Federal Information Processing Standard (FIPS) 140-2

Overview

FIPS_sized

The Federal Information Processing Standard (FIPS) Publication 140-2 is a US and Canadian government standard that specifies the security requirements for cryptographic modules that protect sensitive information. If you require use of FIPS 140-2 validated cryptographic modules when accessing AWS US East/West, AWS GovCloud (US), or AWS Canada (Central) through use of the command line interface (CLI) or programmatically by using the APIs, the following sections provide the list of available FIPS endpoints by AWS Region. The Amazon Virtual Private Cloud VPN endpoints in AWS GovCloud (US) operate using FIPS 140-2 validated cryptographic modules. AWS works with customers to provide the information they need to manage compliance when using the AWS US East/West, AWS GovCloud (US), or AWS Canada (Central) Regions. For more information about the standard, see Cryptographic Module Validation Program on the NIST Computer Security Resource Center website.

  • What are the FIPS endpoints for AWS US East/West?

    The following table lists each FIPS endpoint available for various AWS services in the AWS Region US East/West. 

    AWS Service     AWS US East/West Endpoints    
    Amazon API Gateway

    apigateway-fips.us-east-1.amazonaws.com

    apigateway-fips.us-east-2.amazonaws.com

    apigateway-fips.us-west-1.amazonaws.com

    apigateway-fips.us-west-2.amazonaws.com

    Amazon AppStream 2.0

    appstream2-fips.us-east-1.amazonaws.com

    appstream2-fips.us-west-2.amazonaws.com

    Amazon Cloud Directory

    clouddirectory-fips.us-east-1.amazonaws.com

    clouddirectory-fips.us-east-2.amazonaws.com

    clouddirectory-fips.us-west-2.amazonaws.com

    Amazon CloudFront
    cloudfront-fips.amazonaws.com
    Amazon CloudWatch Events

    events-fips.us-east-1.amazonaws.com

    events-fips.us-east-2.amazonaws.com

    events-fips.us-west-1.amazonaws.com

    events-fips.us-west-2.amazonaws.com

    Amazon CloudWatch Logs

    logs-fips.us-east-1.amazonaws.com

    logs-fips.us-east-2.amazonaws.com

    logs-fips.us-west-1.amazonaws.com

    logs-fips.us-west-2.amazonaws.com

    Amazon Cognito

    <your_user_pool_domain>.auth-fips.us-east-1.amazoncognito.com

    <your_user_pool_domain>.auth-fips.us-east-2.amazoncognito.com

    <your_user_pool_domain>.auth-fips.us-west-2.amazoncognito.com

    cognito-identity-fips.us-east-1.amazonaws.com

    cognito-identity-fips.us-east-2.amazonaws.com

    cognito-identity-fips.us-west-2.amazonaws.com

    cognito-idp-fips.us-east-1.amazonaws.com

    cognito-idp-fips.us-east-2.amazonaws.com

    cognito-idp-fips.us-west-2.amazonaws.com

    cognito-sync-fips.us-east-1.amazonaws.com

    cognito-sync-fips.us-east-2.amazonaws.com

    cognito-sync-fips.us-west-2.amazonaws.com

    Amazon Comprehend

    comprehend-fips.us-east-1.amazonaws.com

    comprehend-fips.us-east-2.amazonaws.com

    comprehend-fips.us-west-2.amazonaws.com

    Amazon Connect

    connect-fips.us-east-1.amazonaws.com

    connect-fips.us-west-2.amazonaws.com

    Amazon DynamoDB

    dynamodb-fips.us-east-1.amazonaws.com

    dynamodb-fips.us-east-2.amazonaws.com

    dynamodb-fips.us-west-1.amazonaws.com

    dynamodb-fips.us-west-2.amazonaws.com

    Amazon Elastic Block Store (EBS) Using Amazon EC2 Directly
    Amazon Elastic Compute Cloud (EC2)

