AWS payment-cryptography documentation change
Summary
Modified cross-account policy to enable access via resource-based policies
Security assessment
Adds documentation about secure cross-account access methods through IAM policies, improving security guidance without addressing a specific vulnerability.
Diff
diff --git a/payment-cryptography/latest/DataAPIReference/API_EncryptData.md b/payment-cryptography/latest/DataAPIReference/API_EncryptData.md index b2cfaa372..401c774de 100644 --- a//payment-cryptography/latest/DataAPIReference/API_EncryptData.md +++ b//payment-cryptography/latest/DataAPIReference/API_EncryptData.md @@ -27 +27 @@ For information about valid keys for this operation, see [Understanding key attr -**Cross-account use** : This operation can't be used across different AWS accounts. +**Cross-account use** : This operation supports cross-account use when the key has a resource-based policy that grants access. For more information, see [Resource-based policies](https://docs.aws.amazon.com/payment-cryptography/latest/userguide/security_iam_resource-based-policies.html).