AWS payment-cryptography documentation change
Summary
Revised cross-account use terms for resource-based policy support
Security assessment
Enhances documentation about secure cross-account re-encryption using IAM policies, not tied to a specific security fix.
Diff
diff --git a/payment-cryptography/latest/DataAPIReference/API_ReEncryptData.md b/payment-cryptography/latest/DataAPIReference/API_ReEncryptData.md index 91793b65a..c1ee9f097 100644 --- a//payment-cryptography/latest/DataAPIReference/API_ReEncryptData.md +++ b//payment-cryptography/latest/DataAPIReference/API_ReEncryptData.md @@ -21 +21 @@ For information about valid keys for this operation, see [Understanding key attr -**Cross-account use** : This operation can't be used across different AWS accounts. +**Cross-account use** : This operation supports cross-account use when the key has a resource-based policy that grants access. For more information, see [Resource-based policies](https://docs.aws.amazon.com/payment-cryptography/latest/userguide/security_iam_resource-based-policies.html).