AWS pinpoint documentation change
Summary
Removed details about requiring signed requests with IAM access keys or AWS STS temporary credentials
Security assessment
The removed content described standard security practices (signing requests with credentials) but did not indicate a vulnerability being addressed. This change reduces emphasis on credential requirements but does not directly resolve a security flaw.
Diff
diff --git a/pinpoint/latest/developerguide/security-infrastructure-security.md b/pinpoint/latest/developerguide/security-infrastructure-security.md index 047ab645d..32c6d4f30 100644 --- a//pinpoint/latest/developerguide/security-infrastructure-security.md +++ b//pinpoint/latest/developerguide/security-infrastructure-security.md @@ -20,2 +19,0 @@ You use AWS published API calls to access Amazon Pinpoint through the network. C -Additionally, requests must be signed by using an access key ID and a secret access key that is associated with an IAM principal. Or you can use the [AWS Security Token Service](https://docs.aws.amazon.com/STS/latest/APIReference/welcome.html) (AWS STS) to generate temporary security credentials to sign requests. -