Federal Information Processing Standard (FIPS) 140-2

Panoramica

Il Federal Information Processing Standard (FIPS) Publication 140-2 è uno standard del governo statunitense e canadese che specifica i requisiti di sicurezza previsti per i moduli crittografici che proteggono informazioni sensibili. Se è necessario utilizzare moduli crittografici convalidati FIPS 140-2 per accedere ad AWS Stati Uniti orientali/occidentali, AWS GovCloud (Stati Uniti) o AWS Canada (Centrale) mediante l'interfaccia a riga di comando (CLI) o in modo programmatico utilizzando le API, le sezioni seguenti forniscono l'elenco degli endpoint FIPS disponibili in base alla regione AWS. Gli endpoint VPN Amazon Virtual Private Cloud in AWS GovCloud (Stati Uniti) funzionano utilizzando moduli crittografici FIPS 140-2 convalidati. AWS collabora con i clienti per fornire loro le informazioni necessarie per gestire la conformità quando si opera nelle regioni AWS Stati Uniti orientali/occidentali, AWS GovCloud (Stati Uniti) o AWS Canada (Centrale). Per ulteriori informazioni sullo standard, consultare il Programma di convalida del modulo crittografico sul sito Web del Centro risorse per la sicurezza informatica NIST.

• Quali sono gli endpoint FIPS per AWS Stati Uniti orientali/occidentali?

  La tabella seguente elenca tutti gli endpoint FIPS disponibili per i diversi servizi AWS nelle regioni AWS degli Stati Uniti orientali/occidentali. 
  

