Federal Information Processing Standard (FIPS) 140-2

Übersicht

FIPS_sized

Die Veröffentlichung 140-2 des Federal Information Processing Standard (FIPS) ist ein Standard der US- und der kanadischen Regierung, der die Sicherheitsanforderungen für Verschlüsselungsmodule zum Schutz vertraulicher Informationen festlegt. Wenn Sie für den Zugriff auf AWS USA Ost/West, AWS GovCloud (USA) oder AWS Kanada (Zentral) mithilfe der Befehlszeilenschnittstelle (CLI) oder programmgesteuert mithilfe der APIs die Verwendung von FIPS 140-2-validierten kryptografischen Modulen benötigen, finden Sie in den folgenden Abschnitten eine Auflistung der verfügbaren FIPS-Endpunkte nach AWS-Region. Die VPN-Endpunkte der Amazon Virtual Private Cloud in AWS GovCloud (USA) werden mit FIPS 140-2-validierten kryptografischen Modulen betrieben. AWS arbeitet mit seinen Kunden zusammen, um die benötigten Informationen zur Verwaltung der Konformität bei Verwendung der AWS-Regionen USA Ost/West oder AWS GovCloud (USA) oder Kanada (Zentral) bereitzustellen. Weitere Informationen zu diesem Standard finden Sie im Abschnitt Cryptographic Module Validation Program (Programm zur Validierung von Verschlüsselungsmodulen) auf der Website des NIST Computer Security Resource Center.

  • Welche FIPS-Endpunkte umfasst die AWS-Region USA Ost/West?

    In der folgenden Tabelle sind die in der AWS-Region USA Ost/West verfügbaren FIPS-Endpunkte für die verschiedenen AWS-Services aufgelistet. 

    AWS Service     Endpunkte in der AWS-Region USA Ost/West    
    Amazon API Gateway

