Normes FIPS (Federal Information Processing Standard) 140-2

Présentation

FIPS_sized

La publication Federal Information Processing Standard (FIPS) 140-2 est une norme du gouvernement américain et canadien qui spécifie les exigences de sécurité pour les modules cryptographiques protégeant des informations sensibles. Si vous devez utiliser des modules cryptographiques validés par la norme FIPS 140-2 pour accéder aux régions AWS USA Est/Ouest, AWS GovCloud (US) ou AWS Canada (Centre) à l'aide de l'interface de ligne de commande (CLI) ou par programmation en utilisant les API, les sections suivantes contiennent la liste des points de terminaison FIPS disponibles par région AWS. Les points de terminaison du VPN Amazon Virtual Private Cloud dans AWS GovCloud (US) fonctionnent avec des modules cryptographiques validés par FIPS 140-2. AWS travaille avec ses clients pour leur fournir les informations dont ils ont besoin afin de gérer leur conformité lorsqu'ils utilisent les régions AWS USA Est/Ouest, AWS GovCloud (US) ou AWS Canada (Centre). Pour plus d'informations à propos de cette norme, consultez le Programme de validation des modules cryptographiques sur le site web du Computer Security Resource Center du NIST.

  • Quels sont les points de terminaison FIPS des régions AWS USA Estٔ/USA Ouest ?

    Le tableau suivant répertorie chacun des points de terminaison FIPS disponibles pour différents services AWS dans les régions AWS USA Est/USA Ouest. 

    AWS Service     Points de terminaison des régions AWS USA Est/USA Ouest    
    Amazon API Gateway

    apigateway-fips.us-west-1.amazonaws.com

    apigateway-fips.us-west-2.amazonaws.com

    apigateway-fips.us-east-2.amazonaws.com

    apigateway-fips.us-east-1.amazonaws.com

    Amazon Cloud Directory

    clouddirectory-fips.us-west-1.amazonaws.com

    clouddirectory-fips.us-east-2.amazonaws.com

    clouddirectory-fips.us-east-1.amazonaws.com

    AWS Cloud Formation  

    cloudformation-fips.us-east-1.amazonaws.com

    cloudformation-fips.us-east-2.amazonaws.com

    cloudformation-fips.us-west-1.amazonaws.com

    cloudformation-fips.us-west-2.amazonaws.com

    AWS CloudTrail

    cloudtrail-fips.us-west-1.amazonaws.com

    cloudtrail-fips.us-west-2.amazonaws.com

    cloudtrail-fips.us-east-2.amazonaws.com

    cloudtrail-fips.us-east-1.amazonaws.com

    Amazon CodeCommit

    git-codecommit-fips.us-east-1.amazonaws.com

    codecommit-fips.us-east-1.amazonaws.com

    git-codecommit-fips.us-east-2.amazonaws.com

    codecommit-fips.us-east-2.amazonaws.com

    git-codecommit-fips.us-west-1.amazonaws.com

    codecommit-fips.us-west-1.amazonaws.com

    git-codecommit-fips.us-west-2.amazonaws.com

    codecommit-fips.us-west-2.amazonaws.com

    Amazon Cognito

    cognito-sync-fips.us-west-2.amazonaws.com

    cognito-identity-fips.us-west-2.amazonaws.com

    cognito-idp-fips.us-west-2.amazonaws.com

    <your_user_pool_domain>.auth-fips.us-west-2.amazoncognito.com

    cognito-sync-fips.us-east-2.amazonaws.com

    cognito-identity-fips.us-east-2.amazonaws.com

    cognito-idp-fips.us-east-2.amazonaws.com

    <your_user_pool_domain>.auth-fips.us-east-2.amazoncognito.com

    cognito-sync-fips.us-east-1.amazonaws.com

    cognito-identity-fips.us-east-1.amazonaws.com

    cognito-idp-fips.us-east-1.amazonaws.com

    <your_user_pool_domain>.auth-fips.us-east-1.amazoncognito.com

    AWS Config

    config-fips.us-west-1.amazonaws.com

    config-fips.us-west-2.amazonaws.com

    config-fips.us-east-2.amazonaws.com

    config-fips.us-east-1.amazonaws.com    

    AWS Database Migration Service (DMS)

