Amazon web services has launched a new feature in cloudwatch logs for data protection. This feature can be used to detect and redact sensitive information.
More about this feature here:
Documentation:
https://docs.aws.amazon.com/AmazonCloudWatch/latest/logs/data-protection.html
Official AWS blog:
https://aws.amazon.com/blogs/aws/protect-sensitive-data-with-amazon-cloudwatch-logs/
APIs
PutDataProtectionPolicy:
https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_PutDataProtectionPolicy.html
GetDataProtectionPolicy:
https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_GetDataProtectionPolicy.html
DeleteDataProtectionPolicy:
https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_DeleteDataProtectionPolicy.html
