AWS Security ChangesHomeSearch

AWS payment-cryptography documentation change

Service: payment-cryptography · 2025-08-01 · Documentation low

File: payment-cryptography/latest/userguide/getting-started.md

Summary

Consistently removed AWS account ID placeholder (111122223333) from all example key ARNs throughout the guide

Security assessment

Documentation standardization to use account-less ARN format in examples. While this improves example hygiene, there is no indication it resolves a security vulnerability or describes new security features.

Diff

diff --git a/payment-cryptography/latest/userguide/getting-started.md b/payment-cryptography/latest/userguide/getting-started.md
index 9af663b24..ba522259c 100644
--- a//payment-cryptography/latest/userguide/getting-started.md
+++ b//payment-cryptography/latest/userguide/getting-started.md
@@ -57 +57 @@ The response echoes back the request parameters, including an ARN for subsequent
-            "KeyArn": "arn:aws:payment-cryptography:us-east-2:111122223333:key/tqv5yij6wtxx64pi",
+            "KeyArn": "arn:aws:payment-cryptography:us-east-2::key/tqv5yij6wtxx64pi",
@@ -85 +85 @@ The response echoes back the request parameters, including an ARN for subsequent
-Take note of the `KeyArn` that represents the key, for example _arn:aws:payment-cryptography:us-east-2:111122223333:key/tqv5yij6wtxx64pi_. You need that in the next step.
+Take note of the `KeyArn` that represents the key, for example _arn:aws:payment-cryptography:us-east-2::key/tqv5yij6wtxx64pi_. You need that in the next step.
@@ -93 +93 @@ In this step, you generate a CVV2 for a given `[PAN](./terminology.html#terms.pa
-        --key-identifier arn:aws:payment-cryptography:us-east-2:111122223333:key/tqv5yij6wtxx64pi \
+        --key-identifier arn:aws:payment-cryptography:us-east-2::key/tqv5yij6wtxx64pi \
@@ -100 +100 @@ In this step, you generate a CVV2 for a given `[PAN](./terminology.html#terms.pa
-        "CardDataGenerationKeyIdentifier": "arn:aws:payment-cryptography:us-east-2:111122223333:key/tqv5yij6wtxx64pi",
+        "CardDataGenerationKeyIdentifier": "arn:aws:payment-cryptography:us-east-2::key/tqv5yij6wtxx64pi",
@@ -115 +115 @@ Run the following command to validate the CVV2.
-        --key-identifier arn:aws:payment-cryptography:us-east-2:111122223333:key/tqv5yij6wtxx64pi \
+        --key-identifier arn:aws:payment-cryptography:us-east-2::key/tqv5yij6wtxx64pi \
@@ -122 +122 @@ Run the following command to validate the CVV2.
-        "KeyArn": "arn:aws:payment-cryptography:us-east-2:111122223333:key/tqv5yij6wtxx64pi",
+        "KeyArn": "arn:aws:payment-cryptography:us-east-2::key/tqv5yij6wtxx64pi",
@@ -134 +134 @@ In this step, you create a negative test where the CVV2 is not correct and does
-        --key-identifier arn:aws:payment-cryptography:us-east-2:111122223333:key/tqv5yij6wtxx64pi \
+        --key-identifier arn:aws:payment-cryptography:us-east-2::key/tqv5yij6wtxx64pi \
@@ -150 +150 @@ Now you can delete the key you created in step 1. To minimize unrecoverable chan
-        --key-identifier=arn:aws:payment-cryptography:us-east-2:111122223333:key/tqv5yij6wtxx64pi
+        --key-identifier=arn:aws:payment-cryptography:us-east-2::key/tqv5yij6wtxx64pi
@@ -159 +159 @@ Now you can delete the key you created in step 1. To minimize unrecoverable chan
-            "KeyArn": "arn:aws:payment-cryptography:us-east-2:111122223333:key/tqv5yij6wtxx64pi",
+            "KeyArn": "arn:aws:payment-cryptography:us-east-2::key/tqv5yij6wtxx64pi",