    ec2-fips.us-east-1.amazonaws.com

    ec2-fips.us-east-2.amazonaws.com

    ec2-fips.us-west-1.amazonaws.com

    ec2-fips.us-west-2.amazonaws.com

    ec2messages-fips.us-east-1.amazonaws.com

    ec2messages-fips.us-east-2.amazonaws.com

    ec2messages-fips.us-west-1.amazonaws.com

    ec2messages-fips.us-west-2.amazonaws.com

    Amazon Elastic Container Registry

    *.dkr.ecr-fips.us-east-1.amazonaws.com

    *.dkr.ecr-fips.us-east-2.amazonaws.com

    *.dkr.ecr-fips.us-west-1.amazonaws.com

    *.dkr.ecr-fips.us-west-2.amazonaws.com

    ecr-fips.us-east-1.amazonaws.com

    ecr-fips.us-east-2.amazonaws.com

    ecr-fips.us-west-1.amazonaws.com

    ecr-fips.us-west-2.amazonaws.com

    Amazon Elastic Container Service

    ecs-fips.us-east-1.amazonaws.com

    ecs-fips.us-east-2.amazonaws.com

    ecs-fips.us-west-1.amazonaws.com

    ecs-fips.us-west-2.amazonaws.com

    Amazon Elastic File System

    elasticfilesystem-fips.us-east-1.amazonaws.com

    elasticfilesystem-fips.us-east-2.amazonaws.com

    elasticfilesystem-fips.us-west-1.amazonaws.com

    elasticfilesystem-fips.us-west-2.amazonaws.com

    Amazon Elastic Kubernetes Service (EKS)

