AWS securityhub documentation change
Summary
Updated document title and references from 'Security Hub controls' to 'Security Hub CSPM controls'. Changed table headers from 'Security Hub default value' to 'Security Hub CSPM default value' in multiple sections.
Security assessment
Changes are branding updates adding 'CSPM' (Cloud Security Posture Management) terminology without addressing vulnerabilities or security features. No evidence of security vulnerability fixes or new security guidance.
Diff
diff --git a/securityhub/latest/userguide/s3-controls.md b/securityhub/latest/userguide/s3-controls.md index 2272604cb..46fd08489 100644 --- a//securityhub/latest/userguide/s3-controls.md +++ b//securityhub/latest/userguide/s3-controls.md @@ -7 +7 @@ -# Security Hub controls for Amazon S3 +# Security Hub CSPM controls for Amazon S3 @@ -9 +9 @@ -These AWS Security Hub controls evaluate the Amazon Simple Storage Service (Amazon S3) service and resources. The controls might not be available in all AWS Regions. For more information, see [Availability of controls by Region](./securityhub-regions.html#securityhub-regions-control-support). +These AWS Security Hub CSPM controls evaluate the Amazon Simple Storage Service (Amazon S3) service and resources. The controls might not be available in all AWS Regions. For more information, see [Availability of controls by Region](./securityhub-regions.html#securityhub-regions-control-support). @@ -338 +338 @@ For more information on configuring lifecycle on an Amazon S3 bucket, see [Setti -Parameter | Description | Type | Allowed custom values | Security Hub default value +Parameter | Description | Type | Allowed custom values | Security Hub CSPM default value @@ -392 +392 @@ To create an S3 bucket policy, see [Adding a bucket policy by using the Amazon S -Parameter | Description | Type | Allowed custom values | Security Hub default value +Parameter | Description | Type | Allowed custom values | Security Hub CSPM default value @@ -450 +450 @@ To use versioning on an S3 bucket, see [Enabling versioning on buckets](https:// -Parameter | Description | Type | Allowed custom values | Security Hub default value +Parameter | Description | Type | Allowed custom values | Security Hub CSPM default value @@ -596 +596 @@ To enable object-level logging for S3 buckets, see [Enabling CloudTrail event lo -**AWS Config rule:** `s3-mrap-public-access-blocked` (custom Security Hub rule) +**AWS Config rule:** `s3-mrap-public-access-blocked` (custom Security Hub CSPM rule) @@ -624 +624 @@ By default, all Block Public Access settings are enabled for an S3 Multi-Region -Parameter | Description | Type | Allowed custom values | Security Hub default value +Parameter | Description | Type | Allowed custom values | Security Hub CSPM default value