AWS GovCloud (US) Product Details
AWS GovCloud (US) Regions are designed to address the specific regulatory needs of United States federal, state, and local agencies, education institutions, and the supporting ecosystem.
See all AWS services and availability by region in the AWS Region Table. For a complete list of assurance programs and authorized services, visit AWS Services in Scope.
Amazon EMR is a web service that makes it easy to process vast amounts of data using Hadoop.
Amazon OpenSearch Service makes it easy to deploy, secure, operate, and scale OpenSearch for log analytics, full text search, application monitoring, and more. Amazon OpenSearch Service is a fully managed service that delivers real-time analytics capabilities alongside the availability, scalability, and security that production workloads require.
AWS Glue is a fully managed extract, transform, and load (ETL) service that makes it easy for customers to prepare and load their data for analytics.
Amazon Athena is an interactive query service that makes it easy to analyze data in Amazon S3 using standard SQL. Athena is serverless, so there is no infrastructure to manage, and you pay only for the queries that you run.
Amazon Kinesis Data Firehose is the easiest way to reliably load streaming data into data lakes, data stores, and analytics tools.
Amazon Managed Streaming for Apache Kafka (Amazon MSK) is a fully managed service that makes it easy for you to build and run applications that use Apache Kafka to process streaming data.
Amazon Kinesis Data Analytics is the easiest way to analyze streaming data, gain actionable insights, and respond to your business and customer needs in real time.
Amazon Kinesis Data Streams (KDS) is a massively scalable and durable real-time data streaming service.
Amazon QuickSight is a fully managed, pay as you go, data visualization service for all your AWS data. Easily share dashboards and ML Insights with internal or external users and even embed into your applications.
AWS Lake Formation makes it easy to setup a secure data lake.
Amazon SQS is a reliable, highly scalable message queue service that enables asynchronous messaging between distributed components in a system.
Amazon SNS is a highly reliable and scalable system that provides developers the ability to publish messages from an application and deliver them to subscribers or other applications. Amazon SNS supports notifications via email, HTTP, and to SQS queues.
AWS Step Functions make it easy to coordinate the components of distributed applications and microservices using visual workflows.
Amazon EventBridge is a serverless event bus service that makes it easy to connect your applications with data from a variety of sources.
AWS Marketplace lets customers discover, buy and manage software for regulated IT workloads in the AWS GovCloud (US) Regions.
AWS WickrGov encrypts messages, calls, and files with a 256-bit end-to-end encryption protocol. No one but the intended recipients and the customer organization can decrypt these communications, reducing the risk of adversary-in-the-middle attacks.
Amazon Managed Blockchain is a fully managed service that makes it easy to join public networks or create and manage scalable private networks using the popular open-source frameworks Hyperledger Fabric and Ethereum.
Amazon EC2 delivers scalable, pay-as-you-go compute capacity in the cloud.
AWS Lambda lets you run code without provisioning or managing servers.
AWS Elastic Beanstalk is an easy-to-use service for deploying and scaling web applications and services developed with Java.
Amazon Elastic Container Registry lets you store, manage, and deploy Docker container images.
Amazon Elastic Container Service is a high-performance container management service that makes it easy to run and scale containerized applications on AWS.
Amazon EC2 Auto Scaling helps you maintain application availability and allows you to dynamically scale your Amazon EC2 capacity up or down automatically according to conditions you define.
AWS Serverless Application Repository enables teams, organizations, and individual developers to store and share reusable serverless applications, and to easily assemble and deploy serverless architectures.
AWS Fargate is a compute engine for Amazon ECS that lets you run containers in production without deploying and managing servers. Fargate lets you focus on designing and building your applications instead of managing the infrastructure that runs them.
AWS Batch enables developers, scientists, and engineers to easily and efficiently run hundreds of thousands of batch computing jobs on AWS.
AWS Outposts is a fully managed service that delivers AWS infrastructure, services, APIs, and tools to virtually any customer on-premises location. It is ideal for workloads that continue to run on premises due to low latency and when you need to store and process data locally due to privacy or residency requirements.
Amazon Elastic Kubernetes Service (EKS) is a managed Kubernetes service that makes it easy for you to run and scale Kubernetes on AWS without needing to install, operate, and maintain your own control plane or worker nodes.
Amazon Simple Email Service (SES) is a reliable, cost-effective, cloud-based email service designed to help digital marketers and application developers send marketing, notification, and transactional emails.
