AWS Security ChangesHomeSearch

AWS simspaceweaver high security documentation change

Service: simspaceweaver · 2025-10-22 · Security-related high

File: simspaceweaver/1.15/userguide/infrastructure-security.md

Summary

Removed explanation about signing API requests with access keys or AWS STS temporary credentials.

Security assessment

The deletion of the requirement to sign API requests removes critical security documentation. This omission could lead to insecure configurations where users bypass authentication mechanisms, risking unauthorized access.

Diff

diff --git a/simspaceweaver/1.15/userguide/infrastructure-security.md b/simspaceweaver/1.15/userguide/infrastructure-security.md
index ca5a8078a..afa4d1f9e 100644
--- a//simspaceweaver/1.15/userguide/infrastructure-security.md
+++ b//simspaceweaver/1.15/userguide/infrastructure-security.md
@@ -22,2 +21,0 @@ You use AWS published API calls to access SimSpace Weaver through the network. C
-Additionally, requests must be signed by using an access key ID and a secret access key that is associated with an IAM principal. Or you can use the [AWS Security Token Service](https://docs.aws.amazon.com/STS/latest/APIReference/welcome.html) (AWS STS) to generate temporary security credentials to sign requests.
-