Security Token Service (STS) provides temporary credentials for identities (such as IAM users, applications that assume an IAM role, or federated identities). The application or user that receives these temporary credentials can then use those credentials to access some AWS resources for a limited time.