AWS AmazonElastiCache documentation change
Summary
Removed statements about customer managed key encryption not being available in AWS GovCloud regions for Redis and Memcached
Security assessment
This change updates encryption documentation by removing regional limitations for customer managed keys in GovCloud. While this relates to encryption (a security feature), there is no evidence of a security vulnerability being fixed. The change adds/updates documentation about security features (encryption capabilities).
Diff
diff --git a/AmazonElastiCache/latest/dg/at-rest-encryption.md b/AmazonElastiCache/latest/dg/at-rest-encryption.md index 347d0bbfc..636c6860d 100644 --- a//AmazonElastiCache/latest/dg/at-rest-encryption.md +++ b//AmazonElastiCache/latest/dg/at-rest-encryption.md @@ -71,3 +71 @@ For more information, see [Supported node types](./CacheNodes.SupportedTypes.htm - * The option to use customer managed key for encryption at rest is not available in AWS GovCloud (us-gov-east-1 and us-gov-west-1) regions. - - * If a cluster is using a node type from the r6gd family, data stored on SSD is encrypted with the chosen customer managed AWS KMS key (or service-managed encryption in AWS GovCloud Regions). + * If a cluster is using a node type from the r6gd family, data stored on SSD is encrypted with the chosen customer managed AWS KMS key. @@ -80,2 +77,0 @@ For more information, see [Supported node types](./CacheNodes.SupportedTypes.htm - * When using Memcached, the option to use customer managed key for encryption at rest is not available in AWS GovCloud (us-gov-east-1 and us-gov-west-1) regions. -