  AWS Service	Endpoint AWS Stati Uniti orientali/occidentali
  Amazon API Gateway	apigateway-fips.us-west-1.amazonaws.com apigateway-fips.us-west-2.amazonaws.com apigateway-fips.us-east-2.amazonaws.com apigateway-fips.us-east-1.amazonaws.com
  Amazon Cloud Directory	clouddirectory-fips.us-west-1.amazonaws.com clouddirectory-fips.us-east-2.amazonaws.com clouddirectory-fips.us-east-1.amazonaws.com
  AWS Cloud Formation	cloudformation-fips.us-east-1.amazonaws.com cloudformation-fips.us-east-2.amazonaws.com cloudformation-fips.us-west-1.amazonaws.com cloudformation-fips.us-west-2.amazonaws.com
  AWS CloudTrail	cloudtrail-fips.us-west-1.amazonaws.com cloudtrail-fips.us-west-2.amazonaws.com cloudtrail-fips.us-east-2.amazonaws.com cloudtrail-fips.us-east-1.amazonaws.com
  Amazon CodeCommit	git-codecommit-fips.us-east-1.amazonaws.com codecommit-fips.us-east-1.amazonaws.com git-codecommit-fips.us-east-2.amazonaws.com codecommit-fips.us-east-2.amazonaws.com git-codecommit-fips.us-west-1.amazonaws.com codecommit-fips.us-west-1.amazonaws.com git-codecommit-fips.us-west-2.amazonaws.com codecommit-fips.us-west-2.amazonaws.com
  Amazon Cognito	cognito-sync-fips.us-west-2.amazonaws.com cognito-identity-fips.us-west-2.amazonaws.com cognito-idp-fips.us-west-2.amazonaws.com <your_user_pool_domain>.auth-fips.us-west-2.amazoncognito.com cognito-sync-fips.us-east-2.amazonaws.com cognito-identity-fips.us-east-2.amazonaws.com cognito-idp-fips.us-east-2.amazonaws.com <your_user_pool_domain>.auth-fips.us-east-2.amazoncognito.com cognito-sync-fips.us-east-1.amazonaws.com cognito-identity-fips.us-east-1.amazonaws.com cognito-idp-fips.us-east-1.amazonaws.com <your_user_pool_domain>.auth-fips.us-east-1.amazoncognito.com
  AWS Config	config-fips.us-west-1.amazonaws.com config-fips.us-west-2.amazonaws.com config-fips.us-east-2.amazonaws.com config-fips.us-east-1.amazonaws.com
  AWS Database Migration Service (DMS)	dms-fips.us-west-1.amazonaws.com dms-fips.us-west-2.amazonaws.com dms-fips.us-east-2.amazonaws.com dms-fips.us-east-1.amazonaws.com
  AWS Directory Service	ds-fips.us-west-1.amazonaws.com ds-fips.us-west-2.amazonaws.com ds-fips.us-east-2.amazonaws.com ds-fips.us-east-1.amazonaws.com
  Amazon DynamoDB	dynamodb-fips.us-west-1.amazonaws.com dynamodb-fips.us-west-2.amazonaws.com dynamodb-fips.us-east-2.amazonaws.com dynamodb-fips.us-east-1.amazonaws.com
  AWS Elastic Beanstalk	elasticbeanstalk-fips.us-east-1.amazonaws.com elasticbeanstalk-fips.us-east-2.amazonaws.com elasticbeanstalk-fips.us-west-1.amazonaws.com elasticbeanstalk-fips.us-west-2.amazonaws.com
  Amazon Elastic Block Store (EBS)	Utilizzo diretto di EC2
  Amazon Elastic Compute Cloud (EC2)	ec2-fips.us-west-1.amazonaws.com ec2-fips.us-west-2.amazonaws.com ec2-fips.us-east-2.amazonaws.com ec2-fips.us-east-1.amazonaws.com
  Amazon ElastiCache	elasticache-fips.us-east-1.amazonaws.com elasticache-fips.us-east-2.amazonaws.com elasticache-fips.us-west-1.amazonaws.com elasticache-fips.us-west-2.amazonaws.com
  Elastic Load Balancing	elasticloadbalancing-fips.us-west-1.amazonaws.com elasticloadbalancing-fips.us-west-2.amazonaws.com elasticloadbalancing-fips.us-east-2.amazonaws.com elasticloadbalancing-fips.us-east-1.amazonaws.com
  Amazon Elasticsearch	es-fips.us-west-1.amazonaws.com es-fips.us-west-2.amazonaws.com es-fips.us-east-1.amazonaws.com es-fips.us-east-2.amazonaws.com
  Amazon EMR (Amazon EMR)	elasticmapreduce-fips.us-west-1.amazonaws.com elasticmapreduce-fips.us-west-2.amazonaws.com elasticmapreduce-fips.us-east-1.amazonaws.com elasticmapreduce-fips.us-east-2.amazonaws.com
  Amazon Glacier	glacier-fips.us-west-1.amazonaws.com glacier-fips.us-west-2.amazonaws.com glacier-fips.us-east-2.amazonaws.com glacier-fips.us-east-1.amazonaws.com
  AWS Identity and Access Management (IAM)	iam-fips.amazonaws.com (Solo regione IAD)
  Amazon Inspector	inspector-fips.us-west-1.amazonaws.com inspector-fips.us-west-2.amazonaws.com inspector-fips.us-east-1.amazonaws.com
  Amazon Kinesis Streams	kinesis-fips.us-west-1.amazonaws.com kinesis-fips.us-west-2.amazonaws.com kinesis-fips.us-east-2.amazonaws.com kinesis-fips.us-east-1.amazonaws.com
  AWS Key Management Service (KMS)	kms-fips.us-west-1.amazonaws.com kms-fips.us-west-2.amazonaws.com kms-fips.us-east-2.amazonaws.com kms-fips.us-east-1.amazonaws.com
  AWS Lambda	lambda-fips.us-west-1.amazonaws.com lambda-fips.us-west-2.amazonaws.com lambda-fips.us-east-2.amazonaws.com lambda-fips.us-east-1.amazonaws.com
  Amazon QuickSight	fips-us-west-2.quicksight.aws.amazon.com fips-us-east-2.quicksight.aws.amazon.com fips-us-east-1.quicksight.aws.amazon.com
  Amazon Relational Database Service (RDS)/Amazon Aurora	rds-fips.us-west-1.amazonaws.com rds-fips.us-west-2.amazonaws.com rds-fips.us-east-2.amazonaws.com rds-fips.us-east-1.amazonaws.com
  Amazon Redshift	redshift-fips.us-west-1.amazonaws.com redshift-fips.us-west-2.amazonaws.com redshift-fips.us-east-2.amazonaws.com redshift-fips.us-east-1.amazonaws.com
  Amazon Route 53	api-fips.route53-eu-west-1.com route53-fips.amazonaws.com
  Amazon SageMaker	api-fips.sagemaker.us-east-1.amazonaws.com api-fips.sagemaker.us-east-2.amazonaws.com api-fips.sagemaker.us-west-2.amazonaws.com runtime-fips.sagemaker.us-east-1.amazonaws.com runtime-fips.sagemaker.us-east-2.amazonaws.com runtime-fips.sagemaker.us-west-2.amazonaws.com
  Amazon Simple Storage Service (S3) Nota: è possibile utilizzare questi endpoint solo con gli indirizzi in stile hosting virtuale. Ad esempio: https://bucket.s3-fips.us-east-2.amazonaws.com. Per ulteriori informazioni, visitare la scheda di documentazione Amazon S3.	s3-fips.us-east-2.amazonaws.com s3-fips.dualstack.us-west-1.amazonaws.com s3-fips.dualstack.us-west-2.amazonaws.com s3-fips.dualstack.us-east-2.amazonaws.com s3-fips.dualstack.us-east-1.amazonaws.com s3-fips.us-west-1.amazonaws.com s3-fips.us-west-2.amazonaws.com s3-fips.us-east-1.amazonaws.com
  AWS Shield	shield-fips.us-east-1.amazonaws.com
  AWS Snowball	FIPS non necessario
  Amazon Simple Notification Service (SNS)	sns-fips.us-west-1.amazonaws.com sns-fips.us-west-2.amazonaws.com sns-fips.us-east-2.amazonaws.com sns-fips.us-east-1.amazonaws.com
  Amazon Simple Queue Service (SQS)	sqs-fips.us-west-1.amazonaws.com
  AWS Security Token Service (STS)	sts-fips.us-west-1.amazonaws.com sts-fips.us-west-2.amazonaws.com sts-fips.us-east-2.amazonaws.com sts-fips.us-east-1.amazonaws.com
  Amazon Simple Workflow Service (SWF)	swf-fips.us-west-1.amazonaws.com swf-fips.us-west-2.amazonaws.com swf-fips.us-east-2.amazonaws.com swf-fips.us-east-1.amazonaws.com
  AWS Systems Manager	ssm-fips.us-west-1.amazonaws.com ssm-fips.us-west-2.amazonaws.com ssm-fips.us-east-2.amazonaws.com ssm-fips.us-east-1.amazonaws.com
  Amazon Virtual Private Cloud (VPC)	Utilizzo diretto di EC2
  AWS WAF	waf-regional-fips.us-west-1.amazonaws.com waf-regional-fips.us-west-2.amazonaws.com waf-regional-fips.us-east-1.amazonaws.com waf-fips.amazonaws.com waf-regional-fips.eu-west-1.amazonaws.com waf-regional-fips.ap-northeast-1.amazonaws.com
  Amazon WorkDocs	workdocs-fips.us-west-2.amazonaws.com workdocs-fips.us-east-1.amazonaws.com

