AWS cloudhsm documentation change
Summary
Added documentation for disabling client key durability in OpenSSL Provider
Security assessment
Documents a security feature (key availability check) and how to disable it, but doesn't address a specific vulnerability or incident.
Diff
diff --git a/cloudhsm/latest/userguide/working-client-sync.md b/cloudhsm/latest/userguide/working-client-sync.md index df3b53fb4..25951a823 100644 --- a//cloudhsm/latest/userguide/working-client-sync.md +++ b//cloudhsm/latest/userguide/working-client-sync.md @@ -68,0 +69,12 @@ OpenSSL Dynamic Engine +OpenSSL Dynamic Engine Provider + + +###### To disable client key durability for Client SDK 5 on Linux + + * Use the configure tool to disable client key durability settings. + + $ sudo /opt/cloudhsm/bin/configure-openssl-provider --disable-key-availability-check + + + +