AWS Security ChangesHomeSearch

AWS opensearch-service medium security documentation change

Service: opensearch-service · 2025-10-22 · Security-related medium

File: opensearch-service/latest/developerguide/infrastructure-security.md

Summary

Removed two lines explaining request signing requirements using access keys and AWS STS

Security assessment

Deletion of documentation about authentication mechanisms (access keys and STS) could reduce awareness of security best practices for API request signing. This impacts guidance for securing API access.

Diff

diff --git a/opensearch-service/latest/developerguide/infrastructure-security.md b/opensearch-service/latest/developerguide/infrastructure-security.md
index 58dc5759f..f3dae9abe 100644
--- a//opensearch-service/latest/developerguide/infrastructure-security.md
+++ b//opensearch-service/latest/developerguide/infrastructure-security.md
@@ -18,2 +17,0 @@ You use AWS published API calls to access OpenSearch Service through the network
-Additionally, requests must be signed by using an access key ID and a secret access key that is associated with an IAM principal. Or you can use the [AWS Security Token Service](https://docs.aws.amazon.com/STS/latest/APIReference/welcome.html) (AWS STS) to generate temporary security credentials to sign requests.
-