    fips.eks.us-east-1.amazonaws.com

    fips.eks.us-east-2.amazonaws.com

    fips.eks.us-west-1.amazonaws.com

    fips.eks.us-west-2.amazonaws.com

    Amazon ElastiCache

    elasticache-fips.us-east-1.amazonaws.com

    elasticache-fips.us-east-2.amazonaws.com

    elasticache-fips.us-west-1.amazonaws.com

    elasticache-fips.us-west-2.amazonaws.com

    Amazon Elasticsearch

    es-fips.us-east-1.amazonaws.com

    es-fips.us-east-2.amazonaws.com

    es-fips.us-west-1.amazonaws.com

    es-fips.us-west-2.amazonaws.com

    Amazon EMR

    elasticmapreduce-fips.us-east-1.amazonaws.com

    elasticmapreduce-fips.us-east-2.amazonaws.com

    elasticmapreduce-fips.us-west-1.amazonaws.com

    elasticmapreduce-fips.us-west-2.amazonaws.com

    Amazon GuardDuty

    guardduty-fips.us-east-1.amazonaws.com

    guardduty-fips.us-east-2.amazonaws.com

    guardduty-fips.us-west-1.amazonaws.com

    guardduty-fips.us-west-2.amazonaws.com

    Amazon Inspector

    inspector-fips.us-east-1.amazonaws.com

    inspector-fips.us-east-2.amazonaws.com

    inspector-fips.us-west-1.amazonaws.com

    inspector-fips.us-west-2.amazonaws.com

    Amazon Kinesis Data Analytics

    kinesisanalytics-fips.us-east-1.amazonaws.com

    kinesisanalytics-fips.us-east-2.amazonaws.com

    kinesisanalytics-fips.us-west-2.amazonaws.com

    Amazon Kinesis Data Firehose

    firehose-fips.us-east-1.amazonaws.com

    firehose-fips.us-east-2.amazonaws.com

    firehose-fips.us-west-1.amazonaws.com

    firehose-fips.us-west-2.amazonaws.com

    Amazon Kinesis Streams

    kinesis-fips.us-east-1.amazonaws.com

    kinesis-fips.us-east-2.amazonaws.com

    kinesis-fips.us-west-1.amazonaws.com

    kinesis-fips.us-west-2.amazonaws.com

    Amazon Macie

    macie-fips.us-east-1.amazonaws.com

    macie-fips.us-west-2.amazonaws.com

    Amazon MQ

    mq-fips.us-east-1.amazonaws.com

    mq-fips.us-east-2.amazonaws.com

    mq-fips.us-west-1.amazonaws.com

    mq-fips.us-west-2.amazonaws.com

    Amazon Pinpoint

    pinpoint-fips.us-east-1.amazonaws.com

    pinpoint-fips.us-west-2.amazonaws.com

    Amazon Polly

    polly-fips.us-east-1.amazonaws.com

    polly-fips.us-east-2.amazonaws.com

    polly-fips.us-west-1.amazonaws.com

    polly-fips.us-west-2.amazonaws.com

    Amazon QuickSight

    fips-us-east-1.quicksight.aws.amazon.com

    fips-us-east-2.quicksight.aws.amazon.com

    fips-us-west-2.quicksight.aws.amazon.com

    Amazon Redshift

    redshift-fips.us-east-1.amazonaws.com

    redshift-fips.us-east-2.amazonaws.com

    redshift-fips.us-west-1.amazonaws.com

    redshift-fips.us-west-2.amazonaws.com

    Amazon Rekognition

    rekognition-fips.us-east-1.amazonaws.com

    rekognition-fips.us-east-2.amazonaws.com

    rekognition-fips.us-west-1.amazonaws.com

    rekognition-fips.us-west-2.amazonaws.com

    Amazon Relational Database Service (RDS) / Amazon Aurora

    rds-fips.us-east-1.amazonaws.com

    rds-fips.us-east-2.amazonaws.com

    rds-fips.us-west-1.amazonaws.com

    rds-fips.us-west-2.amazonaws.com

    Amazon Route 53

    route53-fips.amazonaws.com
    Amazon S3 Glacier

    glacier-fips.us-east-1.amazonaws.com

    glacier-fips.us-east-2.amazonaws.com

    glacier-fips.us-west-1.amazonaws.com

    glacier-fips.us-west-2.amazonaws.com

    Amazon SageMaker

    api-fips.sagemaker.us-west-1.amazonaws.com

    api-fips.sagemaker.us-east-1.amazonaws.com

    api-fips.sagemaker.us-east-2.amazonaws.com

    api-fips.sagemaker.us-west-2.amazonaws.com

    runtime-fips.sagemaker.us-east-1.amazonaws.com

    runtime-fips.sagemaker.us-east-2.amazonaws.com

    runtime-fips.sagemaker.us-west-2.amazonaws.com

    runtime-fips.sagemaker.us-west-1.amazonaws.com

    Amazon Simple Email Service (API HTTPS)

    email-fips.us-east-1.amazonaws.com

    email-fips.us-west-2.amazonaws.com

    Amazon Simple Email Service (SMTP)

    email-smtp-fips.us-east-1.amazonaws.com

    email-smtp-fips.us-west-2.amazonaws.com

    Amazon Simple Notification Service (SNS)

    sns-fips.us-west-1.amazonaws.com

    sns-fips.us-west-2.amazonaws.com

    sns-fips.us-east-2.amazonaws.com

    sns-fips.us-east-1.amazonaws.com

    Amazon Simple Queue Service (SQS)

    sqs-fips.us-east-2.amazonaws.com

    sqs-fips.us-west-2.amazonaws.com

    sqs-fips.us-east-1.amazonaws.com

    sqs-fips.us-west-1.amazonaws.com

    Amazon Simple Storage Service (S3)

    Note: These Endpoints can only be used with Virtual Hosted-Style addressing. For example: https://bucket.s3-fips.us-east-2.amazonaws.com. Visit the Amazon S3 Documentation page for more information.

    s3-fips.dualstack.us-east-1.amazonaws.com

    s3-fips.dualstack.us-east-2.amazonaws.com

    s3-fips.dualstack.us-west-1.amazonaws.com

    s3-fips.dualstack.us-west-2.amazonaws.com

    s3-fips.us-east-1.amazonaws.com

    s3-fips.us-east-2.amazonaws.com

    s3-fips.us-west-1.amazonaws.com

    s3-fips.us-west-2.amazonaws.com

    Amazon Simple Workflow Service (SWF)

    swf-fips.us-east-1.amazonaws.com

    swf-fips.us-east-2.amazonaws.com

    swf-fips.us-west-1.amazonaws.com

    swf-fips.us-west-2.amazonaws.com

    Amazon Transcribe fips.transcribe.us-west-1.amazonaws.com
    Amazon Translate

    translate-fips.us-west-2.amazonaws.com

    translate-fips.us-east-2.amazonaws.com

    translate-fips.us-east-1.amazonaws.com

    Amazon Virtual Private Cloud (VPC)

