AWS Security ChangesHomeSearch

AWS AWSEC2 documentation change

Service: AWSEC2 · 2025-10-22 · Documentation medium

File: AWSEC2/latest/UserGuide/infrastructure-security.md

Summary

Removed two sentences describing requirement for signed API requests using IAM credentials or AWS STS temporary security credentials

Security assessment

While the removed content relates to general API security practices, there is no evidence this deletion addresses a specific security issue. The removal may be part of documentation restructuring rather than a security fix. However, it reduces emphasis on standard authentication mechanisms.

Diff

diff --git a/AWSEC2/latest/UserGuide/infrastructure-security.md b/AWSEC2/latest/UserGuide/infrastructure-security.md
index ac36da8ab..1355ae7b8 100644
--- a//AWSEC2/latest/UserGuide/infrastructure-security.md
+++ b//AWSEC2/latest/UserGuide/infrastructure-security.md
@@ -20,2 +19,0 @@ You use AWS published API calls to access Amazon EC2 through the network. Client
-Additionally, requests must be signed by using an access key ID and a secret access key that is associated with an IAM principal. Or you can use the [AWS Security Token Service](https://docs.aws.amazon.com/STS/latest/APIReference/welcome.html) (AWS STS) to generate temporary security credentials to sign requests.
-