    apigateway-fips.us-west-1.amazonaws.com

    apigateway-fips.us-west-2.amazonaws.com

    apigateway-fips.us-east-2.amazonaws.com

    apigateway-fips.us-east-1.amazonaws.com

    Amazon AppStream 2.0

    appstream2-fips.us-east-1.amazonaws.com

    appstream2-fips.us-west-2.amazonaws.com

    Amazon Cloud Directory

    clouddirectory-fips.us-west-1.amazonaws.com

    clouddirectory-fips.us-east-2.amazonaws.com

    clouddirectory-fips.us-east-1.amazonaws.com

    AWS CloudFormation  

    cloudformation-fips.us-east-1.amazonaws.com

    cloudformation-fips.us-east-2.amazonaws.com

    cloudformation-fips.us-west-1.amazonaws.com

    cloudformation-fips.us-west-2.amazonaws.com

    AWS CloudTrail

    cloudtrail-fips.us-west-1.amazonaws.com

    cloudtrail-fips.us-west-2.amazonaws.com

    cloudtrail-fips.us-east-2.amazonaws.com

    cloudtrail-fips.us-east-1.amazonaws.com

    AWS CodeCommit

    git-codecommit-fips.us-east-1.amazonaws.com

    codecommit-fips.us-east-1.amazonaws.com

    git-codecommit-fips.us-east-2.amazonaws.com

    codecommit-fips.us-east-2.amazonaws.com

    git-codecommit-fips.us-west-1.amazonaws.com

    codecommit-fips.us-west-1.amazonaws.com

    git-codecommit-fips.us-west-2.amazonaws.com

    codecommit-fips.us-west-2.amazonaws.com

    Amazon Cognito

    cognito-sync-fips.us-west-2.amazonaws.com

    cognito-identity-fips.us-west-2.amazonaws.com

    cognito-idp-fips.us-west-2.amazonaws.com

    <Ihre Benutzerpooldomäne>.auth-fips.us-west-2.amazoncognito.com

    cognito-sync-fips.us-east-2.amazonaws.com

    cognito-identity-fips.us-east-2.amazonaws.com

    cognito-idp-fips.us-east-2.amazonaws.com

    <Ihre Benutzerpooldomäne>.auth-fips.us-east-2.amazoncognito.com

    cognito-sync-fips.us-east-1.amazonaws.com

    cognito-identity-fips.us-east-1.amazonaws.com

    cognito-idp-fips.us-east-1.amazonaws.com

    <Ihre Benutzerpooldomäne>.auth-fips.us-east-1.amazoncognito.com

    AWS Config

    config-fips.us-west-1.amazonaws.com

    config-fips.us-west-2.amazonaws.com

    config-fips.us-east-2.amazonaws.com

    config-fips.us-east-1.amazonaws.com    

    AWS Database Migration Service (DMS)

    dms-fips.us-west-1.amazonaws.com

    dms-fips.us-west-2.amazonaws.com

    dms-fips.us-east-2.amazonaws.com

    dms-fips.us-east-1.amazonaws.com

    AWS Directory Service 

    ds-fips.us-west-1.amazonaws.com

    ds-fips.us-west-2.amazonaws.com

    ds-fips.us-east-2.amazonaws.com

    ds-fips.us-east-1.amazonaws.com

    Amazon DynamoDB

    dynamodb-fips.us-west-1.amazonaws.com

    dynamodb-fips.us-west-2.amazonaws.com

    dynamodb-fips.us-east-2.amazonaws.com

    dynamodb-fips.us-east-1.amazonaws.com

    AWS Elastic Beanstalk

    elasticbeanstalk-fips.us-east-1.amazonaws.com

    elasticbeanstalk-fips.us-east-2.amazonaws.com

    elasticbeanstalk-fips.us-west-1.amazonaws.com

    elasticbeanstalk-fips.us-west-2.amazonaws.com

    Amazon Elastic Block Store (EBS) Direkte Verwendung von EC2
    Amazon Elastic Compute Cloud (EC2)

    ec2-fips.us-west-1.amazonaws.com

    ec2-fips.us-west-2.amazonaws.com

    ec2-fips.us-east-2.amazonaws.com

    ec2-fips.us-east-1.amazonaws.com

    Amazon Elastic Container Registry

    ecr-fips.us-west-1.amazonaws.com

    ecr-fips.us-west-2.amazonaws.com

    ecr-fips.us-east-2.amazonaws.com

    ecr-fips.us-east-1.amazonaws.com

    *.dkr.ecr-fips.us-west-1.amazonaws.com

    *.dkr.ecr-fips.us-west-2.amazonaws.com

    *.dkr.ecr-fips.us-east-2.amazonaws.com

    *.dkr.ecr-fips.us-east-1.amazonaws.com

    Amazon ElastiCache

    elasticache-fips.us-east-1.amazonaws.com

    elasticache-fips.us-east-2.amazonaws.com

    elasticache-fips.us-west-1.amazonaws.com

    elasticache-fips.us-west-2.amazonaws.com

    Elastic Load Balancing

    elasticloadbalancing-fips.us-west-1.amazonaws.com

    elasticloadbalancing-fips.us-west-2.amazonaws.com

    elasticloadbalancing-fips.us-east-2.amazonaws.com

    elasticloadbalancing-fips.us-east-1.amazonaws.com

    Amazon Elasticsearch es-fips.us-west-1.amazonaws.com
    es-fips.us-west-2.amazonaws.com
    es-fips.us-east-1.amazonaws.com
    es-fips.us-east-2.amazonaws.com
    Amazon EMR (Amazon EMR)

    elasticmapreduce-fips.us-west-1.amazonaws.com

    elasticmapreduce-fips.us-west-2.amazonaws.com

    elasticmapreduce-fips.us-east-1.amazonaws.com

    elasticmapreduce-fips.us-east-2.amazonaws.com

    Amazon Glacier

    glacier-fips.us-west-1.amazonaws.com

    glacier-fips.us-west-2.amazonaws.com

    glacier-fips.us-east-2.amazonaws.com

    glacier-fips.us-east-1.amazonaws.com

    Amazon GuardDuty

    guardduty-fips.us-east-1.amazonaws.com

    guardduty-fips.us-west-1.amazonaws.com

    guardduty-fips.us-east-2.amazonaws.com

    guardduty-fips.us-west-2.amazonaws.com

    AWS Identity and Access Management (IAM) iam-fips.amazonaws.com (nur IAD-Region)    
    Amazon Inspector

