AWS AmazonCloudFront documentation change
Summary
Expanded supported ECDSA curves from secp256r1 to include secp384r1 for trust store certificates
Security assessment
The change adds support for stronger cryptographic algorithms (secp384r1) in trust stores, improving security documentation. However, there's no evidence this addresses a specific vulnerability or security incident.
Diff
diff --git a/AmazonCloudFront/latest/DeveloperGuide/trust-stores-certificate-management.md b/AmazonCloudFront/latest/DeveloperGuide/trust-stores-certificate-management.md index 592bccb10..b3f87e5a6 100644 --- a//AmazonCloudFront/latest/DeveloperGuide/trust-stores-certificate-management.md +++ b//AmazonCloudFront/latest/DeveloperGuide/trust-stores-certificate-management.md @@ -55 +55 @@ Trust stores have specific requirements for the CA certificates they contain: - * ECDSA: secp256r1 + * ECDSA: secp256r1, secp384r1