Federal Information Processing Standard (FIPS) 140-2

Panoramica

Il Federal Information Processing Standard (FIPS) Publication 140-2 è uno standard del governo statunitense e canadese che specifica i requisiti di sicurezza previsti per i moduli crittografici che proteggono informazioni sensibili. Se è necessario utilizzare moduli crittografici convalidati FIPS 140-2 per accedere ad AWS Stati Uniti orientali/occidentali, AWS GovCloud (Stati Uniti) o AWS Canada (Centrale) mediante l'interfaccia a riga di comando (CLI) o in modo programmatico utilizzando le API, le sezioni seguenti forniscono l'elenco degli endpoint FIPS disponibili in base alla regione AWS. Gli endpoint VPN Amazon Virtual Private Cloud in AWS GovCloud (Stati Uniti) funzionano utilizzando moduli crittografici FIPS 140-2 convalidati. AWS collabora con i clienti per fornire loro le informazioni necessarie per gestire la conformità quando si opera nelle regioni AWS Stati Uniti orientali/occidentali, AWS GovCloud (Stati Uniti) o AWS Canada (Centrale). Per ulteriori informazioni sullo standard, consultare il Programma di convalida del modulo crittografico sul sito web del Centro risorse per la sicurezza informatica NIST.

Quali sono gli endpoint FIPS per AWS Stati Uniti orientali/occidentali?

La tabella seguente elenca tutti gli endpoint FIPS disponibili per i diversi servizi AWS nelle regioni AWS degli Stati Uniti orientali/occidentali.

