AWS xray high security documentation change
Summary
Removed critical requirement for signing requests with access keys or STS temporary credentials
Security assessment
Omitting authentication requirements could lead to misconfigured security practices. This removal directly impacts awareness of fundamental security controls.
Diff
diff --git a/xray/latest/devguide/infrastructure-security.md b/xray/latest/devguide/infrastructure-security.md index 4c4937489..6ce9b9d08 100644 --- a//xray/latest/devguide/infrastructure-security.md +++ b//xray/latest/devguide/infrastructure-security.md @@ -18,2 +17,0 @@ You use AWS published API calls to access X-Ray through the network. Clients mus -Additionally, requests must be signed by using an access key ID and a secret access key that is associated with an IAM principal. Or you can use the [AWS Security Token Service](https://docs.aws.amazon.com/STS/latest/APIReference/welcome.html) (AWS STS) to generate temporary security credentials to sign requests. -