AWS Security ChangesHomeSearch

AWS rolesanywhere documentation change

Service: rolesanywhere · 2025-11-22 · Documentation medium

File: rolesanywhere/latest/userguide/authentication.md

Summary

Added ML-DSA key support and specified ML-DSA algorithm variants for authentication

Security assessment

The changes explicitly include ML-DSA keys and algorithms as supported methods, aligning with updates in authentication processes. This adds documentation for new security features (post-quantum algorithms) but does not indicate a resolved security issue.

Diff

diff --git a/rolesanywhere/latest/userguide/authentication.md b/rolesanywhere/latest/userguide/authentication.md
index 9a2ee57db..dd862d611 100644
--- a//rolesanywhere/latest/userguide/authentication.md
+++ b//rolesanywhere/latest/userguide/authentication.md
@@ -41 +41 @@ The signature uses the same canonicalization mechanism as [AWS Signature V4 for
-RSA and EC keys are supported; RSA keys are used with the RSA PKCS#1 v1.5 signing algorithm. EC keys are used with the ECDSA.
+RSA, EC and ML-DSA keys are supported; RSA keys are used with the RSA PKCS#1 v1.5 signing algorithm. EC keys are used with the ECDSA. ML-DSA keys can be used with ML-DSA-44, ML-DSA-65 or ML-DSA-87.