AWS AWSCloudFormation documentation change
Summary
Added 'CertificateArn' property for content key encryption
Security assessment
Documents new encryption capability but shows no evidence of fixing a specific vulnerability. Adds security feature documentation for DRM key encryption.
Diff
diff --git a/AWSCloudFormation/latest/TemplateReference/aws-properties-mediapackagev2-originendpoint-spekekeyprovider.md b/AWSCloudFormation/latest/TemplateReference/aws-properties-mediapackagev2-originendpoint-spekekeyprovider.md index f0e4b7ebe..ce2909404 100644 --- a//AWSCloudFormation/latest/TemplateReference/aws-properties-mediapackagev2-originendpoint-spekekeyprovider.md +++ b//AWSCloudFormation/latest/TemplateReference/aws-properties-mediapackagev2-originendpoint-spekekeyprovider.md @@ -18,0 +19 @@ To declare this entity in your CloudFormation template, use the following syntax + "CertificateArn" : String, @@ -29,0 +31 @@ To declare this entity in your CloudFormation template, use the following syntax + CertificateArn: String @@ -40,0 +43,17 @@ To declare this entity in your CloudFormation template, use the following syntax +`CertificateArn` + + +The ARN for the certificate that you imported to AWS Certificate Manager to add content key encryption to this endpoint. For this feature to work, your DRM key provider must support content key encryption. + +_Required_ : No + + _Type_ : String + + _Pattern_ : `^arn:([^:\n]+):acm:([^:\n]+):([0-9]+):certificate/[a-zA-Z0-9-_]+$` + +_Minimum_ : `20` + + _Maximum_ : `2048` + + _Update requires_ : [No interruption](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/using-cfn-updating-stacks-update-behaviors.html#update-no-interrupt) +