AWS Security ChangesHomeSearch

AWS awsaccountbilling high security documentation change

Service: awsaccountbilling · 2025-10-22 · Security-related high

File: awsaccountbilling/latest/aboutv2/infrastructure-security.md

Summary

Removed documentation about API request signing requirements using access keys or temporary STS credentials

Security assessment

The deletion of authentication requirements for API calls removes critical security documentation about request signing mechanisms. This could lead to misconfigurations where users might omit proper credential management for billing APIs.

Diff

diff --git a/awsaccountbilling/latest/aboutv2/infrastructure-security.md b/awsaccountbilling/latest/aboutv2/infrastructure-security.md
index 74b899236..47edc50bb 100644
--- a//awsaccountbilling/latest/aboutv2/infrastructure-security.md
+++ b//awsaccountbilling/latest/aboutv2/infrastructure-security.md
@@ -18,2 +17,0 @@ You use AWS published API calls to access Billing and Cost Management through th
-Additionally, requests must be signed by using an access key ID and a secret access key that is associated with an IAM principal. Or you can use the [AWS Security Token Service](https://docs.aws.amazon.com/STS/latest/APIReference/welcome.html) (AWS STS) to generate temporary security credentials to sign requests.
-