    Uses Amazon EC2 Directly

    Amazon WorkDocs

    workdocs-fips.us-east-1.amazonaws.com

    workdocs-fips.us-west-2.amazonaws.com

    Amazon WorkSpaces

    workspaces-fips.us-east-1.amazonaws.com

    workspaces-fips.us-west-2.amazonaws.com

    AWS Batch

    fips.batch.us-east-1.amazonaws.com

    fips.batch.us-east-2.amazonaws.com

    fips.batch.us-west-1.amazonaws.com

    fips.batch.us-west-2.amazonaws.com

    AWS Certificate Manager

    acm-fips.us-east-1.amazonaws.com

    acm-fips.us-east-2.amazonaws.com

    acm-fips.us-west-2.amazonaws.com

    acm-fips.us-west-1.amazonaws.com

    AWS Certificate Manager Private CA

    acm-pca-fips.us-east-1.amazonaws.com

    acm-pca-fips.us-west-1.amazonaws.com

    acm-pca-fips.us-east-2.amazonaws.com

    acm-pca-fips.us-west-2.amazonaws.com

    AWS CloudFormation

    cloudformation-fips.us-east-1.amazonaws.com

    cloudformation-fips.us-east-2.amazonaws.com

    cloudformation-fips.us-west-1.amazonaws.com

    cloudformation-fips.us-west-2.amazonaws.com

    AWS CloudTrail

    cloudtrail-fips.us-east-1.amazonaws.com

    cloudtrail-fips.us-east-2.amazonaws.com

    cloudtrail-fips.us-west-1.amazonaws.com

    cloudtrail-fips.us-west-2.amazonaws.com

    AWS CodeBuild

    codebuild-fips.us-west-1.amazonaws.com

    codebuild-fips.us-east-1.amazonaws.com

    codebuild-fips.us-west-2.amazonaws.com

    codebuild-fips.us-east-2.amazonaws.com

    AWS CodeCommit

    codecommit-fips.us-east-1.amazonaws.com

    codecommit-fips.us-east-2.amazonaws.com

    codecommit-fips.us-west-1.amazonaws.com

    codecommit-fips.us-west-2.amazonaws.com

    git-codecommit-fips.us-east-1.amazonaws.com

    git-codecommit-fips.us-east-2.amazonaws.com

    git-codecommit-fips.us-west-1.amazonaws.com

    git-codecommit-fips.us-west-2.amazonaws.com

    AWS CodeDeploy

    codedeploy-fips.us-east-1.amazonaws.com

    codedeploy-fips.us-west-1.amazonaws.com

    codedeploy-fips.us-west-2.amazonaws.com

    codedeploy-fips.us-east-2.amazonaws.com

    codedeploy-commands-fips.us-east-1.amazonaws.com

    codedeploy-commands-fips.us-east-2.amazonaws.com

    codedeploy-commands-fips.us-west-1.amazonaws.com

    codedeploy-commands-fips.us-west-2.amazonaws.com

    AWS CodePipeline

    codepipeline-fips.us-east-1.amazonaws.com

    codepipeline-fips.us-east-2.amazonaws.com

    codepipeline-fips.us-west-1.amazonaws.com

    codepipeline-fips.us-west-2.amazonaws.com

    AWS Config

    config-fips.us-east-1.amazonaws.com    

    config-fips.us-east-2.amazonaws.com

    config-fips.us-west-1.amazonaws.com

    config-fips.us-west-2.amazonaws.com    

    AWS Database Migration Service (DMS)

    dms-fips.us-east-1.amazonaws.com

    dms-fips.us-east-2.amazonaws.com

    dms-fips.us-west-1.amazonaws.com

    dms-fips.us-west-2.amazonaws.com

    AWS DataSync

    datasync-fips.us-east-1.amazonaws.com

    datasync-fips.us-west-1.amazonaws.com

    datasync-fips.us-east-2.amazonaws.com

    datasync-fips.us-west-2.amazonaws.com

    AWS Direct Connect

    directconnect-fips.us-east-1.amazonaws.com

    directconnect-fips.us-east-2.amazonaws.com

    directconnect-fips.us-west-1.amazonaws.com

    directconnect-fips.us-west-2.amazonaws.com

    AWS Directory Service 

    ds-fips.us-east-1.amazonaws.com

    ds-fips.us-east-2.amazonaws.com

    ds-fips.us-west-1.amazonaws.com

    ds-fips.us-west-2.amazonaws.com

    AWS Elastic Beanstalk

    elasticbeanstalk-fips.us-east-1.amazonaws.com

    elasticbeanstalk-fips.us-east-2.amazonaws.com

    elasticbeanstalk-fips.us-west-1.amazonaws.com

    elasticbeanstalk-fips.us-west-2.amazonaws.com

    AWS Firewall Manager

    fms-fips.us-west-1.amazonaws.com

    fms-fips.us-east-1.amazonaws.com

    fms-fips.us-west-2.amazonaws.com

    fms-fips.us-east-2.amazonaws.com

    AWS Glue

    glue-fips.us-east-1.amazonaws.com

    glue-fips.us-east-2.amazonaws.com

    glue-fips.us-west-1.amazonaws.com

    glue-fips.us-west-2.amazonaws.com

    AWS Ground Station

    groundstation-fips.us-east-2.amazonaws.com

    groundstation-fips.us-west-2.amazonaws.com

    AWS Identity and Access Management (IAM) iam-fips.amazonaws.com (IAD Region Only)   
    AWS Key Management Service (KMS)

