美国联邦信息处理标准 (FIPS) 140-2

概览

FIPS_sized

美国联邦信息处理标准 (FIPS) 第 140-2 版是美国和加拿大政府标准,其中规定了对保护敏感信息的加密模块的要求。在通过命令行界面 (CLI) 或以编程方式使用 API 访问 AWS 美国东部/西部、AWS GovCloud(美国)或 AWS 加拿大(中部)时,如果您需要使用经过 FIPS 140-2 验证的加密模块,以下部分提供了 AWS 区域可用的 FIPS 终端节点列表。AWS GovCloud(美国)中的 Amazon Virtual Private Cloud VPN 终端节点使用通过 FIPS 140-2 验证的加密模块操作。AWS 与客户合作,提供在使用 AWS 美国东部/西部、AWS GovCloud(美国)或 AWS 加拿大(中部)区域时管理合规性所需的信息。有关该标准的更多信息,请参阅 NIST 计算机安全资源中心网站上的加密模块验证计划

  • AWS 美国东部/西部可以使用哪些 FIPS 终端节点?

    下表列出了 AWS 美国东部/西部区域中各种 AWS 服务可以使用的各个 FIPS 终端节点。 

    AWS 服务     AWS 美国东部/西部终端节点    
    Amazon API Gateway

    apigateway-fips.us-east-1.amazonaws.com

    apigateway-fips.us-east-2.amazonaws.com

    apigateway-fips.us-west-1.amazonaws.com

    apigateway-fips.us-west-2.amazonaws.com

    Amazon AppStream 2.0

    appstream2-fips.us-east-1.amazonaws.com

    appstream2-fips.us-west-2.amazonaws.com

    Amazon Cloud Directory

    clouddirectory-fips.us-east-1.amazonaws.com

    clouddirectory-fips.us-east-2.amazonaws.com

    clouddirectory-fips.us-west-2.amazonaws.com

    Amazon CloudFront
    cloudfront-fips.amazonaws.com
    Amazon CloudWatch Events

    events-fips.us-east-1.amazonaws.com

    events-fips.us-east-2.amazonaws.com

    events-fips.us-west-1.amazonaws.com

    events-fips.us-west-2.amazonaws.com

    Amazon CloudWatch Logs

    logs-fips.us-east-1.amazonaws.com

    logs-fips.us-east-2.amazonaws.com

    logs-fips.us-west-1.amazonaws.com

    logs-fips.us-west-2.amazonaws.com

    Amazon Cognito

    <your_user_pool_domain>.auth-fips.us-east-1.amazoncognito.com

    <your_user_pool_domain>.auth-fips.us-east-2.amazoncognito.com

    <your_user_pool_domain>.auth-fips.us-west-2.amazoncognito.com

    cognito-identity-fips.us-east-1.amazonaws.com

    cognito-identity-fips.us-east-2.amazonaws.com

    cognito-identity-fips.us-west-2.amazonaws.com

    cognito-idp-fips.us-east-1.amazonaws.com

    cognito-idp-fips.us-east-2.amazonaws.com

    cognito-idp-fips.us-west-2.amazonaws.com

    cognito-sync-fips.us-east-1.amazonaws.com

    cognito-sync-fips.us-east-2.amazonaws.com

    cognito-sync-fips.us-west-2.amazonaws.com

    Amazon Comprehend

    comprehend-fips.us-east-1.amazonaws.com

    comprehend-fips.us-east-2.amazonaws.com

    comprehend-fips.us-west-2.amazonaws.com

    Amazon Connect

    connect-fips.us-east-1.amazonaws.com

    connect-fips.us-west-2.amazonaws.com

    Amazon DynamoDB

    dynamodb-fips.us-east-1.amazonaws.com

    dynamodb-fips.us-east-2.amazonaws.com

    dynamodb-fips.us-west-1.amazonaws.com

    dynamodb-fips.us-west-2.amazonaws.com

    Amazon Elastic Block Store (EBS) 直接使用 Amazon EC2
    Amazon Elastic Compute Cloud (EC2)

