AWS Security ChangesHomeSearch

AWS documentdb documentation change

Service: documentdb · 2026-07-04 · Documentation low

File: documentdb/latest/devguide/field-level-encryption.md

Summary

Updated 'regions' to 'Regions' and modified KMS documentation reference

Security assessment

Capitalization change and updated link to KMS concepts. Field-level encryption documentation remains unchanged with no new security features or vulnerability fixes.

Diff

diff --git a/documentdb/latest/devguide/field-level-encryption.md b/documentdb/latest/devguide/field-level-encryption.md
index bac4dfc02..604dc548a 100644
--- a//documentdb/latest/devguide/field-level-encryption.md
+++ b//documentdb/latest/devguide/field-level-encryption.md
@@ -43 +43 @@ The initial configuration of client-side FLE in Amazon DocumentDB is a four-step
-Using AWS Key Management Service, create a symmetric key that is used for encrypting and decrypting the sensitive data field and provide it the necessary IAM usage permissions. AWS KMS stores the Customer Key (CK) which is used to encrypt Data Keys (DKs). Store the Customer Key in KMS to strengthen your security posture. The Data Key is the secondary key which is stored in an Amazon DocumentDB collection and is required to encrypt sensitive fields before storing the document in Amazon DocumentDB. The Customer Key encrypts the Data Key which in turn encrypts and decrypts your data. If you are using a global cluster, you can create a multi-region key that can be used by different service roles in different regions.
+Using AWS Key Management Service, create a symmetric key that is used for encrypting and decrypting the sensitive data field and provide it the necessary IAM usage permissions. AWS KMS stores the Customer Key (CK) which is used to encrypt Data Keys (DKs). Store the Customer Key in KMS to strengthen your security posture. The Data Key is the secondary key which is stored in an Amazon DocumentDB collection and is required to encrypt sensitive fields before storing the document in Amazon DocumentDB. The Customer Key encrypts the Data Key which in turn encrypts and decrypts your data. If you are using a global cluster, you can create a multi-region key that can be used by different service roles in different Regions.
@@ -45 +45 @@ Using AWS Key Management Service, create a symmetric key that is used for encryp
-For more information about the AWS Key Management Service, including how to create a key, see the [AWS Key Management Service Developer Guide](https://docs.aws.amazon.com/kms/latest/developerguide/overview.html).
+For more information about the AWS Key Management Service, including how to create a key, see [AWS Key Management Service concepts](https://docs.aws.amazon.com/kms/latest/developerguide/overview.html) in the _AWS Key Management Service Developer Guide_.