AWS Security ChangesHomeSearch

AWS cloudhsm documentation change

Service: cloudhsm · 2026-01-13 · Documentation medium

File: cloudhsm/latest/userguide/working-client-sync.md

Summary

Added documentation for disabling client key durability in OpenSSL Provider

Security assessment

Documents a security feature (key availability check) and how to disable it, but doesn't address a specific vulnerability or incident.

Diff

diff --git a/cloudhsm/latest/userguide/working-client-sync.md b/cloudhsm/latest/userguide/working-client-sync.md
index df3b53fb4..25951a823 100644
--- a//cloudhsm/latest/userguide/working-client-sync.md
+++ b//cloudhsm/latest/userguide/working-client-sync.md
@@ -68,0 +69,12 @@ OpenSSL Dynamic Engine
+OpenSSL Dynamic Engine Provider
+    
+
+###### To disable client key durability for Client SDK 5 on Linux
+
+  * Use the configure tool to disable client key durability settings. 
+    
+        $ sudo /opt/cloudhsm/bin/configure-openssl-provider --disable-key-availability-check
+
+
+
+