AWS Security ChangesHomeSearch

AWS acm documentation change

Service: acm · 2025-10-22 · Documentation low

File: acm/latest/userguide/infrastructure-security.md

Summary

Removed a paragraph explaining that API requests must be signed with IAM credentials or temporary STS credentials

Security assessment

This change removes general security documentation about API authentication requirements without evidence of addressing a specific security flaw. The deletion reduces documentation clarity but doesn't indicate remediation of a vulnerability.

Diff

diff --git a/acm/latest/userguide/infrastructure-security.md b/acm/latest/userguide/infrastructure-security.md
index d27d24760..102f6885b 100644
--- a//acm/latest/userguide/infrastructure-security.md
+++ b//acm/latest/userguide/infrastructure-security.md
@@ -20,2 +19,0 @@ You use AWS published API calls to access ACM through the network. Clients must
-Additionally, requests must be signed by using an access key ID and a secret access key that is associated with an IAM principal. Or you can use the [AWS Security Token Service](https://docs.aws.amazon.com/STS/latest/APIReference/welcome.html) (AWS STS) to generate temporary security credentials to sign requests.
-