AWS fedramp documentation change
Summary
Updated FedRAMP requirement identifiers from FRR-RSC-XX format to SCG-XXX-XXX format, consolidated three administrative account requirements into one SCG-CSO-RSC section, updated version to 1.0.2 and last updated date to 2026-03-26, and streamlined the requirements list from 7 to 5 items.
Security assessment
This change is an administrative documentation update that reorganizes FedRAMP requirement identifiers and consolidates sections. There is no indication of addressing a specific security vulnerability, incident, or weakness. The changes are structural and organizational in nature, updating naming conventions and document formatting without adding new security guidance or addressing security issues.
Diff
diff --git a/fedramp/latest/userguide/amazon-neptune.md b/fedramp/latest/userguide/amazon-neptune.md index 23e4fd8a1..61422daa2 100644 --- a//fedramp/latest/userguide/amazon-neptune.md +++ b//fedramp/latest/userguide/amazon-neptune.md @@ -3 +3 @@ -Document InformationOverviewFedRAMP RequirementsAdministrative Account ModelFRR-RSC-01: Administrative AccountsFRR-RSC-02: Administrative SettingsFRR-RSC-03: Privileged SettingsIAM Least Privilege PoliciesFRR-RSC-04: Secure DefaultsFRR-RSC-05: Configuration ComparisonFRR-RSC-06: Configuration ExportFRR-RSC-07: API ConfigurationAdditional Resources +Document InformationOverviewFedRAMP RequirementsAdministrative Account ModelSCG-CSO-RSC: Recommended Secure ConfigurationIAM Least Privilege PoliciesSCG-CSO-SDF: Secure DefaultsSCG-ENH-CMP: Configuration ComparisonSCG-ENH-EXP: Configuration ExportSCG-ENH-API: API ConfigurationAdditional Resources @@ -11 +11 @@ This guide provides security configuration requirements and implementation examp -Version | 1.0.0 +Version | 1.0.2 @@ -13 +13 @@ Version | 1.0.0 -Last Updated | 2026-01-09 +Last Updated | 2026-03-26 @@ -28 +28 @@ Amazon Neptune must comply with the following FedRAMP requirements: - * FRR-RSC-01 + * SCG-CSO-RSC @@ -30 +30 @@ Amazon Neptune must comply with the following FedRAMP requirements: - * FRR-RSC-02 + * SCG-CSO-SDF @@ -32 +32 @@ Amazon Neptune must comply with the following FedRAMP requirements: - * FRR-RSC-03 + * SCG-ENH-CMP @@ -34 +34 @@ Amazon Neptune must comply with the following FedRAMP requirements: - * FRR-RSC-04 + * SCG-ENH-EXP @@ -36,5 +36 @@ Amazon Neptune must comply with the following FedRAMP requirements: - * FRR-RSC-05 - - * FRR-RSC-06 - - * FRR-RSC-07 + * SCG-ENH-API @@ -53 +49,7 @@ Account Type | Master user account with graph database administrative privilege -## FRR-RSC-01: Administrative Accounts +## SCG-CSO-RSC: Recommended Secure Configuration + +**Applicable:** Yes + +This requirement consolidates guidance for: 1\. Instructions on how to securely access, configure, operate, and decommission top-level administrative accounts 2\. Explanations of security-related settings that can be operated only by top-level administrative accounts 3\. Explanations of security-related settings that can be operated only by privileged accounts + +### Part 1: Administrative Accounts @@ -162 +164 @@ Amazon Neptune administrative access is managed through the master user account -## FRR-RSC-02: Administrative Settings +### Part 2: Administrative Settings @@ -525 +527 @@ Amazon Neptune uses a dual-layer security model: AWS IAM for cluster management -## FRR-RSC-03: Privileged Settings +### Part 3: Privileged Settings @@ -948 +950 @@ Enable comprehensive logging and monitoring of all privileged account activities -## FRR-RSC-04: Secure Defaults +## SCG-CSO-SDF: Secure Defaults @@ -981 +983 @@ Ensure Neptune clusters are created with security-first configurations including -## FRR-RSC-05: Configuration Comparison +## SCG-ENH-CMP: Configuration Comparison @@ -1010 +1012 @@ Use AWS Config conformance packs or custom Lambda functions for automated compar -## FRR-RSC-06: Configuration Export +## SCG-ENH-EXP: Configuration Export @@ -1049 +1051 @@ JSON via AWS CLI -## FRR-RSC-07: API Configuration +## SCG-ENH-API: API Configuration