AWS Service	Endpoint AWS Stati Uniti orientali/occidentali
Amazon API Gateway	apigateway-fips.us-west-1.amazonaws.com apigateway-fips.us-west-2.amazonaws.com apigateway-fips.us-east-2.amazonaws.com apigateway-fips.us-east-1.amazonaws.com
Amazon AppStream 2.0	appstream2-fips.us-east-1.amazonaws.com appstream2-fips.us-west-2.amazonaws.com
Amazon Cloud Directory	clouddirectory-fips.us-east-2.amazonaws.com clouddirectory-fips.us-east-1.amazonaws.com
AWS CloudFormation	cloudformation-fips.us-east-1.amazonaws.com cloudformation-fips.us-east-2.amazonaws.com cloudformation-fips.us-west-1.amazonaws.com cloudformation-fips.us-west-2.amazonaws.com
Amazon CloudFront	cloudfront-fips.amazonaws.com
AWS CloudTrail	cloudtrail-fips.us-west-1.amazonaws.com cloudtrail-fips.us-west-2.amazonaws.com cloudtrail-fips.us-east-2.amazonaws.com cloudtrail-fips.us-east-1.amazonaws.com
AWS CodeCommit	git-codecommit-fips.us-east-1.amazonaws.com codecommit-fips.us-east-1.amazonaws.com git-codecommit-fips.us-east-2.amazonaws.com codecommit-fips.us-east-2.amazonaws.com git-codecommit-fips.us-west-1.amazonaws.com codecommit-fips.us-west-1.amazonaws.com git-codecommit-fips.us-west-2.amazonaws.com codecommit-fips.us-west-2.amazonaws.com
Amazon Cognito	cognito-sync-fips.us-west-2.amazonaws.com cognito-identity-fips.us-west-2.amazonaws.com cognito-idp-fips.us-west-2.amazonaws.com <your_user_pool_domain>.auth-fips.us-west-2.amazoncognito.com cognito-sync-fips.us-east-2.amazonaws.com cognito-identity-fips.us-east-2.amazonaws.com cognito-idp-fips.us-east-2.amazonaws.com <your_user_pool_domain>.auth-fips.us-east-2.amazoncognito.com cognito-sync-fips.us-east-1.amazonaws.com cognito-identity-fips.us-east-1.amazonaws.com cognito-idp-fips.us-east-1.amazonaws.com <your_user_pool_domain>.auth-fips.us-east-1.amazoncognito.com
AWS Config	config-fips.us-west-1.amazonaws.com config-fips.us-west-2.amazonaws.com config-fips.us-east-2.amazonaws.com config-fips.us-east-1.amazonaws.com
AWS Database Migration Service (DMS)	dms-fips.us-west-1.amazonaws.com dms-fips.us-west-2.amazonaws.com dms-fips.us-east-2.amazonaws.com dms-fips.us-east-1.amazonaws.com
AWS Directory Service	ds-fips.us-west-1.amazonaws.com ds-fips.us-west-2.amazonaws.com ds-fips.us-east-2.amazonaws.com ds-fips.us-east-1.amazonaws.com
Amazon DynamoDB	dynamodb-fips.us-west-1.amazonaws.com dynamodb-fips.us-west-2.amazonaws.com dynamodb-fips.us-east-2.amazonaws.com dynamodb-fips.us-east-1.amazonaws.com
AWS Elastic Beanstalk	elasticbeanstalk-fips.us-east-1.amazonaws.com elasticbeanstalk-fips.us-east-2.amazonaws.com elasticbeanstalk-fips.us-west-1.amazonaws.com elasticbeanstalk-fips.us-west-2.amazonaws.com
Amazon Elastic Block Store (EBS)	Utilizzo diretto di EC2
Amazon Elastic Compute Cloud (EC2)	ec2-fips.us-west-1.amazonaws.com ec2-fips.us-west-2.amazonaws.com ec2-fips.us-east-2.amazonaws.com ec2-fips.us-east-1.amazonaws.com
Amazon Elastic Container Registry	ecr-fips.us-west-1.amazonaws.com ecr-fips.us-west-2.amazonaws.com ecr-fips.us-east-2.amazonaws.com ecr-fips.us-east-1.amazonaws.com .dkr.ecr-fips.us-west-1.amazonaws.com .dkr.ecr-fips.us-west-2.amazonaws.com .dkr.ecr-fips.us-east-2.amazonaws.com .dkr.ecr-fips.us-east-1.amazonaws.com
Amazon ElastiCache	elasticache-fips.us-east-1.amazonaws.com elasticache-fips.us-east-2.amazonaws.com elasticache-fips.us-west-1.amazonaws.com elasticache-fips.us-west-2.amazonaws.com
Elastic Load Balancing	elasticloadbalancing-fips.us-west-1.amazonaws.com elasticloadbalancing-fips.us-west-2.amazonaws.com elasticloadbalancing-fips.us-east-2.amazonaws.com elasticloadbalancing-fips.us-east-1.amazonaws.com
Amazon Elasticsearch	es-fips.us-west-1.amazonaws.com es-fips.us-west-2.amazonaws.com es-fips.us-east-1.amazonaws.com es-fips.us-east-2.amazonaws.com
Amazon EMR (Amazon EMR)	elasticmapreduce-fips.us-west-1.amazonaws.com elasticmapreduce-fips.us-west-2.amazonaws.com elasticmapreduce-fips.us-east-1.amazonaws.com elasticmapreduce-fips.us-east-2.amazonaws.com
Amazon Glacier	glacier-fips.us-west-1.amazonaws.com glacier-fips.us-west-2.amazonaws.com glacier-fips.us-east-2.amazonaws.com glacier-fips.us-east-1.amazonaws.com
