AWS Security ChangesHomeSearch

AWS datasync high security documentation change

Service: datasync · 2025-10-22 · Security-related high

File: datasync/latest/userguide/infrastructure-security.md

Summary

Removed statement about requiring signed requests using access keys or AWS STS

Security assessment

Deletion of critical security practice documentation about request signing could lead to misconfigurations. This change removes explicit guidance about a fundamental AWS security requirement (signed API requests), creating potential for insecure implementations.

Diff

diff --git a/datasync/latest/userguide/infrastructure-security.md b/datasync/latest/userguide/infrastructure-security.md
index 143956006..b87052271 100644
--- a//datasync/latest/userguide/infrastructure-security.md
+++ b//datasync/latest/userguide/infrastructure-security.md
@@ -18,2 +17,0 @@ You use AWS published API calls to access DataSync through the network. Clients
-Additionally, requests must be signed by using an access key ID and a secret access key that is associated with an IAM principal. Or you can use the [AWS Security Token Service](https://docs.aws.amazon.com/STS/latest/APIReference/welcome.html) (AWS STS) to generate temporary security credentials to sign requests.
-