AWS securityhub documentation change
Summary
Added BedrockAgentCore resource types, SageMaker FeatureGroup resource, and references to new controls for NIST alignment
Security assessment
Expands NIST standard coverage documentation for new resource types and controls. Enhances compliance documentation without addressing specific security vulnerabilities.
Diff
diff --git a/securityhub/latest/userguide/standards-reference-nist-800-53.md b/securityhub/latest/userguide/standards-reference-nist-800-53.md index 41b64192c..b0667ce38 100644 --- a//securityhub/latest/userguide/standards-reference-nist-800-53.md +++ b//securityhub/latest/userguide/standards-reference-nist-800-53.md @@ -38,0 +39 @@ AWS Backup | `AWS::Backup::RecoveryPoint` +Amazon Bedrock AgentCore | `AWS::BedrockAgentCore::Gateway`, `AWS::BedrockAgentCore::Memory` @@ -74 +75 @@ Amazon EC2 Systems Manager (SSM) | `AWS::SSM::AssociationCompliance`, `AWS::SS -Amazon SageMaker AI | `AWS::SageMaker::NotebookInstance` +Amazon SageMaker AI | `AWS::SageMaker::FeatureGroup`, `AWS::SageMaker::NotebookInstance` @@ -118,0 +120,4 @@ The following list specifies the controls that support NIST SP 800-53 Revision 5 + * [[BedrockAgentCore.3] Bedrock AgentCore Memory should be encrypted with customer managed AWS KMS keys](./bedrockagentcore-controls.html#bedrockagentcore-3) + + * [[BedrockAgentCore.4] Bedrock AgentCore Gateway should be encrypted with customer managed AWS KMS keys](./bedrockagentcore-controls.html#bedrockagentcore-4) + @@ -628,0 +634,2 @@ The following list specifies the controls that support NIST SP 800-53 Revision 5 + * [[SageMaker.18] SageMaker feature group online stores with standard storage should be encrypted with AWS KMS keys](./sagemaker-controls.html#sagemaker-18) +