  Per un elenco di tutti gli endpoint AWS disponibili, consultare Regioni ed endpoint nel documento Riferimenti generali AWS.

• Quali sono gli endpoint FIPS per AWS GovCloud (Stati Uniti)?

  Per un elenco degli endpoint FIPS disponibili per AWS GovCloud (Stati Uniti), consulta la guida per l’utente di AWS GovCloud (Stati Uniti).

• Quali sono gli endpoint FIPS per AWS Canada (Centrale)?

  AWS Service	Endpoint di AWS Canada (Centrale)
  Amazon API Gateway	apigateway-fips.ca-central-1.amazonaws.com
  Amazon CodeCommit	git-codecommit-fips.ca-central-1.amazonaws.com codecommit-fips.ca-central-1.amazonaws.com
  AWS Directory Service	ds-fips.ca-central-1.amazonaws.com
  Amazon DynamoDB	dynamodb-fips.ca-central-1.amazonaws.com
  Amazon Elastic Compute Cloud (EC2)	ec2-fips.ca-central-1.amazonaws.com
  Amazon EMR (Amazon EMR)	elasticmapreduce-fips.ca-central-1.amazonaws.com
  Amazon Glacier	glacier-fips.ca-central-1.amazonaws.com
  Amazon Relational Database Service (RDS)/Amazon Aurora	rds-fips.ca-central-1.amazonaws.com
  Amazon Redshift	redshift-fips.ca-central-1.amazonaws.com
  AWS Security Token Service (STS)	sts.ca-central-1.amazonaws.com