AWS Security ChangesHomeSearch

AWS kms documentation change

Service: kms · 2025-12-10 · Documentation low

File: kms/latest/developerguide/resource-limits.md

Summary

Reduced aliases per KMS key limit from 50 to 10 and increased on-demand rotation quota from 10 to 50.

Security assessment

These are quota adjustments with no direct evidence of addressing a security vulnerability. The alias reduction may enforce stricter resource management, but it's not explicitly security-related.

Diff

diff --git a/kms/latest/developerguide/resource-limits.md b/kms/latest/developerguide/resource-limits.md
index e0cafd279..24e34206c 100644
--- a//kms/latest/developerguide/resource-limits.md
+++ b//kms/latest/developerguide/resource-limits.md
@@ -20 +20 @@ AWS KMS keys | 100,000 | Customer managed keys | Yes
-Aliases per KMS key | 50 | Customer created aliases | Yes  
+Aliases per KMS key | 10 | Customer created aliases | Yes  
@@ -23 +23 @@ Custom key store resource quota | 10 | AWS account and Region | Yes
-On-demand rotation | 10 | Customer managed keys | No  
+On-demand rotation | 50 | Customer managed keys | No