    ec2-fips.us-east-1.amazonaws.com

    ec2-fips.us-east-2.amazonaws.com

    ec2-fips.us-west-1.amazonaws.com

    ec2-fips.us-west-2.amazonaws.com

    ec2messages-fips.us-east-1.amazonaws.com

    ec2messages-fips.us-east-2.amazonaws.com

    ec2messages-fips.us-west-1.amazonaws.com

    ec2messages-fips.us-west-2.amazonaws.com

    Amazon Elastic Container Registry

    *.dkr.ecr-fips.us-east-1.amazonaws.com

    *.dkr.ecr-fips.us-east-2.amazonaws.com

    *.dkr.ecr-fips.us-west-1.amazonaws.com

    *.dkr.ecr-fips.us-west-2.amazonaws.com

    ecr-fips.us-east-1.amazonaws.com

    ecr-fips.us-east-2.amazonaws.com

    ecr-fips.us-west-1.amazonaws.com

    ecr-fips.us-west-2.amazonaws.com

    Amazon Elastic Container Service

    ecs-fips.us-east-1.amazonaws.com

    ecs-fips.us-east-2.amazonaws.com

    ecs-fips.us-west-1.amazonaws.com

    ecs-fips.us-west-2.amazonaws.com

    Amazon Elastic File System

    elasticfilesystem-fips.us-east-1.amazonaws.com

    elasticfilesystem-fips.us-east-2.amazonaws.com

    elasticfilesystem-fips.us-west-1.amazonaws.com

    elasticfilesystem-fips.us-west-2.amazonaws.com

    Amazon Elastic Kubernetes Service (EKS)

