AWS payment-cryptography documentation change
Summary
Updated API documentation links for ImportKey and related operations
Security assessment
The changes correct API reference links but do not modify security requirements or address vulnerabilities. This maintains existing security documentation accuracy without adding new content.
Diff
diff --git a/payment-cryptography/latest/userguide/pin-compliance-control-4.md b/payment-cryptography/latest/userguide/pin-compliance-control-4.md index c6d63abad..c2d8d310a 100644 --- a//payment-cryptography/latest/userguide/pin-compliance-control-4.md +++ b//payment-cryptography/latest/userguide/pin-compliance-control-4.md @@ -13 +13 @@ _Requirement 15:_ AWS Payment Cryptography provides key check values for all key -Requirement 15-2 requires that public keys are loaded in a manner that protects their integrity and authenticity. [ImportKey](https://docs.aws.amazon.com/cli/latest/APIReference/API_ImportKey), together with [GetParametersForImport](https://docs.aws.amazon.com/cli/latest/APIReference/API_GetParametersForImport), provides for validation of provided signing certificates. If provided certificates are self-signed, than authentication must be provided by a separate mechanism, for example secure file exchange. +Requirement 15-2 requires that public keys are loaded in a manner that protects their integrity and authenticity. [ImportKey](https://docs.aws.amazon.com/payment-cryptography/latest/APIReference/API_ImportKey), together with [GetParametersForImport](https://docs.aws.amazon.com/payment-cryptography/latest/APIReference/API_GetParametersForImport), provides for validation of provided signing certificates. If provided certificates are self-signed, than authentication must be provided by a separate mechanism, for example secure file exchange. @@ -15 +15 @@ Requirement 15-2 requires that public keys are loaded in a manner that protects -_Requirement 16:_ Documentation of your procedures must specify how keys are loaded to the service. Procedures for key import using the API should include use of roles with key import permissions and approvals for running scripts or other code that loads keys. AWS CloudTrail logs contain all [ImportKey](https://docs.aws.amazon.com/cli/latest/APIReference/API_ImportKey) events. You should include the logging mechanisms in the documentation. The service provides key check values for all keys to validate correct key loading. +_Requirement 16:_ Documentation of your procedures must specify how keys are loaded to the service. Procedures for key import using the API should include use of roles with key import permissions and approvals for running scripts or other code that loads keys. AWS CloudTrail logs contain all [ImportKey](https://docs.aws.amazon.com/payment-cryptography/latest/APIReference/API_ImportKey) events. You should include the logging mechanisms in the documentation. The service provides key check values for all keys to validate correct key loading.