AWS Security ChangesHomeSearch

AWS AmazonRDS high security documentation change

Service: AmazonRDS · 2025-10-22 · Security-related high

File: AmazonRDS/latest/UserGuide/infrastructure-security.md

Summary

Removed documentation about requiring access keys/secret keys or AWS STS for request signing

Security assessment

This change removes critical security guidance about authenticating API calls. The deleted content specifically described fundamental security controls (access keys and temporary credentials) required for secure API access. Removing this documentation could lead to insecure implementations if developers are unaware of authentication requirements.

Diff

diff --git a/AmazonRDS/latest/UserGuide/infrastructure-security.md b/AmazonRDS/latest/UserGuide/infrastructure-security.md
index 6abd6ad03..60682b610 100644
--- a//AmazonRDS/latest/UserGuide/infrastructure-security.md
+++ b//AmazonRDS/latest/UserGuide/infrastructure-security.md
@@ -20,2 +19,0 @@ You use AWS published API calls to access Amazon RDS through the network. Client
-Additionally, requests must be signed by using an access key ID and a secret access key that is associated with an IAM principal. Or you can use the [AWS Security Token Service](https://docs.aws.amazon.com/STS/latest/APIReference/welcome.html) (AWS STS) to generate temporary security credentials to sign requests.
-