Amazon Pinpoint lets you can engage your customers by sending marketing campaigns and transactional messages through email, SMS, push notification, and voice channels.
Amazon Connect is an easy-to-use cloud contact center service that helps organizations of any size deliver superior customer service at lower cost.
Amazon RDS is a web service that makes it easy to set up, operate, and scale a relational database in the cloud. It provides cost-efficient and resizable capacity while managing time-consuming database administration tasks for you. Amazon RDS supports the MySQL, SQL Server, Oracle and PostgreSQL database engines.
Amazon Aurora is a MySQL and PostgreSQL compatible relational database built for the cloud. It combines the performance and availability of high-end commercial databases with the simplicity and cost-effectiveness of open source databases.
Amazon DynamoDB is a fully-managed, high performance, NoSQL database service that is easy to set up, operate, and scale.
Amazon Redshift is a fully managed, easily scalable petabyte-scale data warehouse service that works with your existing business intelligence tools. It delivers fast query performance by using columnar storage technology and by parallelizing queries across multiple nodes.
Amazon ElastiCache is a web service that makes it easy to deploy, operate, and scale an in-memory cache in the cloud. The service improves the performance of web applications by allowing you to retrieve information from fast, managed, in-memory caches, instead of relying entirely on slower disk-based databases.
Amazon Neptune is a fast, reliable, fully managed graph database service that makes it easy to build and run graph applications using popular graph models Property Graph and W3C's RDF, and their respective query languages Apache TinkerPop Gremlin and SPARQL.
Amazon DocumentDB (with MongoDB compatibility) is a fast, scalable, highly available, and fully managed document database service that makes it easy to store, query, and index JSON data.
Amazon Keyspaces (for Apache Cassandra) is a scalable, highly available, and managed Apache Cassandra–compatible database service. With Amazon Keyspaces, you can run your Cassandra workloads on AWS using the same Cassandra application code and developer tools that you use today.
Amazon Timestream is a fast, scalable, and serverless time-series database service that makes it easier to store and analyze trillions of events per day up to 1,000 times faster. Amazon Timestream automatically scales up or down to adjust capacity and performance, so that you don’t have to manage the underlying infrastructure.
AWS CodeDeploy is a service that fully automates code deployments for a fast, reliable software deployment process.
AWS CodeCommit is a fully-managed source control service that hosts secure Git-based repositories.
AWS CodeBuild is a fully managed continuous integration service that compiles source code, runs tests, and produces software packages that are ready to deploy.
AWS CodePipeline is a fully managed continuous delivery service that automates your release pipelines for fast and reliable application and infrastructure updates.
AWS Cloud Control API is a set of common application programming interfaces (APIs) that is designed to make it easy for developers to manage their cloud infrastructure in a consistent manner and leverage the latest AWS capabilities faster.
AWS CloudShell is a browser-based shell that makes it easy to securely manage, explore, and interact with your AWS resources.
End User Computing
Amazon WorkSpaces is a secure, managed cloud desktop that workers can access anywhere, anytime, from any supported device.
Amazon AppStream 2.0 is a fully managed non-persistent application and desktop streaming service.
Internet of Things (IoT)
AWS IoT Core lets you easily and securely connect devices to the cloud with an IoT platform, and reliably scales to billions of devices and trillions of messages.
AWS IoT Device Management lets you onboard, organize, monitor, and remotely manage connected devices at scale.
AWS IoT Greengrass seamlessly extends AWS to edge devices so they can act locally on the data they generate, while still using the cloud for management, analytics, and durable storage.
AWS IoT Device Defender is a fully-managed AWS IoT service that makes it easy for customers to manage the end to end security of their IoT fleet.
AWS IoT Events is a fully managed service that makes it easy to detect and respond to changes indicated by IoT sensors and applications.
AWS IoT SiteWise is a managed service that makes it easy to collect, store, organize and monitor data from industrial equipment at scale to help you make better, data-driven decisions.
Amazon Rekognition makes it easy to add intelligent image and video analysis to your applications, to detect objects, scenes, activities, and faces; extract text; and identify inappropriate content in images.
Amazon Polly turns text into lifelike speech using deep learning so customers can create speech-enabled products and applications that talk.
Amazon Translate is a neural machine translation service that delivers fast, high-quality, and affordable language translation.
AWS Deep Learning AMIs provide preconfigured development environments so developers can quickly build deep learning applications.
