AWS Security ChangesHomeSearch

AWS awscloudtrail high security documentation change

Service: awscloudtrail · 2025-10-22 · Security-related high

File: awscloudtrail/latest/userguide/infrastructure-security.md

Summary

Removed documentation about requiring signed API requests using access keys or AWS STS temporary credentials

Security assessment

Deleting authentication requirements for API calls could mislead users into disabling request signing, creating a security risk. This directly impacts documentation about mandatory security controls (authentication) for API access.

Diff

diff --git a/awscloudtrail/latest/userguide/infrastructure-security.md b/awscloudtrail/latest/userguide/infrastructure-security.md
index 2339c9598..d57d1f7ec 100644
--- a//awscloudtrail/latest/userguide/infrastructure-security.md
+++ b//awscloudtrail/latest/userguide/infrastructure-security.md
@@ -18,2 +17,0 @@ You use AWS published API calls to access CloudTrail through the network. Client
-Additionally, requests must be signed by using an access key ID and a secret access key that is associated with an IAM principal. Or you can use the [AWS Security Token Service](https://docs.aws.amazon.com/STS/latest/APIReference/welcome.html) (AWS STS) to generate temporary security credentials to sign requests.
-