AWS Security ChangesHomeSearch

AWS transfer medium security documentation change

Service: transfer · 2025-05-13 · Security-related medium

File: transfer/latest/userguide/security-policies.md

Summary

Removed references to Kyber-related post-quantum cryptographic algorithms (ecdh-nistp*-kyber-* and x25519-kyber) from security policy documentation.

Security assessment

The removal of post-quantum cryptography algorithms suggests potential deprecation of specific cryptographic implementations, which could indicate security-related changes (e.g., algorithm vulnerabilities or compliance updates). The explicit removal of these security-sensitive configurations constitutes a security-related documentation change.

Diff

diff --git a/transfer/latest/userguide/security-policies.md b/transfer/latest/userguide/security-policies.md
index 2e459fbde..a3d6721c7 100644
--- a//transfer/latest/userguide/security-policies.md
+++ b//transfer/latest/userguide/security-policies.md
@@ -142,3 +141,0 @@ diffie-hellman-group-exchange-sha256 | ♦ |  ♦ |  ♦ |  ♦ |  ♦ |  |  ♦
[email protected] | ♦ |  |  |  |  | ♦ |  |  |   
[email protected] | ♦ |  |  |  |  | ♦ |  |  |   
[email protected] | ♦ |  |  |  |  | ♦ |  |  |   
@@ -148 +144,0 @@ ecdh-sha2-nistp521 | ♦ |  |  |  |  ♦ | ♦ |  |  ♦ |  ♦
[email protected] | ♦ |  |  |  |  |  |  |  |   
@@ -189,4 +184,0 @@ The following shows the TransferSecurityPolicy-2024-01 security policy.
-                "[email protected]",
-                "[email protected]",
-                "[email protected]",
-                "[email protected]",
@@ -482,3 +473,0 @@ The only difference between these two security policies is that TransferSecurity
-                "[email protected]",
-                "[email protected]",
-                "[email protected]",