Amazon SageMaker is a fully-managed platform that enables developers and data scientists to quickly and easily build, train, and deploy machine learning models at any scale.
Amazon Comprehend is a natural language processing (NLP) service that uses machine learning to discover insights and relationships in text.
Amazon Transcribe is a fully-managed automatic speech recognition (ASR) service that makes it easy for developers to add speech-to-text capabilities to their applications.
Amazon Textract is a machine learning service that makes it easy to extract text and data from virtually any document.
Amazon Lex is a chatbot service for building conversational interfaces into any application using voice and text.
Amazon Kendra is a machine-learning powered, intelligent search service for websites and applications so your employees and customers can easily find the content they are looking for, even when it’s scattered across multiple locations and content repositories within your organization.
Management & Governance
AWS Trusted Advisor acts like your customized cloud expert, and it helps you provision your resources by following best practices.
AWS CloudFormation gives developers and systems administrators an easy way to create and manage a collection of related AWS resources, provisioning and updating them in an orderly and predictable fashion.
Amazon CloudWatch provides monitoring for AWS cloud resources and applications, including Amazon EC2 instances, Amazon EBS volumes, Amazon SNS topics, and Amazon SQS queues.
AWS CloudTrail lets log, continuously monitor, track and retain account activity related to actions across your AWS infrastructure.
AWS Config is a service that enables you to assess, audit, and evaluate the configurations of your AWS resources. Config continuously monitors and records your AWS resource configurations and allows you to automate the evaluation of recorded configurations against desired configurations.
AWS Control Tower provides the easiest way to set up and govern a secure, multi-account AWS environment, called a landing zone. It creates your landing zone using AWS Organizations, bringing ongoing account management and governance as well as implementation best practices based on AWS’s experience working with thousands of customers as they move to the cloud.
AWS Auto Scaling lets you build scaling plans that automate how groups of different AWS resources respond to changes in demand.
AWS Organizations helps you centrally govern your environment as you grow and scale your workloads on AWS. Whether you are a growing startup or a large enterprise, Organizations help you to centrally manage billing; control access, compliance, and security; and share resources across your AWS accounts.
AWS Service Catalog allows you to centrally manage commonly deployed IT services, and helps you achieve consistent governance and meet your compliance requirements, while enabling users to quickly deploy only the approved IT services they need.
AWS License Manager makes it easier to manage licenses in AWS and on-premises servers from software vendors such as Microsoft, SAP, Oracle, and IBM and reduces the risk of non-compliance, misreporting, and additional costs due to licensing overages.
AWS Health provides ongoing visibility into the state of your AWS resources, services, and accounts through tools such as the Personal Health Dashboard and the Health API.
AWS Elemental MediaConvert is a file-based video transcoding service that allows you to create video-on-demand (VOD) content for broadcast and multiscreen delivery at scale.
Migration & Transfer
AWS Server Migration Service (SMS) is an agentless service which makes it easier and faster for you to migrate thousands of on-premises workloads to AWS. AWS SMS allows you to automate, schedule, and track incremental replications of live server volumes, making it easier for you to coordinate large-scale server migrations.
AWS Database Migration Service (DMS) helps you migrate databases to AWS easily and securely while your source remains fully operational during the migration, to minimize downtime.
AWS Snowball is a petabyte-scale data transport solution that uses secure appliances to transfer large amounts of data into and out of the AWS Cloud.
AWS DataSync is a data transfer service that enables you to easily move data between on-premises storage and Amazon S3 or Amazon Elastic File System (Amazon EFS), up to 10x faster than open source tools.
The AWS Transfer Family provides fully managed support for file transfers directly into and out of Amazon S3 using SFTP, FTPS, and FTP.
Networking & Content Delivery
Amazon VPC lets you provision a private, isolated section of the Amazon Web Services (AWS) Cloud where you can launch AWS resources in a virtual network that you define.
Amazon API Gateway is a fully managed service that makes it easy for developers to create, publish, maintain, monitor, and secure APIs at any scale. It handles all the tasks involved in accepting and processing up to hundreds of thousands of concurrent API calls.
AWS Direct Connect makes it easy to establish a dedicated network connection from your premise to the AWS GovCloud (US) Regions. Using AWS Direct Connect, you can establish private connectivity between the AWS GovCloud (US) Regions and your datacenter, office, or colocation environment.
Elastic Load Balancing (ELB) achieves fault tolerance and ensures scalability for any application, by automatically distributing incoming application traffic across multiple targets, such as Amazon EC2 instances, containers, and IP addresses.
