doesn't need `Decrypt` permissions. When authorized users of the k -If you want to use an existing KMS key to encrypt Security Lake data, you must modify the key policy for the KMS key. The key policy must allow the IAM role associated with the Lake Formation data lake location to use the KMS key to decrypt the data. For instructions on how you can change the key policy for a KMS key, see [Changing a key policy](https://docs.aws.amazon.com/kms/latest/developerguide/key-policy-modifying.html) in the AWS Key Management Service Developer Guide. +If you want to use an existing KMS key to encrypt Security Lake data, you must modify the key policy for the KMS key. The key policy must allow the IAM role associated with the Lake Formation data lake location to use the KMS key to decrypt the data. For instructions on how you can change the key policy for a KMS key, see [Changing a key policy](https://docs.aws.amazon.com//kms/latest/developerguide/key-policy-modifying.html) in the AWS Key Management Service Developer Guide.