AWS Security ChangesHomeSearch

AWS payment-cryptography documentation change

Service: payment-cryptography · 2026-05-04 · Documentation low

File: payment-cryptography/latest/DataAPIReference/API_GenerateCardValidationData.md

Summary

Revised cross-account policy to allow resource-based policy access

Security assessment

Documents security feature for cross-account operations using IAM policies without evidence of vulnerability mitigation.

Diff

diff --git a/payment-cryptography/latest/DataAPIReference/API_GenerateCardValidationData.md b/payment-cryptography/latest/DataAPIReference/API_GenerateCardValidationData.md
index 5de33d5dc..423ed7f7e 100644
--- a//payment-cryptography/latest/DataAPIReference/API_GenerateCardValidationData.md
+++ b//payment-cryptography/latest/DataAPIReference/API_GenerateCardValidationData.md
@@ -17 +17 @@ For information about valid keys for this operation, see [Understanding key attr
-**Cross-account use** : This operation can't be used across different AWS accounts.
+**Cross-account use** : This operation supports cross-account use when the key has a resource-based policy that grants access. For more information, see [Resource-based policies](https://docs.aws.amazon.com/payment-cryptography/latest/userguide/security_iam_resource-based-policies.html).