AWS Security ChangesHomeSearch

AWS AmazonCloudFront high security documentation change

Service: AmazonCloudFront · 2025-10-22 · Security-related high

File: AmazonCloudFront/latest/DeveloperGuide/infrastructure-security.md

Summary

Removed critical details about request signing requirements using access keys or AWS STS

Security assessment

Deleting authentication requirements for API calls removes security-critical documentation. This could lead users to misconfigure services without proper request signing, creating potential unauthorized access risks.

Diff

diff --git a/AmazonCloudFront/latest/DeveloperGuide/infrastructure-security.md b/AmazonCloudFront/latest/DeveloperGuide/infrastructure-security.md
index 6287d0ad9..c48152391 100644
--- a//AmazonCloudFront/latest/DeveloperGuide/infrastructure-security.md
+++ b//AmazonCloudFront/latest/DeveloperGuide/infrastructure-security.md
@@ -18,2 +17,0 @@ You use AWS published API calls to access CloudFront through the network. Client
-Additionally, requests must be signed by using an access key ID and a secret access key that is associated with an IAM principal. Or you can use the [AWS Security Token Service](https://docs.aws.amazon.com/STS/latest/APIReference/welcome.html) (AWS STS) to generate temporary security credentials to sign requests.
-