    fips.eks.us-east-1.amazonaws.com

    fips.eks.us-east-2.amazonaws.com

    fips.eks.us-west-1.amazonaws.com

    fips.eks.us-west-2.amazonaws.com

    Amazon ElastiCache

    elasticache-fips.us-east-1.amazonaws.com

    elasticache-fips.us-east-2.amazonaws.com

    elasticache-fips.us-west-1.amazonaws.com

    elasticache-fips.us-west-2.amazonaws.com

    Amazon Elasticsearch

    es-fips.us-east-1.amazonaws.com

    es-fips.us-east-2.amazonaws.com

    es-fips.us-west-1.amazonaws.com

    es-fips.us-west-2.amazonaws.com

    Amazon EMR

    elasticmapreduce-fips.us-east-1.amazonaws.com

    elasticmapreduce-fips.us-east-2.amazonaws.com

    elasticmapreduce-fips.us-west-1.amazonaws.com

    elasticmapreduce-fips.us-west-2.amazonaws.com

    Amazon GuardDuty

    guardduty-fips.us-east-1.amazonaws.com

    guardduty-fips.us-east-2.amazonaws.com

    guardduty-fips.us-west-1.amazonaws.com

    guardduty-fips.us-west-2.amazonaws.com

    Amazon Inspector

    inspector-fips.us-east-1.amazonaws.com

    inspector-fips.us-east-2.amazonaws.com

    inspector-fips.us-west-1.amazonaws.com

    inspector-fips.us-west-2.amazonaws.com

    Amazon Kinesis Data Analytics

    kinesisanalytics-fips.us-east-1.amazonaws.com

    kinesisanalytics-fips.us-east-2.amazonaws.com

    kinesisanalytics-fips.us-west-2.amazonaws.com

    Amazon Kinesis Data Firehose

    firehose-fips.us-east-1.amazonaws.com

    firehose-fips.us-east-2.amazonaws.com

    firehose-fips.us-west-1.amazonaws.com

    firehose-fips.us-west-2.amazonaws.com

    Amazon Kinesis Streams

    kinesis-fips.us-east-1.amazonaws.com

    kinesis-fips.us-east-2.amazonaws.com

    kinesis-fips.us-west-1.amazonaws.com

    kinesis-fips.us-west-2.amazonaws.com

    Amazon Macie

    macie-fips.us-east-1.amazonaws.com

    macie-fips.us-west-2.amazonaws.com

    Amazon MQ

    mq-fips.us-east-1.amazonaws.com

    mq-fips.us-east-2.amazonaws.com

    mq-fips.us-west-1.amazonaws.com

    mq-fips.us-west-2.amazonaws.com

    Amazon Pinpoint

    pinpoint-fips.us-east-1.amazonaws.com

    pinpoint-fips.us-west-2.amazonaws.com

    Amazon Polly

    polly-fips.us-east-1.amazonaws.com

    polly-fips.us-east-2.amazonaws.com

    polly-fips.us-west-1.amazonaws.com

    polly-fips.us-west-2.amazonaws.com

    Amazon QuickSight

    fips-us-east-1.quicksight.aws.amazon.com

    fips-us-east-2.quicksight.aws.amazon.com

    fips-us-west-2.quicksight.aws.amazon.com

    Amazon Redshift

    redshift-fips.us-east-1.amazonaws.com

    redshift-fips.us-east-2.amazonaws.com

    redshift-fips.us-west-1.amazonaws.com

    redshift-fips.us-west-2.amazonaws.com

    Amazon Rekognition

    rekognition-fips.us-east-1.amazonaws.com

    rekognition-fips.us-east-2.amazonaws.com

    rekognition-fips.us-west-1.amazonaws.com

    rekognition-fips.us-west-2.amazonaws.com

    Amazon Relational Database Service (RDS) / Amazon Aurora

    rds-fips.us-east-1.amazonaws.com

    rds-fips.us-east-2.amazonaws.com

    rds-fips.us-west-1.amazonaws.com

    rds-fips.us-west-2.amazonaws.com

    Amazon Route 53

    route53-fips.amazonaws.com
    Amazon S3 Glacier

    glacier-fips.us-east-1.amazonaws.com

    glacier-fips.us-east-2.amazonaws.com

    glacier-fips.us-west-1.amazonaws.com

    glacier-fips.us-west-2.amazonaws.com

    Amazon SageMaker

    api-fips.sagemaker.us-west-1.amazonaws.com

    api-fips.sagemaker.us-east-1.amazonaws.com

    api-fips.sagemaker.us-east-2.amazonaws.com

    api-fips.sagemaker.us-west-2.amazonaws.com

    runtime-fips.sagemaker.us-east-1.amazonaws.com

    runtime-fips.sagemaker.us-east-2.amazonaws.com

    runtime-fips.sagemaker.us-west-2.amazonaws.com

    runtime-fips.sagemaker.us-west-1.amazonaws.com

    Amazon Simple Email Service (API HTTPS)

    email-fips.us-east-1.amazonaws.com

    email-fips.us-west-2.amazonaws.com

    Amazon Simple Email Service (SMTP)

    email-smtp-fips.us-east-1.amazonaws.com

    email-smtp-fips.us-west-2.amazonaws.com

    Amazon Simple Notification Service (SNS)

    sns-fips.us-west-1.amazonaws.com

    sns-fips.us-west-2.amazonaws.com

    sns-fips.us-east-2.amazonaws.com

    sns-fips.us-east-1.amazonaws.com

    Amazon Simple Queue Service (SQS)

    sqs-fips.us-east-2.amazonaws.com

    sqs-fips.us-west-2.amazonaws.com

    sqs-fips.us-east-1.amazonaws.com

    sqs-fips.us-west-1.amazonaws.com

    Amazon Simple Storage Service (S3)

