AWS Security ChangesHomeSearch

AWS AWSEC2 high security documentation change

Service: AWSEC2 · 2025-08-19 · Security-related high

File: AWSEC2/latest/UserGuide/prepare-for-byoip.md

Summary

Changed APNIC certificate submission method from email to direct record editing

Security assessment

Eliminates insecure practice of emailing certificates, reducing exposure of sensitive material. Directly addresses potential security risk of credential leakage via email.

Diff

diff --git a/AWSEC2/latest/UserGuide/prepare-for-byoip.md b/AWSEC2/latest/UserGuide/prepare-for-byoip.md
index 58eb82b3f..347d27f7e 100644
--- a//AWSEC2/latest/UserGuide/prepare-for-byoip.md
+++ b//AWSEC2/latest/UserGuide/prepare-for-byoip.md
@@ -241 +241 @@ Add the certificate that you previously created to the RDAP record for your RIR.
-  * For APNIC, email the certificate to [[email protected]](mailto:[email protected]) to manually add it to the "remarks" field for your address range. Send the email using the APNIC authorized contact for the IP addresses.
+  * For APNIC, add the certificate by editing remarks on the "inetnum" or "inet6num" record.