AWS outposts medium security documentation change
Summary
Removed statement about requiring signed requests with access keys or AWS STS temporary credentials
Security assessment
Deletion of authentication requirements could indicate a documentation correction about security controls. Removing references to mandatory request signing and secret access keys might impact understanding of API security practices, though no explicit vulnerability is mentioned.
Diff
diff --git a/outposts/latest/userguide/infrastructure-security.md b/outposts/latest/userguide/infrastructure-security.md index 11303c6bf..514ad55af 100644 --- a//outposts/latest/userguide/infrastructure-security.md +++ b//outposts/latest/userguide/infrastructure-security.md @@ -20,2 +19,0 @@ You use AWS published API calls to access AWS Outposts through the network. Clie -Additionally, requests must be signed by using an access key ID and a secret access key that is associated with an IAM principal. Or you can use the [AWS Security Token Service](https://docs.aws.amazon.com/STS/latest/APIReference/welcome.html) (AWS STS) to generate temporary security credentials to sign requests. -