AWS Security ChangesHomeSearch

AWS AmazonCloudFront documentation change

Service: AmazonCloudFront · 2026-01-31 · Documentation low

File: AmazonCloudFront/latest/DeveloperGuide/trust-stores-certificate-management.md

Summary

Expanded supported ECDSA curves from secp256r1 to include secp384r1 for trust store certificates

Security assessment

The change adds support for stronger cryptographic algorithms (secp384r1) in trust stores, improving security documentation. However, there's no evidence this addresses a specific vulnerability or security incident.

Diff

diff --git a/AmazonCloudFront/latest/DeveloperGuide/trust-stores-certificate-management.md b/AmazonCloudFront/latest/DeveloperGuide/trust-stores-certificate-management.md
index 592bccb10..b3f87e5a6 100644
--- a//AmazonCloudFront/latest/DeveloperGuide/trust-stores-certificate-management.md
+++ b//AmazonCloudFront/latest/DeveloperGuide/trust-stores-certificate-management.md
@@ -55 +55 @@ Trust stores have specific requirements for the CA certificates they contain:
-    * ECDSA: secp256r1
+    * ECDSA: secp256r1, secp384r1