AWS Security ChangesHomeSearch

AWS general documentation change

Service: general · 2025-11-13 · Documentation low

File: general/latest/gr/kms.md

Summary

Added rate limit documentation for GenerateDataKeyPair (ECC_NIST_EDWARDS25519)

Security assessment

Documents cryptographic key management quotas but does not address a security vulnerability.

Diff

diff --git a/general/latest/gr/kms.md b/general/latest/gr/kms.md
index 208d62a39..787713601 100644
--- a//general/latest/gr/kms.md
+++ b//general/latest/gr/kms.md
@@ -82,0 +83 @@ EnableKeyRotation request rate | Each supported Region: 15 per second |  [Yes](h
+GenerateDataKeyPair (ECC_NIST_EDWARDS25519) request rate | Each supported Region: 100 per second |  [Yes](https://console.aws.amazon.com/servicequotas/home/services/kms/quotas/L-7851D255) | Maximum requests per second to generate ECC_NIST_EDWARDS25519 data key pairs. This shared quota applies to GenerateDataKeyPair and GenerateDataKeyPairWithoutPlaintext requests for ECC_NIST_EDWARDS25519 data key pairs. When you reach this quota, KMS rejects this type of request for the remainder of the interval.