AWS Security ChangesHomeSearch

AWS prescriptive-guidance documentation change

Service: prescriptive-guidance · 2026-02-13 · Documentation medium

File: prescriptive-guidance/latest/patterns/automatically-remediate-unencrypted-amazon-rds-db-instances-and-clusters.md

Summary

Replaced 'Automatically rotate IAM user access keys' with 'Automatically validate and deploy IAM policies and roles'

Security assessment

Changes security best practice recommendation from key rotation to IAM policy validation. Adds documentation about security feature (IAM policy validation) but doesn't indicate a specific vulnerability.

Diff

diff --git a/prescriptive-guidance/latest/patterns/automatically-remediate-unencrypted-amazon-rds-db-instances-and-clusters.md b/prescriptive-guidance/latest/patterns/automatically-remediate-unencrypted-amazon-rds-db-instances-and-clusters.md
index 459916f59..7ca466cb6 100644
--- a//prescriptive-guidance/latest/patterns/automatically-remediate-unencrypted-amazon-rds-db-instances-and-clusters.md
+++ b//prescriptive-guidance/latest/patterns/automatically-remediate-unencrypted-amazon-rds-db-instances-and-clusters.md
@@ -248 +248 @@ Automatically audit access from public IP addresses
-Automatically rotate IAM user access keys
+Automatically validate and deploy IAM policies and roles