FIPS(Federal Information Processing Standard) 140-2

개요

FIPS_sized

FIPS(Federal Information Processing Standard) 발행물 140-2는 미국 및 캐나다 정부 표준으로서, 민감한 정보를 보호하는 암호 모듈의 보안 요구 사항을 규정하고 있습니다. 명령줄 인터페이스(CLI)를 사용하거나 API를 사용해 프로그래밍 방식으로 AWS 미국 동부/서부, AWS GovCloud(US) 또는 AWS 캐나다(중부) 지역에 액세스할 때 FIPS 140-2 검증 암호화 모듈을 사용해야 하는 경우, AWS 리전에서 제공하는 FIPS 엔드포인트는 다음과 같습니다. AWS GovCloud(US)의 Amazon Virtual Private Cloud VPN 엔드포인트는 FIPS 140-2 검증 암호화 모듈을 사용하여 작동합니다. AWS는 고객과 협력하여 고객이 AWS 미국 동부/서부, AWS GovCloud(US) 또는 AWS 캐나다(중부) 지역을 사용할 때 규정 준수를 관리하는 데 필요한 정보를 제공합니다. 이 표준에 대한 자세한 내용은 NIST Computer Security Resource Center 웹 사이트에서 Cryptographic Module Validation Program을 참조하십시오.

  • AWS 미국 동부/서부의 FIPS 엔드포인트는 어떻게 됩니까?

    다음 표에는 AWS 미국 동부/서부 리전의 다양한 AWS 서비스에 사용할 수 있는 각 FIPS 엔드포인트 목록이 나와 있습니다. 

    AWS Service     AWS 미국 동부/서부 엔드포인트    
    Amazon API Gateway

    apigateway-fips.us-west-1.amazonaws.com

    apigateway-fips.us-west-2.amazonaws.com

    apigateway-fips.us-east-2.amazonaws.com

    apigateway-fips.us-east-1.amazonaws.com

    Amazon AppStream 2.0

    appstream2-fips.us-east-1.amazonaws.com

    appstream2-fips.us-west-2.amazonaws.com

    Amazon Cloud Directory

    clouddirectory-fips.us-west-1.amazonaws.com

    clouddirectory-fips.us-east-2.amazonaws.com

    clouddirectory-fips.us-east-1.amazonaws.com

    AWS CloudFormation  

    cloudformation-fips.us-east-1.amazonaws.com

    cloudformation-fips.us-east-2.amazonaws.com

    cloudformation-fips.us-west-1.amazonaws.com

    cloudformation-fips.us-west-2.amazonaws.com

    AWS CloudTrail

    cloudtrail-fips.us-west-1.amazonaws.com

    cloudtrail-fips.us-west-2.amazonaws.com

    cloudtrail-fips.us-east-2.amazonaws.com

    cloudtrail-fips.us-east-1.amazonaws.com

    AWS CodeCommit

    git-codecommit-fips.us-east-1.amazonaws.com

    codecommit-fips.us-east-1.amazonaws.com

    git-codecommit-fips.us-east-2.amazonaws.com

    codecommit-fips.us-east-2.amazonaws.com

    git-codecommit-fips.us-west-1.amazonaws.com

    codecommit-fips.us-west-1.amazonaws.com

    git-codecommit-fips.us-west-2.amazonaws.com

    codecommit-fips.us-west-2.amazonaws.com

    Amazon Cognito

    cognito-sync-fips.us-west-2.amazonaws.com

    cognito-identity-fips.us-west-2.amazonaws.com

    cognito-idp-fips.us-west-2.amazonaws.com

    <your_user_pool_domain>.auth-fips.us-west-2.amazoncognito.com

    cognito-sync-fips.us-east-2.amazonaws.com

    cognito-identity-fips.us-east-2.amazonaws.com

    cognito-idp-fips.us-east-2.amazonaws.com

    <your_user_pool_domain>.auth-fips.us-east-2.amazoncognito.com

    cognito-sync-fips.us-east-1.amazonaws.com

    cognito-identity-fips.us-east-1.amazonaws.com

    cognito-idp-fips.us-east-1.amazonaws.com

    <your_user_pool_domain>.auth-fips.us-east-1.amazoncognito.com

    AWS Config

    config-fips.us-west-1.amazonaws.com

    config-fips.us-west-2.amazonaws.com

    config-fips.us-east-2.amazonaws.com

    config-fips.us-east-1.amazonaws.com    

    AWS Database Migration Service(DMS)

