AWS Security ChangesHomeSearch

AWS payment-cryptography documentation change

Service: payment-cryptography · 2025-08-01 · Documentation low

File: payment-cryptography/latest/userguide/pin-compliance-control-2.md

Summary

Updated API reference link for CreateKey to point to payment-cryptography-specific documentation

Security assessment

The change corrects a documentation link but does not modify security content or address vulnerabilities. This is a routine documentation maintenance update.

Diff

diff --git a/payment-cryptography/latest/userguide/pin-compliance-control-2.md b/payment-cryptography/latest/userguide/pin-compliance-control-2.md
index 76068d853..ec772dd23 100644
--- a//payment-cryptography/latest/userguide/pin-compliance-control-2.md
+++ b//payment-cryptography/latest/userguide/pin-compliance-control-2.md
@@ -11 +11 @@ _Requirement 6:_ Security controls for keys held in AWS Payment Cryptography wer
-_Requirement 7:_ You must have a key-generation policy documentation which should specify how keys are generated and all affected parties must be aware of these procedures/policies. Procedures for key creation using the APC API should include use of roles with key creation permissions and approvals for running scripts or other code that creates keys. AWS CloudTrail logs contain all [CreateKey](https://docs.aws.amazon.com/cli/latest/APIReference/API_CreateKey) events with date and time, key ARN, and user ids. HSM serial numbers and logs for access to physical media was assessed as part of the service’s PIN assessment.
+_Requirement 7:_ You must have a key-generation policy documentation which should specify how keys are generated and all affected parties must be aware of these procedures/policies. Procedures for key creation using the APC API should include use of roles with key creation permissions and approvals for running scripts or other code that creates keys. AWS CloudTrail logs contain all [CreateKey](https://docs.aws.amazon.com/payment-cryptography/latest/APIReference/API_CreateKey) events with date and time, key ARN, and user ids. HSM serial numbers and logs for access to physical media was assessed as part of the service’s PIN assessment.