AWS Security ChangesHomeSearch

AWS kms documentation change

Service: kms · 2025-06-16 · Documentation low

File: kms/latest/developerguide/requests-per-second.md

Summary

Added rate limit entry for ML-DSA cryptographic operations (1,000 RPS shared quota)

Security assessment

The change documents service quotas rather than security features or vulnerabilities. Rate limits are operational constraints, not security controls.

Diff

diff --git a/kms/latest/developerguide/requests-per-second.md b/kms/latest/developerguide/requests-per-second.md
index 0690557ff..9d87b2a14 100644
--- a//kms/latest/developerguide/requests-per-second.md
+++ b//kms/latest/developerguide/requests-per-second.md
@@ -81,0 +82,6 @@ Quota name | Default value (requests per second)
+`Cryptographic operations (ML-DSA) request rate` Applies to:
+
+  * `Sign`
+  * `Verify`
+
+| 1,000 (shared) for ML-DSA KMS keys