    dms-fips.us-west-1.amazonaws.com

    dms-fips.us-west-2.amazonaws.com

    dms-fips.us-east-2.amazonaws.com

    dms-fips.us-east-1.amazonaws.com

    AWS Directory Service 

    ds-fips.us-west-1.amazonaws.com

    ds-fips.us-west-2.amazonaws.com

    ds-fips.us-east-2.amazonaws.com

    ds-fips.us-east-1.amazonaws.com

    Amazon DynamoDB

    dynamodb-fips.us-west-1.amazonaws.com

    dynamodb-fips.us-west-2.amazonaws.com

    dynamodb-fips.us-east-2.amazonaws.com

    dynamodb-fips.us-east-1.amazonaws.com

    AWS Elastic Beanstalk

    elasticbeanstalk-fips.us-east-1.amazonaws.com

    elasticbeanstalk-fips.us-east-2.amazonaws.com

    elasticbeanstalk-fips.us-west-1.amazonaws.com

    elasticbeanstalk-fips.us-west-2.amazonaws.com

    Amazon Elastic Block Store(EBS) Using EC2 Directly
    Amazon Elastic Compute Cloud(EC2)

    ec2-fips.us-west-1.amazonaws.com

    ec2-fips.us-west-2.amazonaws.com

    ec2-fips.us-east-2.amazonaws.com

    ec2-fips.us-east-1.amazonaws.com

    Amazon Elastic Container Registry

    ecr-fips.us-west-1.amazonaws.com

    ecr-fips.us-west-2.amazonaws.com

    ecr-fips.us-east-2.amazonaws.com

    ecr-fips.us-east-1.amazonaws.com

    *.dkr.ecr-fips.us-west-1.amazonaws.com

    *.dkr.ecr-fips.us-west-2.amazonaws.com

    *.dkr.ecr-fips.us-east-2.amazonaws.com

    *.dkr.ecr-fips.us-east-1.amazonaws.com

    Amazon ElastiCache

    elasticache-fips.us-east-1.amazonaws.com

    elasticache-fips.us-east-2.amazonaws.com

    elasticache-fips.us-west-1.amazonaws.com

    elasticache-fips.us-west-2.amazonaws.com

    Elastic Load Balancing

    elasticloadbalancing-fips.us-west-1.amazonaws.com

    elasticloadbalancing-fips.us-west-2.amazonaws.com

    elasticloadbalancing-fips.us-east-2.amazonaws.com

    elasticloadbalancing-fips.us-east-1.amazonaws.com

    Amazon Elasticsearch es-fips.us-west-1.amazonaws.com
    es-fips.us-west-2.amazonaws.com
    es-fips.us-east-1.amazonaws.com
    es-fips.us-east-2.amazonaws.com
    Amazon EMR(EMR)

    elasticmapreduce-fips.us-west-1.amazonaws.com

    elasticmapreduce-fips.us-west-2.amazonaws.com

    elasticmapreduce-fips.us-east-1.amazonaws.com

    elasticmapreduce-fips.us-east-2.amazonaws.com

    Amazon Glacier

    glacier-fips.us-west-1.amazonaws.com

    glacier-fips.us-west-2.amazonaws.com

    glacier-fips.us-east-2.amazonaws.com

    glacier-fips.us-east-1.amazonaws.com

    Amazon GuardDuty

    guardduty-fips.us-east-1.amazonaws.com

    guardduty-fips.us-west-1.amazonaws.com

    guardduty-fips.us-east-2.amazonaws.com

    guardduty-fips.us-west-2.amazonaws.com

    AWS Identity and Access Management(IAM) iam-fips.amazonaws.com(IAD 리전만 해당)    
    Amazon Inspector