Amazon GuardDuty	guardduty-fips.us-east-1.amazonaws.com guardduty-fips.us-west-1.amazonaws.com guardduty-fips.us-east-2.amazonaws.com guardduty-fips.us-west-2.amazonaws.com
AWS Identity and Access Management (IAM)	iam-fips.amazonaws.com (Solo regione IAD)
Amazon Inspector	inspector-fips.us-west-1.amazonaws.com inspector-fips.us-west-2.amazonaws.com inspector-fips.us-east-1.amazonaws.com
Amazon Kinesis Streams	kinesis-fips.us-west-1.amazonaws.com kinesis-fips.us-west-2.amazonaws.com kinesis-fips.us-east-2.amazonaws.com kinesis-fips.us-east-1.amazonaws.com
AWS Key Management Service (KMS)	kms-fips.us-west-1.amazonaws.com kms-fips.us-west-2.amazonaws.com kms-fips.us-east-2.amazonaws.com kms-fips.us-east-1.amazonaws.com
AWS Lambda	lambda-fips.us-west-1.amazonaws.com lambda-fips.us-west-2.amazonaws.com lambda-fips.us-east-2.amazonaws.com lambda-fips.us-east-1.amazonaws.com
Amazon MQ	mq-fips.us-east-1.amazonaws.com mq-fips.us-east-2.amazonaws.com mq-fips.us-west-1.amazonaws.com mq-fips.us-west-2.amazonaws.com
Amazon Pinpoint	pinpoint-fips.us-east-1.amazonaws.com pinpoint-fips.us-west-2.amazonaws.com
Amazon QuickSight	fips-us-west-2.quicksight.aws.amazon.com fips-us-east-2.quicksight.aws.amazon.com fips-us-east-1.quicksight.aws.amazon.com
Amazon Relational Database Service (RDS)/Amazon Aurora	rds-fips.us-west-1.amazonaws.com rds-fips.us-west-2.amazonaws.com rds-fips.us-east-2.amazonaws.com rds-fips.us-east-1.amazonaws.com
Amazon Redshift	redshift-fips.us-west-1.amazonaws.com redshift-fips.us-west-2.amazonaws.com redshift-fips.us-east-2.amazonaws.com redshift-fips.us-east-1.amazonaws.com
Amazon Route 53	api-fips.route53-eu-west-1.com route53-fips.amazonaws.com
Amazon SageMaker	api-fips.sagemaker.us-east-1.amazonaws.com api-fips.sagemaker.us-east-2.amazonaws.com api-fips.sagemaker.us-west-2.amazonaws.com runtime-fips.sagemaker.us-east-1.amazonaws.com runtime-fips.sagemaker.us-east-2.amazonaws.com runtime-fips.sagemaker.us-west-2.amazonaws.com
AWS Security Token Service (STS)	sts-fips.us-west-1.amazonaws.com sts-fips.us-west-2.amazonaws.com sts-fips.us-east-2.amazonaws.com sts-fips.us-east-1.amazonaws.com
AWS Service Catalog	servicecatalog-fips.us-west-1.amazonaws.com servicecatalog-fips.us-west-2.amazonaws.com servicecatalog-fips.us-east-1.amazonaws.com servicecatalog-fips.us-east-2.amazonaws.com
AWS Shield	shield-fips.us-east-1.amazonaws.com
Amazon Simple Email Service (API HTTPS)	email-fips.us-east-1.amazonaws.com email-fips.us-west-2.amazonaws.com
Amazon Simple Email Service (SMTP)	email-smtp-fips.us-east-1.amazonaws.com email-smtp-fips.us-west-2.amazonaws.com
Amazon Simple Notification Service (SNS)	sns-fips.us-west-1.amazonaws.com sns-fips.us-west-2.amazonaws.com sns-fips.us-east-2.amazonaws.com sns-fips.us-east-1.amazonaws.com
Amazon Simple Queue Service (SQS)	sqs-fips.us-west-1.amazonaws.com
Amazon Simple Storage Service (S3) Nota: è possibile utilizzare questi endpoint solo con gli indirizzi in stile hosting virtuale. Ad esempio: https://bucket.s3-fips.us-east-2.amazonaws.com. Per ulteriori informazioni, visitare la scheda di documentazione Amazon S3.	s3-fips.us-east-2.amazonaws.com s3-fips.dualstack.us-west-1.amazonaws.com s3-fips.dualstack.us-west-2.amazonaws.com s3-fips.dualstack.us-east-2.amazonaws.com s3-fips.dualstack.us-east-1.amazonaws.com s3-fips.us-west-1.amazonaws.com s3-fips.us-west-2.amazonaws.com s3-fips.us-east-1.amazonaws.com
Amazon Simple Workflow Service (SWF)	swf-fips.us-west-1.amazonaws.com swf-fips.us-west-2.amazonaws.com swf-fips.us-east-2.amazonaws.com swf-fips.us-east-1.amazonaws.com
AWS Snowball	FIPS non necessario
AWS Systems Manager	ssm-fips.us-west-1.amazonaws.com ssm-fips.us-west-2.amazonaws.com ssm-fips.us-east-2.amazonaws.com ssm-fips.us-east-1.amazonaws.com
Amazon Virtual Private Cloud (VPC)	Utilizzo diretto di EC2
AWS WAF	waf-regional-fips.us-west-1.amazonaws.com waf-regional-fips.us-west-2.amazonaws.com waf-regional-fips.us-east-1.amazonaws.com waf-regional-fips.us-east-2.amazonaws.com waf-fips.amazonaws.com wafv2-fips.us-west-1.amazonaws.com wafv2-fips.us-west-2.amazonaws.com wafv2-fips.us-east-1.amazonaws.com wafv2-fips.us-east-2.amazonaws.com
Amazon WorkDocs	workdocs-fips.us-west-2.amazonaws.com workdocs-fips.us-east-1.amazonaws.com

