AWS autoscaling high security documentation change
Summary
Removed details about API request signing requirements using access keys or AWS STS
Security assessment
Deletion of critical security guidance about authenticating API requests could lead to insecure implementations. Directly impacts security practices documentation.
Diff
diff --git a/autoscaling/ec2/userguide/infrastructure-security.md b/autoscaling/ec2/userguide/infrastructure-security.md index f3691ba1b..b683f10c9 100644 --- a//autoscaling/ec2/userguide/infrastructure-security.md +++ b//autoscaling/ec2/userguide/infrastructure-security.md @@ -20,2 +19,0 @@ You use AWS published API calls to access Amazon EC2 Auto Scaling through the ne -Additionally, requests must be signed by using an access key ID and a secret access key that is associated with an IAM principal. Or you can use the [AWS Security Token Service](https://docs.aws.amazon.com/STS/latest/APIReference/welcome.html) (AWS STS) to generate temporary security credentials to sign requests. -