    inspector-fips.us-west-1.amazonaws.com

    inspector-fips.us-west-2.amazonaws.com

    inspector-fips.us-east-1.amazonaws.com

    Amazon Kinesis Streams

    kinesis-fips.us-west-1.amazonaws.com

    kinesis-fips.us-west-2.amazonaws.com

    kinesis-fips.us-east-2.amazonaws.com

    kinesis-fips.us-east-1.amazonaws.com

    AWS Key Management Service(KMS)

    kms-fips.us-west-1.amazonaws.com

    kms-fips.us-west-2.amazonaws.com

    kms-fips.us-east-2.amazonaws.com

    kms-fips.us-east-1.amazonaws.com

    AWS Lambda

    lambda-fips.us-west-1.amazonaws.com

    lambda-fips.us-west-2.amazonaws.com

    lambda-fips.us-east-2.amazonaws.com

    lambda-fips.us-east-1.amazonaws.com

    Amazon MQ

    mq-fips.us-east-1.amazonaws.com

    mq-fips.us-east-2.amazonaws.com

    mq-fips.us-west-1.amazonaws.com

    mq-fips.us-west-2.amazonaws.com

    Amazon QuickSight

    fips-us-west-2.quicksight.aws.amazon.com

    fips-us-east-2.quicksight.aws.amazon.com

    fips-us-east-1.quicksight.aws.amazon.com

    Amazon Relational Database Service(RDS)/Amazon Aurora

    rds-fips.us-west-1.amazonaws.com

    rds-fips.us-west-2.amazonaws.com

    rds-fips.us-east-2.amazonaws.com

    rds-fips.us-east-1.amazonaws.com

    Amazon Redshift

    redshift-fips.us-west-1.amazonaws.com

    redshift-fips.us-west-2.amazonaws.com

    redshift-fips.us-east-2.amazonaws.com

    redshift-fips.us-east-1.amazonaws.com

    Amazon Route 53

    api-fips.route53-eu-west-1.com

    route53-fips.amazonaws.com

    Amazon SageMaker

    api-fips.sagemaker.us-east-1.amazonaws.com

    api-fips.sagemaker.us-east-2.amazonaws.com

    api-fips.sagemaker.us-west-2.amazonaws.com

    runtime-fips.sagemaker.us-east-1.amazonaws.com

    runtime-fips.sagemaker.us-east-2.amazonaws.com

    runtime-fips.sagemaker.us-west-2.amazonaws.com

    AWS Security Token Service(STS)

    sts-fips.us-west-1.amazonaws.com

    sts-fips.us-west-2.amazonaws.com

    sts-fips.us-east-2.amazonaws.com

    sts-fips.us-east-1.amazonaws.com

    AWS Service Catalog

    servicecatalog-fips.us-west-1.amazonaws.com

    servicecatalog-fips.us-west-2.amazonaws.com

    servicecatalog-fips.us-east-1.amazonaws.com

    servicecatalog-fips.us-east-2.amazonaws.com

    AWS Shield shield-fips.us-east-1.amazonaws.com

    Amazon Simple Storage Service(S3)

    참고: 이러한 엔드포인트는 가상 호스팅 방식 주소 지정으로만 사용할 수 있습니다. 예: https://bucket.s3-fips.us-east-2.amazonaws.com. 자세한 내용은 Amazon S3 설명서 페이지를 참조하십시오.

