AWS batch high security documentation change
Summary
Removed details about API request signing requirements using access keys or AWS STS temporary credentials
Security assessment
The deleted lines described fundamental security controls for API authentication. Removing this documentation could lead to misconfigured API access if users are unaware of signing requirements, potentially increasing risk of unauthorized access. This directly impacts security guidance for a critical authentication mechanism.
Diff
diff --git a/batch/latest/userguide/infrastructure-security.md b/batch/latest/userguide/infrastructure-security.md index 741619a34..ae8799b04 100644 --- a//batch/latest/userguide/infrastructure-security.md +++ b//batch/latest/userguide/infrastructure-security.md @@ -18,2 +17,0 @@ You use AWS published API calls to access AWS Batch through the network. Clients -Additionally, requests must be signed by using an access key ID and a secret access key that is associated with an IAM principal. Or you can use the [AWS Security Token Service](https://docs.aws.amazon.com/STS/latest/APIReference/welcome.html) (AWS STS) to generate temporary security credentials to sign requests. -