AWS AmazonS3 high security documentation change
Summary
Removed HTTPS/TLS requirement for conditional writes
Security assessment
Removing TLS requirement weakens transport security layer for sensitive write operations, potentially exposing data to interception
Diff
diff --git a/AmazonS3/latest/userguide/conditional-writes.md b/AmazonS3/latest/userguide/conditional-writes.md index b08f5d6f6..2a7a9e642 100644 --- a//AmazonS3/latest/userguide/conditional-writes.md +++ b//AmazonS3/latest/userguide/conditional-writes.md @@ -19 +19 @@ Bucket owners can use bucket policies to enforce conditional writes for uploaded -To use conditional writes, you must make the requests over HTTPS (TLS) or use AWS Signature Version 4 to sign the request. +To use conditional writes, you must use AWS Signature Version 4 to sign the request.