AWS rolesanywhere documentation change
Summary
Added ML-DSA key support and specified ML-DSA algorithm variants for authentication
Security assessment
The changes explicitly include ML-DSA keys and algorithms as supported methods, aligning with updates in authentication processes. This adds documentation for new security features (post-quantum algorithms) but does not indicate a resolved security issue.
Diff
diff --git a/rolesanywhere/latest/userguide/authentication.md b/rolesanywhere/latest/userguide/authentication.md index 9a2ee57db..dd862d611 100644 --- a//rolesanywhere/latest/userguide/authentication.md +++ b//rolesanywhere/latest/userguide/authentication.md @@ -41 +41 @@ The signature uses the same canonicalization mechanism as [AWS Signature V4 for -RSA and EC keys are supported; RSA keys are used with the RSA PKCS#1 v1.5 signing algorithm. EC keys are used with the ECDSA. +RSA, EC and ML-DSA keys are supported; RSA keys are used with the RSA PKCS#1 v1.5 signing algorithm. EC keys are used with the ECDSA. ML-DSA keys can be used with ML-DSA-44, ML-DSA-65 or ML-DSA-87.