    注意:这些终端节点只能用于虚拟托管类型的寻址。 例如:https://bucket.s3-fips.us-east-2.amazonaws.com。 有关更多信息,请访问 Amazon S3 文档页面

    s3-fips.dualstack.us-east-1.amazonaws.com

    s3-fips.dualstack.us-east-2.amazonaws.com

    s3-fips.dualstack.us-west-1.amazonaws.com

    s3-fips.dualstack.us-west-2.amazonaws.com

    s3-fips.us-east-1.amazonaws.com

    s3-fips.us-east-2.amazonaws.com

    s3-fips.us-west-1.amazonaws.com

    s3-fips.us-west-2.amazonaws.com

    Amazon Simple Workflow Service (SWF)

    swf-fips.us-east-1.amazonaws.com

    swf-fips.us-east-2.amazonaws.com

    swf-fips.us-west-1.amazonaws.com

    swf-fips.us-west-2.amazonaws.com

    Amazon Transcribe fips.transcribe.us-west-1.amazonaws.com
    Amazon Translate

    translate-fips.us-west-2.amazonaws.com

    translate-fips.us-east-2.amazonaws.com

    translate-fips.us-east-1.amazonaws.com

    Amazon Virtual Private Cloud (VPC)

    直接使用 Amazon EC2

    Amazon WorkDocs

    workdocs-fips.us-east-1.amazonaws.com

    workdocs-fips.us-west-2.amazonaws.com

    Amazon WorkSpaces

    workspaces-fips.us-east-1.amazonaws.com

    workspaces-fips.us-west-2.amazonaws.com

    AWS Batch

    fips.batch.us-east-1.amazonaws.com

    fips.batch.us-east-2.amazonaws.com

    fips.batch.us-west-1.amazonaws.com

    fips.batch.us-west-2.amazonaws.com

    AWS Certificate Manager

    acm-fips.us-east-1.amazonaws.com

    acm-fips.us-east-2.amazonaws.com

    acm-fips.us-west-2.amazonaws.com

    acm-fips.us-west-1.amazonaws.com

    AWS Certificate Manager 私有证书颁发机构

    acm-pca-fips.us-east-1.amazonaws.com

    acm-pca-fips.us-west-1.amazonaws.com

    acm-pca-fips.us-east-2.amazonaws.com

    acm-pca-fips.us-west-2.amazonaws.com

    AWS CloudFormation

    cloudformation-fips.us-east-1.amazonaws.com

    cloudformation-fips.us-east-2.amazonaws.com

    cloudformation-fips.us-west-1.amazonaws.com

    cloudformation-fips.us-west-2.amazonaws.com

    AWS CloudTrail

    cloudtrail-fips.us-east-1.amazonaws.com

    cloudtrail-fips.us-east-2.amazonaws.com

    cloudtrail-fips.us-west-1.amazonaws.com

    cloudtrail-fips.us-west-2.amazonaws.com

    AWS CodeBuild

    codebuild-fips.us-west-1.amazonaws.com

    codebuild-fips.us-east-1.amazonaws.com

    codebuild-fips.us-west-2.amazonaws.com

    codebuild-fips.us-east-2.amazonaws.com

    AWS CodeCommit

    codecommit-fips.us-east-1.amazonaws.com

    codecommit-fips.us-east-2.amazonaws.com

    codecommit-fips.us-west-1.amazonaws.com

    codecommit-fips.us-west-2.amazonaws.com

    git-codecommit-fips.us-east-1.amazonaws.com

    git-codecommit-fips.us-east-2.amazonaws.com

    git-codecommit-fips.us-west-1.amazonaws.com

    git-codecommit-fips.us-west-2.amazonaws.com

    AWS CodeDeploy

    codedeploy-fips.us-east-1.amazonaws.com

    codedeploy-fips.us-west-1.amazonaws.com

    codedeploy-fips.us-west-2.amazonaws.com

    codedeploy-fips.us-east-2.amazonaws.com

    codedeploy-commands-fips.us-east-1.amazonaws.com

    codedeploy-commands-fips.us-east-2.amazonaws.com

    codedeploy-commands-fips.us-west-1.amazonaws.com

    codedeploy-commands-fips.us-west-2.amazonaws.com

    AWS CodePipeline

    codepipeline-fips.us-east-1.amazonaws.com

    codepipeline-fips.us-east-2.amazonaws.com

    codepipeline-fips.us-west-1.amazonaws.com

    codepipeline-fips.us-west-2.amazonaws.com

    AWS Config

    config-fips.us-east-1.amazonaws.com    

    config-fips.us-east-2.amazonaws.com

    config-fips.us-west-1.amazonaws.com

    config-fips.us-west-2.amazonaws.com    

    AWS Database Migration Service (DMS)

