diff --git a/kbs/docs/config.md b/kbs/docs/config.md
index 2153fae270..0659832121 100644
--- a/kbs/docs/config.md
+++ b/kbs/docs/config.md
@@ -37,10 +37,11 @@ The following properties can be set under the `attestation_token_config` section
 
 >This section is available only when the `resource` feature is enabled.
 
-| Property                   | Type          | Description                                         | Required | Default   |
-|----------------------------|---------------|-----------------------------------------------------|----------|-----------|
-| `attestation_token_config` | String        | Attestation token broker type. Valid values: `CoCo` | Yes      | -         |
-| `trusted_certs_paths`        | String Array  | Trusted root certificates file paths (PEM format).  | No       | -         |
+| Property                   | Type         | Description                                                                                                                         | Required | Default |
+|----------------------------|--------------|-------------------------------------------------------------------------------------------------------------------------------------|----------|---------|
+| `attestation_token_config` | String       | Attestation token broker type. Valid values: `CoCo`                                                                                 | Yes      | -       |
+| `trusted_certs_paths`      | String Array | Trusted Certificates file (PEM format) or a valid Url (`file://` or `https://`) pointing to a JWKSet certificates (local or OpenID) | No       | -       |
+
 
 If `trusted_certs_paths` is set, KBS will forcibly check the validity of the Attestation Token signature public key certificate,
 if not set this field, KBS will skip the verification of the certificate.