AWS Security ChangesHomeSearch

AWS prescriptive-guidance documentation change

Service: prescriptive-guidance · 2026-07-10 · Documentation low

File: prescriptive-guidance/latest/strategy-data-at-rest-encryption/faq.md

Summary

Updated navigation link from 'welcome.html' to 'introduction.html', expanded HSM acronym, added specificity to questions about encryption infrastructure and AWS KMS, and fixed apostrophe formatting.

Security assessment

Changes are editorial improvements (link updates, acronym expansion, question clarification) without addressing vulnerabilities. No security implications as they don't alter security guidance or reveal new risks.

Diff

diff --git a/prescriptive-guidance/latest/strategy-data-at-rest-encryption/faq.md b/prescriptive-guidance/latest/strategy-data-at-rest-encryption/faq.md
index b2491f86b..27f8d3a13 100644
--- a//prescriptive-guidance/latest/strategy-data-at-rest-encryption/faq.md
+++ b//prescriptive-guidance/latest/strategy-data-at-rest-encryption/faq.md
@@ -5 +5 @@
-[Documentation](/index.html)[AWS Prescriptive Guidance](https://aws.amazon.com/prescriptive-guidance/)[Creating an enterprise encryption strategy for data at rest](welcome.html)
+[Documentation](/index.html)[AWS Prescriptive Guidance](https://aws.amazon.com/prescriptive-guidance/)[Creating an enterprise encryption strategy for data at rest](introduction.html)
@@ -7 +7 @@
-When do I need symmetric encryption?When do I need asymmetric encryption?When do I need envelope encryption?When do I need to use an HSM?Why should I centrally manage encryption keys?Do I need to use a purpose-built encryption infrastructure?How can AWS KMS help?
+When do I need symmetric encryption?When do I need asymmetric encryption?When do I need envelope encryption?When do I need to use a hardware security module (HSM)?Why should I centrally manage encryption keys?Do I need to use a purpose-built encryption infrastructure for data at rest?How can AWS KMS help my organization meet its encryption objectives for data at rest?
@@ -21 +21 @@ You might use symmetric encryption when:
-  * The encrypted data isn’t leaving the boundaries of the organization’s network.
+  * The encrypted data isn't leaving the boundaries of the organization's network.