    kms-fips.us-east-1.amazonaws.com

    kms-fips.us-east-2.amazonaws.com

    kms-fips.us-west-1.amazonaws.com

    kms-fips.us-west-2.amazonaws.com

    AWS Lambda

    lambda-fips.us-east-1.amazonaws.com

    lambda-fips.us-east-2.amazonaws.com

    lambda-fips.us-west-1.amazonaws.com

    lambda-fips.us-west-2.amazonaws.com

    AWS License Manager

    license-manager-fips.us-east-1.amazonaws.com

    license-manager-fips.us-east-2.amazonaws.com

    license-manager-fips.us-west-1.amazonaws.com

    license-manager-fips.us-west-2.amazonaws.com

    AWS OpsWorks for Chef Automate

    AWS OpsWorks for Puppet Enterprise

    opsworks-cm-fips.us-east-1.amazonaws.com

    opsworks-cm-fips.us-east-2.amazonaws.com

    opsworks-cm-fips.us-west-1.amazonaws.com

    opsworks-cm-fips.us-west-2.amazonaws.com

    AWS Organizations organizations-fips.us-east-1.amazonaws.com
    AWS Outposts

    outposts-fips.us-east-1.amazonaws.com

    outposts-fips.us-west-1.amazonaws.com

    AWS Resource Groups

    resource-groups-fips.us-east-1.amazonaws.com

    resource-groups-fips.us-east-2.amazonaws.com

    resource-groups-fips.us-west-2.amazonaws.com

    resource-groups-fips.us-west-1.amazonaws.com

    AWS Secrets Manager

    secretsmanager-fips.us-east-2.amazonaws.com

    secretsmanager-fips.us-west-1.amazonaws.com

    secretsmanager-fips.us-east-1.amazonaws.com

    secretsmanager-fips.us-west-2.amazonaws.com

    AWS Security Token Service (STS)

    sts-fips.us-east-1.amazonaws.com

    sts-fips.us-east-2.amazonaws.com

    sts-fips.us-west-1.amazonaws.com

    sts-fips.us-west-2.amazonaws.com

    AWS Server Migration Service (SMS)

