AWS cli documentation change
Summary
Added documentation for StorageEncryptionType parameter describing encryption options for point-in-time restores
Security assessment
Clarifies encryption configuration during restoration but shows no evidence of addressing a specific security flaw. Improves security documentation quality.
Diff
diff --git a/cli/latest/reference/rds/restore-db-instance-to-point-in-time.md b/cli/latest/reference/rds/restore-db-instance-to-point-in-time.md index 4d4ce8b08..f484546aa 100644 --- a//cli/latest/reference/rds/restore-db-instance-to-point-in-time.md +++ b//cli/latest/reference/rds/restore-db-instance-to-point-in-time.md @@ -15 +15 @@ - * [AWS CLI 2.33.22 Command Reference](../../index.html) » + * [AWS CLI 2.33.25 Command Reference](../../index.html) » @@ -1683,0 +1684,18 @@ DBInstance -> (structure) +> +> StorageEncryptionType -> (string) +> +>> The type of encryption used to protect data at rest in the DB instance. Possible values: +>> +>> * `none` \- The DB instance is not encrypted. +>> * `sse-rds` \- The DB instance is encrypted using an Amazon Web Services owned KMS key. +>> * `sse-kms` \- The DB instance is encrypted using a customer managed KMS key or Amazon Web Services managed KMS key. +>> + +>> +>> Possible values: +>> +>> * `none` +>> * `sse-kms` +>> * `sse-rds` +>> + @@ -2195 +2213 @@ DBInstance -> (structure) - * [AWS CLI 2.33.22 Command Reference](../../index.html) » + * [AWS CLI 2.33.25 Command Reference](../../index.html) »