AWS deadline-cloud documentation change
Summary
Added explicit warning about irreversible data loss when deleting KMS keys.
Security assessment
Strengthens security documentation about critical KMS implications but doesn't fix a vulnerability. Highlights severe operational risk.
Diff
diff --git a/deadline-cloud/latest/developerguide/key-management.md b/deadline-cloud/latest/developerguide/key-management.md index 7c73d075a..237e2a1c2 100644 --- a//deadline-cloud/latest/developerguide/key-management.md +++ b//deadline-cloud/latest/developerguide/key-management.md @@ -379 +379 @@ The following example CloudTrail event occurs when encrypting values using the c -Deleting a customer managed KMS key in AWS Key Management Service (AWS KMS) is destructive and potentially dangerous. It irreversibly deletes the key material and all metadata associated with the key. After a customer managed KMS key is deleted, you can no longer decrypt the data that was encrypted by that key. This means that the data becomes unrecoverable. +Deleting a customer managed KMS key in AWS Key Management Service (AWS KMS) is destructive and potentially dangerous. It irreversibly deletes the key material and all metadata associated with the key. After a customer managed KMS key is deleted, you can no longer decrypt the data that was encrypted by that key. Deleting the key means that the data becomes unrecoverable.