AWS fedramp documentation change
Summary
Restructured introduction section, added 'About FedRAMP Rev5 RSC Service Guidance' and 'Available Service Guidances' with links to specific service documentation
Security assessment
The changes enhance documentation about FedRAMP security compliance guidance and best practices for securing AWS services, but show no evidence of addressing a specific vulnerability or incident
Diff
diff --git a/fedramp/latest/userguide/service-guidance-introduction.md b/fedramp/latest/userguide/service-guidance-introduction.md index c0c2a1a8e..093fd7094 100644 --- a//fedramp/latest/userguide/service-guidance-introduction.md +++ b//fedramp/latest/userguide/service-guidance-introduction.md @@ -5 +5 @@ -What AWS Provides +About FedRAMP Rev5 RSC Service Guidance from AWSAvailable Service Guidances @@ -11 +11,24 @@ This page provides comprehensive security configuration guidance for AWS service -For the most up-to-date service features and security configurations, always review the AWS Documentaiton page for th AWS service. These guidances are updated on a routine basis but the AWS services documentation pages are the source of truth for the most up-to-date information on standard service features. +## About FedRAMP Rev5 RSC Service Guidance from AWS + +For the most up-to-date service features and security configurations, always review the AWS Documentation page for the AWS service. This guidance is updated on a routine basis but the AWS services documentation pages are the source of truth for the most up-to-date information on standard service features. + +### What AWS Provides + +Each individual service guidance page offers service-specific security suggestions to meet security needs of AWS customers operating within the FedRAMP space. These pages align many recommendations to FedRAMP controls and FRR-RSC specific guidance for how to secure AWS services. These are provided as-is and only as a recommendation. They show how you could potentially secure your AWS environment. You should always consult your organization security standard and requirements to assure the recommendations align with your organizations requirements. + +## Available Service Guidances + +The following AWS services have FedRAMP Rev5 RSC service guidance available: + + * [Amazon Aurora MySQL](./amazon-aurora-mysql.html) + + * [Amazon Aurora PostgreSQL](./amazon-aurora-postgresql.html) + + * [Amazon DocumentDB (with MongoDB compatibility)](./amazon-documentdb-with-mongodb-compatibility.html) + + * [Amazon Elastic Compute Cloud (EC2)](./amazon-elastic-cloud-compute-ec2.html) + + * [Amazon Neptune](./amazon-neptune.html) + + * [Amazon RDS](./amazon-rds.html) + @@ -13 +35,0 @@ For the most up-to-date service features and security configurations, always rev -## What AWS Provides @@ -15 +36,0 @@ For the most up-to-date service features and security configurations, always rev -Each individual service guidance page offers service specific security suggesitons to meet security needs of AWS customers operating within the FedRAMP space, and aligns many recommendations to FedRAMP controls and FRR-RSC specific guidances for how to secuire AWS services. These are provided as is and only as a recommendation on how you could potentially secure your AWS environment. You should always consult your organization security standard and requirements to assure the recommendations align with your organizations requirements.