    dms-fips.us-west-1.amazonaws.com

    dms-fips.us-west-2.amazonaws.com

    dms-fips.us-east-2.amazonaws.com

    dms-fips.us-east-1.amazonaws.com

    AWS Directory Service 

    ds-fips.us-west-1.amazonaws.com

    ds-fips.us-west-2.amazonaws.com

    ds-fips.us-east-2.amazonaws.com

    ds-fips.us-east-1.amazonaws.com

    Amazon DynamoDB

    dynamodb-fips.us-west-1.amazonaws.com

    dynamodb-fips.us-west-2.amazonaws.com

    dynamodb-fips.us-east-2.amazonaws.com

    dynamodb-fips.us-east-1.amazonaws.com

    AWS Elastic Beanstalk

    elasticbeanstalk-fips.us-east-1.amazonaws.com

    elasticbeanstalk-fips.us-east-2.amazonaws.com

    elasticbeanstalk-fips.us-west-1.amazonaws.com

    elasticbeanstalk-fips.us-west-2.amazonaws.com

    Amazon Elastic Block Store (EBS) En utilisant directement EC2
    Amazon Elastic Compute Cloud (EC2)

    ec2-fips.us-west-1.amazonaws.com

    ec2-fips.us-west-2.amazonaws.com

    ec2-fips.us-east-2.amazonaws.com

    ec2-fips.us-east-1.amazonaws.com

    Amazon ElastiCache

    elasticache-fips.us-east-1.amazonaws.com

    elasticache-fips.us-east-2.amazonaws.com

    elasticache-fips.us-west-1.amazonaws.com

    elasticache-fips.us-west-2.amazonaws.com

    Elastic Load Balancing

    elasticloadbalancing-fips.us-west-1.amazonaws.com

    elasticloadbalancing-fips.us-west-2.amazonaws.com

    elasticloadbalancing-fips.us-east-2.amazonaws.com

    elasticloadbalancing-fips.us-east-1.amazonaws.com

    Amazon Elasticsearch es-fips.us-west-1.amazonaws.com
    es-fips.us-west-2.amazonaws.com
    es-fips.us-east-1.amazonaws.com
    es-fips.us-east-2.amazonaws.com
    Amazon EMR (Amazon EMR)

    elasticmapreduce-fips.us-west-1.amazonaws.com

    elasticmapreduce-fips.us-west-2.amazonaws.com

    elasticmapreduce-fips.us-east-1.amazonaws.com

    elasticmapreduce-fips.us-east-2.amazonaws.com

    Amazon Glacier

    glacier-fips.us-west-1.amazonaws.com

    glacier-fips.us-west-2.amazonaws.com

    glacier-fips.us-east-2.amazonaws.com

    glacier-fips.us-east-1.amazonaws.com

    AWS Identity and Access Management (IAM) iam-fips.amazonaws.com (uniquement dans la région de Virginie du Nord)    
    Amazon Inspector

    inspector-fips.us-west-1.amazonaws.com

    inspector-fips.us-west-2.amazonaws.com

    inspector-fips.us-east-1.amazonaws.com

    Amazon Kinesis Streams

    kinesis-fips.us-west-1.amazonaws.com

    kinesis-fips.us-west-2.amazonaws.com

    kinesis-fips.us-east-2.amazonaws.com

    kinesis-fips.us-east-1.amazonaws.com

    AWS Key Management Service (KMS)

    kms-fips.us-west-1.amazonaws.com

    kms-fips.us-west-2.amazonaws.com

    kms-fips.us-east-2.amazonaws.com

    kms-fips.us-east-1.amazonaws.com

    AWS Lambda

    lambda-fips.us-west-1.amazonaws.com

    lambda-fips.us-west-2.amazonaws.com

    lambda-fips.us-east-2.amazonaws.com

    lambda-fips.us-east-1.amazonaws.com

    Amazon QuickSight

    fips-us-west-2.quicksight.aws.amazon.com

    fips-us-east-2.quicksight.aws.amazon.com

    fips-us-east-1.quicksight.aws.amazon.com

    Amazon Relational Database Service (RDS) / Amazon Aurora

    rds-fips.us-west-1.amazonaws.com

    rds-fips.us-west-2.amazonaws.com

    rds-fips.us-east-2.amazonaws.com

    rds-fips.us-east-1.amazonaws.com

    Amazon Redshift

    redshift-fips.us-west-1.amazonaws.com

    redshift-fips.us-west-2.amazonaws.com

    redshift-fips.us-east-2.amazonaws.com

    redshift-fips.us-east-1.amazonaws.com

    Amazon Route 53

    api-fips.route53-eu-west-1.com

    route53-fips.amazonaws.com

    Amazon SageMaker

    api-fips.sagemaker.us-east-1.amazonaws.com

    api-fips.sagemaker.us-east-2.amazonaws.com

    api-fips.sagemaker.us-west-2.amazonaws.com

    runtime-fips.sagemaker.us-east-1.amazonaws.com

    runtime-fips.sagemaker.us-east-2.amazonaws.com

    runtime-fips.sagemaker.us-west-2.amazonaws.com

    Amazon Simple Storage Service (S3)