AWS Transit Gateway is a service that allows you to easily scale connectivity across thousands of Amazon VPCs, AWS accounts, and on-premises networks.
Amazon Route 53 is a highly available cloud DNS web service to route traffic to healthy endpoints or to monitor the health of your application in the AWS GovCloud (US-West) Region.
AWS Cloud Map helps you define friendly names for all cloud resources and makes it easy for your applications to discover cloud resources by simply referencing friendly names.
Security, Identity, & Compliance
AWS IAM enables you to securely control access to AWS services and resources for your users.
AWS CloudHSM is a cloud-based hardware security module (HSM) that enables you to easily generate and use your own encryption keys in the AWS Cloud.
Amazon Inspector is a vulnerability management service that continually scans AWS workloads for software vulnerabilities and unintended network exposure across your entire AWS Organization. Once activated, Amazon Inspector automatically discovers all of your Amazon Elastic Compute Cloud (EC2) instances, container images in Amazon Elastic Container Registry (ECR), and AWS Lambda functions, at scale, and continuously monitors them for known vulnerabilities, giving you a consolidated view of vulnerabilities across your compute environments. Amazon Inspector also provides a highly-contextualized vulnerability risk score by correlating vulnerability information with environmental factors such as external network accessibility to help you prioritize the highest risks to address.
Amazon Cloud Directory is a high-performance, serverless, hierarchical datastore. Amazon Cloud Directory makes it easy for you to organize and manage your multi-dimensional data such as users, groups, locations, and devices and the rich relationships between them.
AWS Directory Service makes it easy for you to use Active Directory-dependent applications in the AWS Cloud. It also enables you to use AD credentials to sign in to AWS applications. You have the flexibility to keep your identities in your existing Microsoft AD or create and manage identities in your AWS managed directory.
AWS WAF helps protect your web applications from common web exploits that could affect application availability, compromise security, or consume excessive resources.
AWS Resource Access Manager (RAM) is a service that enables you to easily and securely share AWS resources with any AWS account or within your AWS organization.
AWS Secrets Manager helps you to protect secrets needed to access your applications, services, and IT resources. The service enables you to easily rotate, manage, and retrieve database credentials, API keys, and other secrets throughout their lifecycle.
AWS Artifact provides on-demand access to AWS managed confidential content like compliance reports, compliance templates and security white papers. It also lets customers self-service accept and manage agreements with AWS.
AWS Security Hub gives you a comprehensive view of your security posture across your AWS accounts.
Amazon Cognito lets you add user sign-up, sign-in, and access control to your web and mobile apps.
Amazon GuardDuty is a threat detection service that continuously monitors for malicious activity and unauthorized behavior to protect your AWS accounts, workloads, and data stored in Amazon S3.
Amazon Detective makes it easy to analyze, investigate, and quickly identify the root cause of security findings or suspicious activities.
AWS Firewall Manager is a security management service which allows you to centrally configure, audit, and manage firewall rules across accounts and applications in your organization, managed by AWS Organizations.
AWS Network Firewall is a managed service that makes it easy to deploy essential network protections for all of your Amazon Virtual Private Clouds (VPCs).
AWS IAM Identity Center (successor to AWS Single Sign-On) is where you create, or connect, your workforce identities in AWS once and manage access centrally across your AWS organization.
Amazon S3 provides a highly durable and reliable data storage infrastructure for storing and retrieving any amount of data, at any time, from any system connected to the Internet.
Amazon Glacier is a secure, durable, and extremely low-cost storage service for data archiving and online backup.
Amazon S3 Glacier Deep Archive is a S3 storage class providing secure and durable object storage for long-term retention of data that is accessed rarely in a year.
Amazon Elastic Block Store (Amazon EBS) provides persistent block storage volumes for use with Amazon EC2 instances.
AWS Storage Gateway can help you migrate, store and access data in AWS from on-premises and GovCloud application environments, securely and seamlessly.
Amazon Elastic File System (Amazon EFS) provides a simple, scalable, elastic file system for Linux-based workloads for use with AWS Cloud services and on-premises resources.
AWS Backup is a fully managed backup service that makes it easy to centralize and automate the backup of data across AWS services.
Amazon FSx makes it easy and cost effective to launch and run popular file systems that are fully managed by AWS.
Service Health Dashboard provides access to current status and historical data about each and every Amazon Web Service.