Document history - AWS Prescriptive Guidance

Document history

The following table describes significant changes to this guide. If you want to be notified about future updates, you can subscribe to an RSS feed.


Major updates

November 4, 2023

Security Lake addition

Updated the Security Tooling account and Log Archive account sections to add design guidance related to Amazon Security Lake.

September 22, 2023

Minor updates

  • Updated existing guidance to reflect new AWS service features and best practices.

  • Updated architectural guidance for AWS CloudTrail, AWS IAM Identity Center, and edge security.

May 10, 2023


Added a short survey to gain a better understanding of how you use the AWS SRA in your organization.

December 14, 2022

Source files for reference architecture diagrams

In the AWS Security Reference Architecture section, added a download file that provides the architecture diagrams for this guide in editable PowerPoint format.

November 17, 2022

Updates to Security foundations section

In the Security foundations section, updated the information about Well-Architected pillars and security design principles.

September 27, 2022

Major additions and updates

  • Added information about how to use the AWS SRA and key implementation guidelines.

  • Added architectural guidance for additional AWS services such as AWS Artifact, Amazon Inspector, AWS RAM, Amazon Route 53, AWS Control Tower, AWS Audit Manager, AWS Directory Service, Amazon Cognito, and Network Access Analyzer.

  • Updated existing guidance to reflect new AWS service features and best practices.

July 25, 2022

Initial publication. This version doesn't include several AWS services (such as AWS Directory Service, Amazon Cognito, AWS Resource Access Manager, and AWS Audit Manager), which we plan to add in future versions.

June 23, 2021