    Remarque : ces points de terminaison peuvent uniquement être utilisés avec l'adressage de type hébergement virtuel. Par exemple : https://bucket.s3-fips.us-east-2.amazonaws.com. Pour plus d'informations, consultez la page de documentation Amazon S3.

    s3-fips.us-east-2.amazonaws.com

    s3-fips.dualstack.us-west-1.amazonaws.com

    s3-fips.dualstack.us-west-2.amazonaws.com

    s3-fips.dualstack.us-east-2.amazonaws.com

    s3-fips.dualstack.us-east-1.amazonaws.com

    s3-fips.us-west-1.amazonaws.com

    s3-fips.us-west-2.amazonaws.com

    s3-fips.us-east-1.amazonaws.com

    AWS Shield

    shield-fips.us-east-1.amazonaws.com

    AWS Snowball

    Pas besoin de la norme FIPS

    Amazon Simple Notification Service (SNS)

    sns-fips.us-west-1.amazonaws.com

    sns-fips.us-west-2.amazonaws.com

    sns-fips.us-east-2.amazonaws.com

    sns-fips.us-east-1.amazonaws.com

    Amazon Simple Queue Service (SQS)

    sqs-fips.us-west-1.amazonaws.com

    AWS Security Token Service (STS)

    sts-fips.us-west-1.amazonaws.com

    sts-fips.us-west-2.amazonaws.com

    sts-fips.us-east-2.amazonaws.com

    sts-fips.us-east-1.amazonaws.com

    Amazon Simple Workflow Service (SWF)

    swf-fips.us-west-1.amazonaws.com

    swf-fips.us-west-2.amazonaws.com

    swf-fips.us-east-2.amazonaws.com

    swf-fips.us-east-1.amazonaws.com

    AWS Systems Manager

    ssm-fips.us-west-1.amazonaws.com

    ssm-fips.us-west-2.amazonaws.com

    ssm-fips.us-east-2.amazonaws.com

    ssm-fips.us-east-1.amazonaws.com

    Amazon Virtual Private Cloud (VPC)

    Utilise directement EC2

    AWS WAF

    waf-regional-fips.us-west-1.amazonaws.com

    waf-regional-fips.us-west-2.amazonaws.com

    waf-regional-fips.us-east-1.amazonaws.com

    waf-fips.amazonaws.com

    waf-regional-fips.eu-west-1.amazonaws.com

    waf-regional-fips.ap-northeast-1.amazonaws.com

    Amazon WorkDocs

    workdocs-fips.us-west-2.amazonaws.com

    workdocs-fips.us-east-1.amazonaws.com

    Pour connaître la liste de tous les points de terminaison AWS, consultez la rubrique régions et points de terminaison dans le manuel Références générales AWS.

  • Quels sont les points de terminaison FIPS de la région AWS GovCloud (US) ?

    Pour afficher une liste des points de terminaison FIPS disponibles pour AWS GovCloud (US), consultez le guide de l’utilisateur AWS GovCloud (US).

  • Quels sont les points de terminaison FIPS de la région AWS Canada (Centre) ?

    Service AWS     Points de terminaison AWS Canada (Centre)    
    Amazon CodeCommit

    git-codecommit-fips.ca-central-1.amazonaws.com

    codecommit-fips.ca-central-1.amazonaws.com

    AWS Directory Service 

    ds-fips.ca-central-1.amazonaws.com

    Amazon DynamoDB dynamodb-fips.ca-central-1.amazonaws.com
    Amazon Elastic Compute Cloud (EC2)

    ec2-fips.ca-central-1.amazonaws.com

    Amazon EMR (Amazon EMR)

    elasticmapreduce-fips.ca-central-1.amazonaws.com

    Amazon Glacier

    glacier-fips.ca-central-1.amazonaws.com

    Amazon Relational Database Service (RDS) / Amazon Aurora

    rds-fips.ca-central-1.amazonaws.com

    Amazon Redshift

    redshift-fips.ca-central-1.amazonaws.com

    AWS Security Token Service (STS)

    sts.ca-central-1.amazonaws.com

compliance-contactus-icon
Vous avez des questions ? Contacter un représentant commercial d'AWS
Explorer les rôles de conformité ?
Postulez dès aujourd'hui »
Vous voulez des mises à jour AWS Compliance ?
Suivez-nous sur Twitter »