    inspector-fips.us-west-1.amazonaws.com

    inspector-fips.us-west-2.amazonaws.com

    inspector-fips.us-east-1.amazonaws.com

    Amazon Kinesis Streams

    kinesis-fips.us-west-1.amazonaws.com

    kinesis-fips.us-west-2.amazonaws.com

    kinesis-fips.us-east-2.amazonaws.com

    kinesis-fips.us-east-1.amazonaws.com

    AWS Key Management Service (KMS)

    kms-fips.us-west-1.amazonaws.com

    kms-fips.us-west-2.amazonaws.com

    kms-fips.us-east-2.amazonaws.com

    kms-fips.us-east-1.amazonaws.com

    AWS Lambda

    lambda-fips.us-west-1.amazonaws.com

    lambda-fips.us-west-2.amazonaws.com

    lambda-fips.us-east-2.amazonaws.com

    lambda-fips.us-east-1.amazonaws.com

    Amazon MQ

    mq-fips.us-east-1.amazonaws.com

    mq-fips.us-east-2.amazonaws.com

    mq-fips.us-west-1.amazonaws.com

    mq-fips.us-west-2.amazonaws.com

    Amazon QuickSight

    fips-us-west-2.quicksight.aws.amazon.com

    fips-us-east-2.quicksight.aws.amazon.com

    fips-us-east-1.quicksight.aws.amazon.com

    Amazon Relational Database Service (RDS)/Amazon Aurora

    rds-fips.us-west-1.amazonaws.com

    rds-fips.us-west-2.amazonaws.com

    rds-fips.us-east-2.amazonaws.com

    rds-fips.us-east-1.amazonaws.com

    Amazon Redshift

    redshift-fips.us-west-1.amazonaws.com

    redshift-fips.us-west-2.amazonaws.com

    redshift-fips.us-east-2.amazonaws.com

    redshift-fips.us-east-1.amazonaws.com

    Amazon Route 53

    api-fips.route53-eu-west-1.com

    route53-fips.amazonaws.com

    Amazon SageMaker

    api-fips.sagemaker.us-east-1.amazonaws.com

    api-fips.sagemaker.us-east-2.amazonaws.com

    api-fips.sagemaker.us-west-2.amazonaws.com

    runtime-fips.sagemaker.us-east-1.amazonaws.com

    runtime-fips.sagemaker.us-east-2.amazonaws.com

    runtime-fips.sagemaker.us-west-2.amazonaws.com

    AWS Security Token Service (STS)

    sts-fips.us-west-1.amazonaws.com

    sts-fips.us-west-2.amazonaws.com

    sts-fips.us-east-2.amazonaws.com

    sts-fips.us-east-1.amazonaws.com

    AWS Service-Katalog

    servicecatalog-fips.us-west-1.amazonaws.com

    servicecatalog-fips.us-west-2.amazonaws.com

    servicecatalog-fips.us-east-1.amazonaws.com

    servicecatalog-fips.us-east-2.amazonaws.com

    AWS Shield shield-fips.us-east-1.amazonaws.com

    Amazon Simple Storage Service (S3)

    Hinweis: Diese Endpunkte können nur mit Adressierung im Stil des virtuellen Hostings verwendet werden. Beispiel: https://bucket.s3-fips.us-east-2.amazonaws.com. Weitere Informationen finden Sie auf der Seite zur Amazon S3-Dokumentation.

