AWS cloud-map high security documentation change
Summary
Removed explicit requirement for request signing with access keys or STS credentials
Security assessment
The removed line explicitly stated the requirement for request signing - a critical security control. Removing this documentation could lead to misconfigurations where users might disable authentication requirements, creating potential unauthorized access risks.
Diff
diff --git a/cloud-map/latest/dg/infrastructure-security.md b/cloud-map/latest/dg/infrastructure-security.md index 728ee06b1..88effe679 100644 --- a//cloud-map/latest/dg/infrastructure-security.md +++ b//cloud-map/latest/dg/infrastructure-security.md @@ -18,2 +17,0 @@ You use AWS published API calls to access AWS Cloud Map through the network. Cli -Additionally, requests must be signed by using an access key ID and a secret access key that is associated with an IAM principal. Or you can use the [AWS Security Token Service](https://docs.aws.amazon.com/STS/latest/APIReference/welcome.html) (AWS STS) to generate temporary security credentials to sign requests. -