    s3-fips.us-east-2.amazonaws.com

    s3-fips.dualstack.us-west-1.amazonaws.com

    s3-fips.dualstack.us-west-2.amazonaws.com

    s3-fips.dualstack.us-east-2.amazonaws.com

    s3-fips.dualstack.us-east-1.amazonaws.com

    s3-fips.us-west-1.amazonaws.com

    s3-fips.us-west-2.amazonaws.com

    s3-fips.us-east-1.amazonaws.com

    Amazon Simple Notification Service(SNS)

    sns-fips.us-west-1.amazonaws.com

    sns-fips.us-west-2.amazonaws.com

    sns-fips.us-east-2.amazonaws.com

    sns-fips.us-east-1.amazonaws.com

    Amazon Simple Queue Service(SQS)

    sqs-fips.us-west-1.amazonaws.com

    Amazon Simple Workflow Service(SWF)

    swf-fips.us-west-1.amazonaws.com

    swf-fips.us-west-2.amazonaws.com

    swf-fips.us-east-2.amazonaws.com

    swf-fips.us-east-1.amazonaws.com

    AWS Snowball FIPS가 필요 없음
    AWS Systems Manager

    ssm-fips.us-west-1.amazonaws.com

    ssm-fips.us-west-2.amazonaws.com

    ssm-fips.us-east-2.amazonaws.com

    ssm-fips.us-east-1.amazonaws.com

    Amazon Virtual Private Cloud(VPC)

    EC2를 직접 사용

    AWS WAF

    waf-regional-fips.us-west-1.amazonaws.com

    waf-regional-fips.us-west-2.amazonaws.com

    waf-regional-fips.us-east-1.amazonaws.com

    waf-regional-fips.us-east-2.amazonaws.com

    waf-fips.amazonaws.com

    Amazon WorkDocs

    workdocs-fips.us-west-2.amazonaws.com

    workdocs-fips.us-east-1.amazonaws.com

    shield-fips.us-east-1.amazonaws.com
    shield-fips.us-east-1.amazonaws.com
    shield-fips.us-east-1.amazonaws.com
    FIPS가 필요 없음

    전체 AWS 엔드포인트 목록은 AWS 일반 참조지역 및 엔드포인트를 참조하십시오.

  • AWS GovCloud(US)의 FIPS 엔드포인트는 어떻게 됩니까?

    AWS GovCloud(US)에 사용 가능한 FIFP 엔드포인트 목록은 AWS GovCloud(US) 사용 설명서를 참조하십시오.

  • AWS 캐나다(중부)의 FIPS 엔드포인트는 어떻게 됩니까?

    AWS Service     AWS 캐나다(중부) 엔드포인트    
    Amazon API Gateway apigateway-fips.ca-central-1.amazonaws.com
    Amazon CodeCommit

    git-codecommit-fips.ca-central-1.amazonaws.com

    codecommit-fips.ca-central-1.amazonaws.com

    AWS Directory Service 

    ds-fips.ca-central-1.amazonaws.com

    Amazon DynamoDB dynamodb-fips.ca-central-1.amazonaws.com
    Amazon Elastic Compute Cloud(EC2)

    ec2-fips.ca-central-1.amazonaws.com

    Amazon EMR(EMR)

    elasticmapreduce-fips.ca-central-1.amazonaws.com

    Amazon Glacier

    glacier-fips.ca-central-1.amazonaws.com

    Amazon Relational Database Service(RDS)/Amazon Aurora

    rds-fips.ca-central-1.amazonaws.com

    Amazon Redshift

    redshift-fips.ca-central-1.amazonaws.com

    AWS Security Token Service(STS)

    sts.ca-central-1.amazonaws.com

    Amazon Simple Storage Service(Amazon S3)

    참고: 이 엔드포인트는 가상 호스팅 방식 주소 지정으로만 사용할 수 있습니다. 예: https://bucket.s3-fips.ca-central-1.amazonaws.com. 자세한 내용은 Amazon S3 설명서 페이지를 참조하십시오.

    s3-fips.ca-central-1.amazonaws.com
compliance-contactus-icon
질문이 있으십니까? AWS 영업 담당자와 연결
규정 준수 역할을 찾고 계십니까?
지금 신청하십시오 »
AWS 규정 준수 업데이트를 받으시겠습니까?
Twitter 팔로우하기 »