> For the complete documentation index, see [llms.txt](https://docs.corppass.gov.sg/llms.txt). Markdown versions of documentation pages are available by appending `.md` to page URLs; this page is available as [Markdown](https://docs.corppass.gov.sg/what-you-need-to-know-before-onboarding-a-digital-service-in-corppass/important-things-to-note/tls-certificates.md). # TLS Certificates ### **What should I do to prevent service disruptions due to Corppass certificate rotation?** To avoid disruptions: * **Do NOT pin Corppass TLS leaf certificates.** These certificates are rotated periodically without prior notice. * **Ensure your system trusts AWS root CA certificates.** The trusted certificate chain can be found in the [AWS Trust Repository](https://docs.aws.amazon.com/acm/latest/userguide/acm-certificate.html). By following these steps, your system will remain compatible with Corppass certificate updates. *** ### **How should I handle certificate validation for Corppass?** It is recommended for Relying Parties to trust all certificates issued by established Certificate Authorities (CAs). Amazon Web Services (AWS) is Corppass's issuing CA. Add AWS root certificates to your trust store, available at the [AWS Trust Repository](https://www.amazontrust.com/repository/), to ensure uninterrupted service. *** ### **Why is TLS certificate pinning not recommended for Corppass?** Pinning TLS leaf certificates is not recommended because Corppass certificates are regularly rotated or re-issued. If your system relies on pinned certificates, this will result in a service disruption. Corppass rotates its certificates as a routine maintenance activity without prior notification. As such, we highly recommend Relying Parties not to pin our leaf certificates. --- # Agent Instructions This documentation is published with GitBook. GitBook is the documentation platform designed so that both humans and AI agents can read, navigate, and reason over technical content effectively. Learn more at gitbook.com. ## Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://docs.corppass.gov.sg/what-you-need-to-know-before-onboarding-a-digital-service-in-corppass/important-things-to-note/tls-certificates.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.