    s3-fips.us-east-2.amazonaws.com

    s3-fips.dualstack.us-west-1.amazonaws.com

    s3-fips.dualstack.us-west-2.amazonaws.com

    s3-fips.dualstack.us-east-2.amazonaws.com

    s3-fips.dualstack.us-east-1.amazonaws.com

    s3-fips.us-west-1.amazonaws.com

    s3-fips.us-west-2.amazonaws.com

    s3-fips.us-east-1.amazonaws.com

    Amazon Simple Notification Service (SNS)

    sns-fips.us-west-1.amazonaws.com

    sns-fips.us-west-2.amazonaws.com

    sns-fips.us-east-2.amazonaws.com

    sns-fips.us-east-1.amazonaws.com

    Amazon Simple Queue Service (SQS)

    sqs-fips.us-west-1.amazonaws.com

    Amazon Simple Workflow Service (SWF)

    swf-fips.us-west-1.amazonaws.com

    swf-fips.us-west-2.amazonaws.com

    swf-fips.us-east-2.amazonaws.com

    swf-fips.us-east-1.amazonaws.com

    AWS Snowball FIPS nicht erforderlich
    AWS Systems Manager

    ssm-fips.us-west-1.amazonaws.com

    ssm-fips.us-west-2.amazonaws.com

    ssm-fips.us-east-2.amazonaws.com

    ssm-fips.us-east-1.amazonaws.com

    Amazon Virtual Private Cloud (VPC)

    Direkte Verwendung von EC2

    AWS WAF

    waf-regional-fips.us-west-1.amazonaws.com

    waf-regional-fips.us-west-2.amazonaws.com

    waf-regional-fips.us-east-1.amazonaws.com

    waf-regional-fips.us-east-2.amazonaws.com

    waf-fips.amazonaws.com

    Amazon WorkDocs

    workdocs-fips.us-west-2.amazonaws.com

    workdocs-fips.us-east-1.amazonaws.com

    shield-fips.us-east-1.amazonaws.com
    shield-fips.us-east-1.amazonaws.com
    shield-fips.us-east-1.amazonaws.com
    FIPS nicht erforderlich

    Eine Liste der AWS-Endpunkte finden Sie unter Regionen und Endpunkte in der Allgemeinen AWS-Referenz.

  • Welche FIPS-Endpunkte umfasst die Region AWS GovCloud (USA)?

    Eine Liste aller für AWS GovCloud (USA) verfügbaren FIPS-Endpunkte finden Sie im AWS GovCloud (USA)-Benutzerhandbuch.

  • Welche FIPS-Endpunkte umfasst die Region AWS Kanada (Zentral)?

    AWS-Service     AWS Kanada (Zentral)-Endpunkte    
    Amazon API Gateway apigateway-fips.ca-central-1.amazonaws.com
    Amazon CodeCommit

    git-codecommit-fips.ca-central-1.amazonaws.com

    codecommit-fips.us-west-1.amazonaws.com

    AWS Directory Service 

    ds-fips.ca-central-1.amazonaws.com

    Amazon DynamoDB dynamodb-fips.ca-central-1.amazonaws.com
    Amazon Elastic Compute Cloud (EC2)

    ec2-fips.ca-central-1.amazonaws.com

    Amazon EMR (Amazon EMR)

    elasticmapreduce-fips.ca-central-1.amazonaws.com

    Amazon Glacier

    glacier-fips.ca-central-1.amazonaws.com

    Amazon Relational Database Service (RDS)/Amazon Aurora

    rds-fips.ca-central-1.amazonaws.com

    Amazon Redshift

    redshift-fips.ca-central-1.amazonaws.com

    AWS Security Token Service (STS)

    sts.ca-central-1.amazonaws.com

    Amazon Simple Storage Service (Amazon S3)

    Hinweis: Dieser Endpunkt kann nur mit Adressierung im Stil des virtuellen Hostings verwendet werden. Beispiel: https://bucket.s3-fips.ca-central-1.amazonaws.com. Weitere Informationen finden Sie auf der Seite zur Amazon S3-Dokumentation.

    s3-fips.ca-central-1.amazonaws.com
compliance-contactus-icon
Sie haben Fragen? Einen AWS-Business-Mitarbeiter kontaktieren
Sie erkunden Compliance-Rollen?
Melden Sie sich jetzt an »
Sie möchten über Neuigkeiten zur AWS-Compliance informiert werden?
Folgen Sie uns auf Twitter »