Comment 6 for bug 732907

Yes, I know that the EC2 API calls them "access key ID" and "secret access key", but this doesn't make it a token exchange scheme just because they are named differently. It's a fixed public identifier plus a fixed secret thing, aka a username and password.