AWS Security ChangesHomeSearch

AWS data-exchange high security documentation change

Service: data-exchange · 2025-10-22 · Security-related high

File: data-exchange/latest/userguide/infrastructure-security.md

Summary

Removed critical authentication requirements for API access including access key signing and STS temporary credentials

Security assessment

Deleting documentation about mandatory request signing mechanisms removes guidance essential for secure API access. This could lead to insecure implementations if developers overlook authentication requirements.

Diff

diff --git a/data-exchange/latest/userguide/infrastructure-security.md b/data-exchange/latest/userguide/infrastructure-security.md
index 3214ce3c6..e86c07125 100644
--- a//data-exchange/latest/userguide/infrastructure-security.md
+++ b//data-exchange/latest/userguide/infrastructure-security.md
@@ -18,2 +17,0 @@ You use AWS published API calls to access AWS Data Exchange through the network.
-Additionally, requests must be signed by using an access key ID and a secret access key that is associated with an IAM principal. Or you can use the [AWS Security Token Service](https://docs.aws.amazon.com/STS/latest/APIReference/welcome.html) (AWS STS) to generate temporary security credentials to sign requests.
-