shield-fips.us-east-1.amazonaws.com

FIPS non necessario

Per un elenco di tutti gli endpoint AWS, consultare Regioni ed endpoint nel documento Riferimenti generali AWS.

Quali sono gli endpoint FIPS per AWS GovCloud (Stati Uniti)?

Per un elenco degli endpoint FIPS disponibili per AWS GovCloud (Stati Uniti), consulta la guida per l’utente di AWS GovCloud (Stati Uniti).

Quali sono gli endpoint FIPS per AWS Canada (Centrale)?

AWS Service	Endpoint di AWS Canada (Centrale)
Amazon API Gateway	apigateway-fips.ca-central-1.amazonaws.com
Amazon CodeCommit	git-codecommit-fips.ca-central-1.amazonaws.com codecommit-fips.ca-central-1.amazonaws.com
AWS Directory Service	ds-fips.ca-central-1.amazonaws.com
Amazon DynamoDB	dynamodb-fips.ca-central-1.amazonaws.com
Amazon Elastic Compute Cloud (EC2)	ec2-fips.ca-central-1.amazonaws.com
Amazon EMR (Amazon EMR)	elasticmapreduce-fips.ca-central-1.amazonaws.com
Amazon Glacier	glacier-fips.ca-central-1.amazonaws.com
Amazon Relational Database Service (RDS)/Amazon Aurora	rds-fips.ca-central-1.amazonaws.com
Amazon Redshift	redshift-fips.ca-central-1.amazonaws.com
AWS Security Token Service (STS)	sts.ca-central-1.amazonaws.com
Amazon Simple Storage Service (Amazon S3) Nota: è possibile utilizzare questo endpoint solo con gli indirizzi in stile hosting virtuale. Ad esempio: https://bucket.s3-fips.ca-central-1.amazonaws.com. Per ulteriori informazioni, visita la scheda di documentazione Amazon S3.	s3-fips.ca-central-1.amazonaws.com
AWS WAF	wafv2-fips.ca-central-1.amazonaws.com

Hai domande? Contatta un rappresentante aziendale di AWS

Contattaci

Sei interessato a un ruolo nell'ambito della conformità?

Invia subito la tua domanda »

Desideri aggiornamenti sulla conformità in AWS?

Seguici su Twitter »

Federal Information Processing Standard (FIPS) 140-2

Panoramica

Quali sono gli endpoint FIPS per AWS Stati Uniti orientali/occidentali?

Quali sono gli endpoint FIPS per AWS GovCloud (Stati Uniti)?

Quali sono gli endpoint FIPS per AWS Canada (Centrale)?