AWS payment-cryptography documentation change
Summary
Updated cross-account use policy to allow access with resource-based policies
Security assessment
The change clarifies that cross-account access is permitted when controlled through resource-based policies, enhancing security documentation without evidence of a vulnerability fix.
Diff
diff --git a/payment-cryptography/latest/DataAPIReference/API_DecryptData.md b/payment-cryptography/latest/DataAPIReference/API_DecryptData.md index 6be64961b..fc8689c70 100644 --- a//payment-cryptography/latest/DataAPIReference/API_DecryptData.md +++ b//payment-cryptography/latest/DataAPIReference/API_DecryptData.md @@ -23 +23 @@ For information about valid keys for this operation, see [Understanding key attr -**Cross-account use** : This operation can't be used across different AWS accounts. +**Cross-account use** : This operation supports cross-account use when the key has a resource-based policy that grants access. For more information, see [Resource-based policies](https://docs.aws.amazon.com/payment-cryptography/latest/userguide/security_iam_resource-based-policies.html).