    dms-fips.us-east-1.amazonaws.com

    dms-fips.us-east-2.amazonaws.com

    dms-fips.us-west-1.amazonaws.com

    dms-fips.us-west-2.amazonaws.com

    AWS DataSync

    datasync-fips.us-east-1.amazonaws.com

    datasync-fips.us-west-1.amazonaws.com

    datasync-fips.us-east-2.amazonaws.com

    datasync-fips.us-west-2.amazonaws.com

    AWS Direct Connect

    directconnect-fips.us-east-1.amazonaws.com

    directconnect-fips.us-east-2.amazonaws.com

    directconnect-fips.us-west-1.amazonaws.com

    directconnect-fips.us-west-2.amazonaws.com

    AWS Directory Service 

    ds-fips.us-east-1.amazonaws.com

    ds-fips.us-east-2.amazonaws.com

    ds-fips.us-west-1.amazonaws.com

    ds-fips.us-west-2.amazonaws.com

    AWS Elastic Beanstalk

    elasticbeanstalk-fips.us-east-1.amazonaws.com

    elasticbeanstalk-fips.us-east-2.amazonaws.com

    elasticbeanstalk-fips.us-west-1.amazonaws.com

    elasticbeanstalk-fips.us-west-2.amazonaws.com

    AWS Firewall Manager

    fms-fips.us-west-1.amazonaws.com

    fms-fips.us-east-1.amazonaws.com

    fms-fips.us-west-2.amazonaws.com

    fms-fips.us-east-2.amazonaws.com

    AWS Glue

    glue-fips.us-east-1.amazonaws.com

    glue-fips.us-east-2.amazonaws.com

    glue-fips.us-west-1.amazonaws.com

    glue-fips.us-west-2.amazonaws.com

    AWS Ground Station

    groundstation-fips.us-east-2.amazonaws.com

    groundstation-fips.us-west-2.amazonaws.com

    AWS Identity and Access Management (IAM) iam-fips.amazonaws.com(仅限 IAD 区域)   
    AWS Key Management Service (KMS)

    kms-fips.us-east-1.amazonaws.com

    kms-fips.us-east-2.amazonaws.com

    kms-fips.us-west-1.amazonaws.com

    kms-fips.us-west-2.amazonaws.com

    AWS Lambda

    lambda-fips.us-east-1.amazonaws.com

    lambda-fips.us-east-2.amazonaws.com

    lambda-fips.us-west-1.amazonaws.com

    lambda-fips.us-west-2.amazonaws.com

    AWS License Manager

    license-manager-fips.us-east-1.amazonaws.com

    license-manager-fips.us-east-2.amazonaws.com

    license-manager-fips.us-west-1.amazonaws.com

    license-manager-fips.us-west-2.amazonaws.com

    AWS OpsWorks for Chef Automate

    AWS OpsWorks for Puppet Enterprise

    opsworks-cm-fips.us-east-1.amazonaws.com

    opsworks-cm-fips.us-east-2.amazonaws.com

    opsworks-cm-fips.us-west-1.amazonaws.com

    opsworks-cm-fips.us-west-2.amazonaws.com

    AWS Organizations organizations-fips.us-east-1.amazonaws.com
    AWS Outposts

    outposts-fips.us-east-1.amazonaws.com

    outposts-fips.us-west-1.amazonaws.com

    AWS Resource Groups

    resource-groups-fips.us-east-1.amazonaws.com

    resource-groups-fips.us-east-2.amazonaws.com

    resource-groups-fips.us-west-2.amazonaws.com

    resource-groups-fips.us-west-1.amazonaws.com

    AWS Secrets Manager

    secretsmanager-fips.us-east-2.amazonaws.com

    secretsmanager-fips.us-west-1.amazonaws.com

    secretsmanager-fips.us-east-1.amazonaws.com

    secretsmanager-fips.us-west-2.amazonaws.com

    AWS Security Token Service (STS)

