AWS Security ChangesHomeSearch

AWS kms documentation change

Service: kms · 2026-01-19 · Documentation low

File: kms/latest/developerguide/rotate-keys.md

Summary

Removed 'multi-Region KMS keys with imported key material' from manual rotation requirements

Security assessment

This change updates key rotation guidance but shows no evidence of addressing a specific vulnerability. The removal suggests either a documentation correction or service update, but without explicit security context or CVE reference.

Diff

diff --git a/kms/latest/developerguide/rotate-keys.md b/kms/latest/developerguide/rotate-keys.md
index 4ca0fb391..3e3668020 100644
--- a//kms/latest/developerguide/rotate-keys.md
+++ b//kms/latest/developerguide/rotate-keys.md
@@ -21 +21 @@ The KMS key is the same logical resource, regardless of whether or how many time
-You might decide to create a new KMS key and use it in place of the original KMS key. This has the same effect as rotating the key material in an existing KMS key, so it's often thought of as [manually rotating the key](./rotate-keys-manually.html). Manual rotation is a good choice when you want to rotate KMS keys that are not eligible for automatic or on-demand key rotation, including [asymmetric KMS keys](./symmetric-asymmetric.html), [HMAC KMS keys](./hmac.html), KMS keys in [custom key stores](./key-store-overview.html#custom-key-store-overview), and multi-Region KMS keys with [imported key material](./importing-keys.html).
+You might decide to create a new KMS key and use it in place of the original KMS key. This has the same effect as rotating the key material in an existing KMS key, so it's often thought of as [manually rotating the key](./rotate-keys-manually.html). Manual rotation is a good choice when you want to rotate KMS keys that are not eligible for automatic or on-demand key rotation, including [asymmetric KMS keys](./symmetric-asymmetric.html), [HMAC KMS keys](./hmac.html) and KMS keys in [custom key stores](./key-store-overview.html#custom-key-store-overview).