AWS connect documentation change
Summary
Updated certificate guidance for enabling encryption with Amazon Chime SDK Voice Connector, specifying use of Amazon Trust Services certificates and providing a link to the official repository.
Security assessment
The change updates security-related documentation for TLS encryption setup. It clarifies the certificate authority (Amazon Trust Services) and points to the official source, which helps ensure proper and secure configuration. However, there is no evidence this change addresses a specific, disclosed security vulnerability; it appears to be a routine documentation update for accuracy and clarity.
Diff
diff --git a/connect/latest/adminguide/create-contact-lens-connector.md b/connect/latest/adminguide/create-contact-lens-connector.md index 9093906a8..d8ae85acb 100644 --- a//connect/latest/adminguide/create-contact-lens-connector.md +++ b//connect/latest/adminguide/create-contact-lens-connector.md @@ -31 +31 @@ This topic explains how to create a Contact Lens connector to integrate with you - * If you enable encryption, import the wildcard root certificate into your SIP infrastructure. You can download it from [here](https://s3.amazonaws.com/voice-connector-certs/combined-ca-bundle.pem). + * Amazon Chime SDK Voice Connector uses TLS server certificates issued by Amazon Trust Services. Most modern operating systems trust Amazon Trust Services by default. If this is not the case for your SIP infrastructure and you enable encryption, you may need to add the Starfield and Amazon Trust Services root CA certificates, excluding the EU roots, to your trust stores. You can find these certificates [here](https://www.amazontrust.com/repository/).