    sts-fips.us-east-1.amazonaws.com

    sts-fips.us-east-2.amazonaws.com

    sts-fips.us-west-1.amazonaws.com

    sts-fips.us-west-2.amazonaws.com

    AWS Server Migration Service (SMS)

    sms-fips.us-west-2.amazonaws.com

    sms-fips.us-east-1.amazonaws.com

    sms-fips.us-east-2.amazonaws.com

    sms-fips.us-west-1.amazonaws.com

    AWS Service Catalog

    servicecatalog-fips.us-east-1.amazonaws.com

    servicecatalog-fips.us-east-2.amazonaws.com

    servicecatalog-fips.us-west-1.amazonaws.com

    servicecatalog-fips.us-west-2.amazonaws.com

    AWS Shield shield-fips.us-east-1.amazonaws.com
    AWS Snowball

    snowball-fips.us-east-1.amazonaws.com

    snowball-fips.us-east-2.amazonaws.com

    snowball-fips.us-west-1.amazonaws.com

    snowball-fips.us-west-2.amazonaws.com

    AWS Step Functions

    states-fips.us-east-1.amazonaws.com

    states-fips.us-east-2.amazonaws.com

    states-fips.us-west-1.amazonaws.com

    states-fips.us-west-2.amazonaws.com

    AWS Storage Gateway

    storagegateway-fips.us-east-1.amazonaws.com

    storagegateway-fips.us-east-2.amazonaws.com

    storagegateway-fips.us-west-1.amazonaws.com

    storagegateway-fips.us-west-2.amazonaws.com

    AWS Systems Manager

    ssm-fips.us-east-1.amazonaws.com

    ssm-fips.us-east-2.amazonaws.com

    ssm-fips.us-west-1.amazonaws.com

    ssm-fips.us-west-2.amazonaws.com

    AWS Transfer Family

    transfer-fips.us-east-1.amazonaws.com

    transfer-fips.us-east-2.amazonaws.com

    transfer-fips.us-west-1.amazonaws.com

    transfer-fips.us-west-2.amazonaws.com

    AWS WAF

    waf-fips.amazonaws.com

    waf-regional-fips.us-east-1.amazonaws.com

    waf-regional-fips.us-east-2.amazonaws.com

    waf-regional-fips.us-west-1.amazonaws.com

    waf-regional-fips.us-west-2.amazonaws.com

    wafv2-fips.us-east-1.amazonaws.com

    wafv2-fips.us-east-2.amazonaws.com

    wafv2-fips.us-west-1.amazonaws.com

    wafv2-fips.us-west-2.amazonaws.com

    Elastic Load Balancing

    elasticloadbalancing-fips.us-east-1.amazonaws.com

    elasticloadbalancing-fips.us-east-2.amazonaws.com

    elasticloadbalancing-fips.us-west-1.amazonaws.com

    elasticloadbalancing-fips.us-west-2.amazonaws.com

    shield-fips.us-east-1.amazonaws.com
    shield-fips.us-east-1.amazonaws.com
    shield-fips.us-east-1.amazonaws.com
    不需要 FIPS
    cloudfront-fips.amazonaws.com
    cloudfront-fips.amazonaws.com
    cloudfront-fips.amazonaws.com

    有关所有 AWS 终端节点的列表,请参阅 AWS 一般参考 中的区域和终端节点

  • AWS GovCloud(美国)可以使用哪些 FIPS 终端节点?

