AWS Security ChangesHomeSearch

AWS AmazonRDS documentation change

Service: AmazonRDS · 2026-02-19 · Documentation low

File: AmazonRDS/latest/UserGuide/Overview.Encryption.md

Summary

Added 'logs' to the list of data encrypted at rest and improved sentence structure

Security assessment

The change explicitly adds database logs to the scope of encrypted resources, enhancing security documentation by clarifying the protection of audit trails. However, there's no evidence this addresses a specific vulnerability.

Diff

diff --git a/AmazonRDS/latest/UserGuide/Overview.Encryption.md b/AmazonRDS/latest/UserGuide/Overview.Encryption.md
index 34f12463b..f44aa594a 100644
--- a//AmazonRDS/latest/UserGuide/Overview.Encryption.md
+++ b//AmazonRDS/latest/UserGuide/Overview.Encryption.md
@@ -9 +9 @@ Overview of encrypting Amazon RDS resourcesEncrypting DB instanceDetermining whe
-Amazon RDS can encrypt your Amazon RDS DB instances. Data that is encrypted at rest includes the underlying storage for DB instances, its automated backups, read replicas, and snapshots.
+Amazon RDS can encrypt your Amazon RDS DB instances. Data that is encrypted at rest includes the underlying storage for DB instances, its logs, automated backups, read replicas, and snapshots.
@@ -11 +11,3 @@ Amazon RDS can encrypt your Amazon RDS DB instances. Data that is encrypted at r
-Amazon RDS encrypted DB instances use the industry standard AES-256 encryption algorithm to encrypt your data on the server that hosts your Amazon RDS DB instances. After your data is encrypted, Amazon RDS handles authentication of access and decryption of your data transparently with a minimal impact on performance. You don't need to modify your database client applications to use encryption.
+Amazon RDS encrypted DB instances use the industry standard AES-256 encryption algorithm to encrypt your data on the server that hosts your Amazon RDS DB instances.
+
+After your data is encrypted, Amazon RDS handles authentication of access and decryption of your data transparently with a minimal impact on performance. You don't need to modify your database client applications to use encryption.