AWS verifiedpermissions documentation change
Summary
Added support for customer managed keys (CMK) and updated section heading
Security assessment
Introduces documentation for a new security feature (customer managed keys) but doesn't address any specific security vulnerability or incident.
Diff
diff --git a/verifiedpermissions/latest/userguide/security-data-protection.md b/verifiedpermissions/latest/userguide/security-data-protection.md index 9c7b84426..82bb7e05d 100644 --- a//verifiedpermissions/latest/userguide/security-data-protection.md +++ b//verifiedpermissions/latest/userguide/security-data-protection.md @@ -45 +45,3 @@ This guidance applies to both principal and resource identifiers. Always use ide -Amazon Verified Permissions automatically encrypts all customer data such as policies with an AWS managed key, so the use of a customer managed key is neither necessary nor supported. +Amazon Verified Permissions automatically encrypts all customer data such as policies with an AWS managed key. Amazon Verified Permissions also allows for customers to utilize a customer managed key to encrypt their data. + +For detailed information about using customer managed keys for encryption, see [Encrypting Resources in Amazon Verified Permissions](./security-data-protection-cmk.html). @@ -55 +57 @@ Security -Identity and access management +Customer managed keys