    有关适用于 AWS GovCloud(美国)的 FIPS 终端节点列表,请参阅 AWS GovCloud(美国)用户指南

  • AWS 加拿大(中部)可以使用哪些 FIPS 终端节点?

    AWS 服务     AWS 加拿大(中部)终端节点    
    Amazon API Gateway apigateway-fips.ca-central-1.amazonaws.com
    Amazon DynamoDB dynamodb-fips.ca-central-1.amazonaws.com
    Amazon Elastic Compute Cloud (EC2)

    ec2-fips.ca-central-1.amazonaws.com

    Amazon Elastic File System elasticfilesystem-fips.ca-central-1.amazonaws.com
    Amazon EMR

    elasticmapreduce-fips.ca-central-1.amazonaws.com

    Amazon Redshift

    redshift-fips.ca-central-1.amazonaws.com

    Amazon Relational Database Service (RDS) / Amazon Aurora

    rds-fips.ca-central-1.amazonaws.com

    Amazon S3 Glacier

    glacier-fips.ca-central-1.amazonaws.com

    Amazon Simple Storage Service (Amazon S3)

    注意:此终端节点只能用于虚拟托管类型的寻址。例如:https://bucket.s3-fips.ca-central-1.amazonaws.com。有关更多信息,请访问 Amazon S3 文档页面。

    s3-fips.ca-central-1.amazonaws.com
    AWS Certificate Manager acm-fips.ca-central-1.amazonaws.com
    AWS Certificate Manager 私有证书颁发机构 acm-pca-fips.ca-central-1.amazonaws.com
    Amazon CodeCommit

    git-codecommit-fips.ca-central-1.amazonaws.com

    codecommit-fips.ca-central-1.amazonaws.com

    AWS CodePipeline codepipeline-fips.ca-central-1.amazonaws.com
    AWS DataSync datasync-fips.ca-central-1.amazonaws.com
    AWS Directory Service 

    ds-fips.ca-central-1.amazonaws.com

    AWS Firewall Manager fms-fips.ca-central-1.amazonaws.com
    AWS Snowball snowball-fips.ca-central-1.amazonaws.com
    AWS Storage Gateway storagegateway-fips.ca-central-1.amazonaws.com
    AWS Transfer Family transfer-fips.ca-central-1.amazonaws.com
    AWS WAF

    wafv2-fips.ca-central-1.amazonaws.com

    waf-regional-fips.ca-central-1.amazonaws.com

  • 哪些 AWS 服务的 FIPS 终端节点需要使用 TLS 1.2 或更高版本?

    AWS 正在将所有 AWS 区域的全部 AWS FIPS 终端节点更新为传输层安全性协议 (TLS) 1.2 或更高版本,目标完成日期为 2021 年 3 月 31 日。在这些更新完成后,TLS 1.0 和 TLS 1.1 将无法在任何 FIPS 终端节点上使用。有关更多信息,请查看 AWS 安全性博客上的公告。这项变更不会影响其他 AWS 终端节点。

    下面列出的 AWS 服务的 FIPS 终端节点已更新,需要使用 TLS 1.2 或更高版本。除了 TLS 1.2 外,下面未列出的所有 AWS 服务的 FIPS 终端节点目前还支持 TLS 1.0 和 TLS 1.1。

    AWS 服务     TLS 1.2 或更高版本 
    Amazon Connect
    Amazon Elastic Kubernetes Service (Amazon EKS)
    Amazon GuardDuty
    Amazon MQ
    Amazon Pinpoint
    Amazon QuickSight
    AWS Batch
    AWS Ground Station
    AWS Key Management Service (KMS)
    AWS Outposts
    AWS Storage Gateway
    AWS Transfer Family
    AWS WAF
compliance-contactus-icon
有问题? 联系 AWS 业务代表
想要提供合规性服务?
立即申请 »
想要了解 AWS 合规性动态?
在 Twitter 上关注我们 »