AWS audit-manager documentation change
Summary
Removed requirement to sign requests using access keys or AWS STS
Security assessment
Similar to Athena change: removes standard authentication documentation without evidence of resolving a vulnerability. Impacts clarity but not a confirmed security fix.
Diff
diff --git a/audit-manager/latest/userguide/infrastructure-security.md b/audit-manager/latest/userguide/infrastructure-security.md index e7d1be383..c60997852 100644 --- a//audit-manager/latest/userguide/infrastructure-security.md +++ b//audit-manager/latest/userguide/infrastructure-security.md @@ -18,2 +17,0 @@ You use AWS published API calls to access AWS Audit Manager through the network. -Additionally, requests must be signed by using an access key ID and a secret access key that is associated with an IAM principal. Or you can use the [AWS Security Token Service](https://docs.aws.amazon.com/STS/latest/APIReference/welcome.html) (AWS STS) to generate temporary security credentials to sign requests. -