    sms-fips.us-west-2.amazonaws.com

    sms-fips.us-east-1.amazonaws.com

    sms-fips.us-east-2.amazonaws.com

    sms-fips.us-west-1.amazonaws.com

    AWS Service Catalog

    servicecatalog-fips.us-east-1.amazonaws.com

    servicecatalog-fips.us-east-2.amazonaws.com

    servicecatalog-fips.us-west-1.amazonaws.com

    servicecatalog-fips.us-west-2.amazonaws.com

    AWS Shield shield-fips.us-east-1.amazonaws.com
    AWS Snowball

    snowball-fips.us-east-1.amazonaws.com

    snowball-fips.us-east-2.amazonaws.com

    snowball-fips.us-west-1.amazonaws.com

    snowball-fips.us-west-2.amazonaws.com

    AWS Step Functions

    states-fips.us-east-1.amazonaws.com

    states-fips.us-east-2.amazonaws.com

    states-fips.us-west-1.amazonaws.com

    states-fips.us-west-2.amazonaws.com

    AWS Storage Gateway

    storagegateway-fips.us-east-1.amazonaws.com

    storagegateway-fips.us-east-2.amazonaws.com

    storagegateway-fips.us-west-1.amazonaws.com

    storagegateway-fips.us-west-2.amazonaws.com

    AWS Systems Manager

    ssm-fips.us-east-1.amazonaws.com

    ssm-fips.us-east-2.amazonaws.com

    ssm-fips.us-west-1.amazonaws.com

    ssm-fips.us-west-2.amazonaws.com

    ssm-facade-fips.us-east-1.amazonaws.com

    ssm-facade-fips.us-east-2.amazonaws.com

    ssm-facade-fips.us-west-1.amazonaws.com

    ssm-facade-fips.us-west-2.amazonaws.com

    AWS Transfer Family

    transfer-fips.us-east-1.amazonaws.com

    transfer-fips.us-east-2.amazonaws.com

    transfer-fips.us-west-1.amazonaws.com

    transfer-fips.us-west-2.amazonaws.com

    AWS WAF

    waf-fips.amazonaws.com

    waf-regional-fips.us-east-1.amazonaws.com

    waf-regional-fips.us-east-2.amazonaws.com

    waf-regional-fips.us-west-1.amazonaws.com

    waf-regional-fips.us-west-2.amazonaws.com

    wafv2-fips.us-east-1.amazonaws.com

    wafv2-fips.us-east-2.amazonaws.com

    wafv2-fips.us-west-1.amazonaws.com

    wafv2-fips.us-west-2.amazonaws.com

    Elastic Load Balancing

    elasticloadbalancing-fips.us-east-1.amazonaws.com

    elasticloadbalancing-fips.us-east-2.amazonaws.com

    elasticloadbalancing-fips.us-west-1.amazonaws.com

    elasticloadbalancing-fips.us-west-2.amazonaws.com

    shield-fips.us-east-1.amazonaws.com
    shield-fips.us-east-1.amazonaws.com
    shield-fips.us-east-1.amazonaws.com
    Does not need FIPS
    cloudfront-fips.amazonaws.com
    cloudfront-fips.amazonaws.com
    cloudfront-fips.amazonaws.com

    For a list of all AWS endpoints, see Regions and Endpoints in the AWS General Reference.

  • What are the FIPS endpoints for AWS GovCloud (US)?

    For a list of the FIPS endpoints available for AWS GovCloud (US), refer to the AWS GovCloud (US) User Guide.

  • What are the FIPS endpoints for AWS Canada (Central)?

    AWS Service     AWS Canada (Central) Endpoints    
    Amazon API Gateway apigateway-fips.ca-central-1.amazonaws.com
    Amazon DynamoDB dynamodb-fips.ca-central-1.amazonaws.com
    Amazon Elastic Compute Cloud (EC2)

    ec2-fips.ca-central-1.amazonaws.com

    Amazon Elastic File System elasticfilesystem-fips.ca-central-1.amazonaws.com
    Amazon EMR

    elasticmapreduce-fips.ca-central-1.amazonaws.com

    Amazon Redshift

    redshift-fips.ca-central-1.amazonaws.com

    Amazon Relational Database Service (RDS) / Amazon Aurora

    rds-fips.ca-central-1.amazonaws.com

    Amazon S3 Glacier

    glacier-fips.ca-central-1.amazonaws.com

    Amazon Simple Storage Service (Amazon S3)

    Note: This Endpoint can only be used with Virtual Hosted-Style addressing. For example: https://bucket.s3-fips.ca-central-1.amazonaws.com. Visit the Amazon S3 Documentation page for more information.

    s3-fips.ca-central-1.amazonaws.com
    AWS Certificate Manager acm-fips.ca-central-1.amazonaws.com
    AWS Certificate Manager Private CA acm-pca-fips.ca-central-1.amazonaws.com
    Amazon CodeCommit

    git-codecommit-fips.ca-central-1.amazonaws.com

    codecommit-fips.ca-central-1.amazonaws.com

    AWS CodePipeline codepipeline-fips.ca-central-1.amazonaws.com
    AWS DataSync datasync-fips.ca-central-1.amazonaws.com
    AWS Directory Service 

    ds-fips.ca-central-1.amazonaws.com

    AWS Firewall Manager fms-fips.ca-central-1.amazonaws.com
    AWS Snowball snowball-fips.ca-central-1.amazonaws.com
    AWS Storage Gateway storagegateway-fips.ca-central-1.amazonaws.com
    AWS Transfer Family transfer-fips.ca-central-1.amazonaws.com
    AWS WAF

    wafv2-fips.ca-central-1.amazonaws.com

    waf-regional-fips.ca-central-1.amazonaws.com

  • Which AWS services require a minimum version of TLS 1.2 for FIPS Endpoints?

    AWS is updating all AWS FIPS endpoints to a minimum Transport Layer Security (TLS) version of 1.2 across all AWS Regions, with a targeted completion date of March 31, 2021. Once completed, these updates will revoke the ability to use TLS 1.0 and TLS 1.1 on all FIPS endpoints. For more information, read the announcement on the AWS Security Blog. No other AWS endpoints will be affected by this change.

    The FIPS endpoints for the AWS services listed below have been updated and require TLS 1.2 or higher. The FIPS endpoints for any AWS services not listed below currently support TLS 1.0 and TLS 1.1 in addition to TLS 1.2.

    AWS Service     TLS Minimum 1.2 
    AWS Batch
    AWS Ground Station
    AWS Key Management Service (KMS)
    AWS Storage Gateway
    AWS Transfer Family
compliance-contactus-icon
Have Questions? Connect with an AWS Business Representative
Exploring compliance roles?
Apply today »
Want AWS Compliance updates?
Follow us on Twitter »