AWS Security ChangesHomeSearch

AWS wellarchitected documentation change

Service: wellarchitected · 2025-12-10 · Documentation low

File: wellarchitected/2023-10-03/framework/sec_protect_data_rest_key_mgmt.md

Summary

Changed 'Security Hub' to 'Security Hub CSPM' in key management monitoring recommendation

Security assessment

Branding update without substantive security changes; key rotation and policy checks remain same security controls

Diff

diff --git a/wellarchitected/2023-10-03/framework/sec_protect_data_rest_key_mgmt.md b/wellarchitected/2023-10-03/framework/sec_protect_data_rest_key_mgmt.md
index 2e2081a52..53c8ed6e8 100644
--- a//wellarchitected/2023-10-03/framework/sec_protect_data_rest_key_mgmt.md
+++ b//wellarchitected/2023-10-03/framework/sec_protect_data_rest_key_mgmt.md
@@ -68 +68 @@ Most AWS services use AWS KMS in a way that is transparent to you - your only re
-  6. Enable [Security Hub](https://docs.aws.amazon.com/securityhub/latest/userguide/kms-controls.html) to receive notifications if there are misconfigured key policies, keys scheduled for deletion, or keys without automated rotation enabled. 
+  6. Enable [Security Hub CSPM](https://docs.aws.amazon.com/securityhub/latest/userguide/kms-controls.html) to receive notifications if there are misconfigured key policies, keys scheduled for deletion, or keys without automated rotation enabled.