Overview
This is a repackaged open source software product wherein additional charges apply for patching the operating system and the maintenance provided by Kurian.
FIPS (Federal Information Processing Standard) 140-2 is a cryptography standard that non-military U.S. federal agencies, as well as government contractors and service providers, must comply with in order to work with any federal government entities that collect, store, transfer, share and disseminate sensitive but unclassified (SBU) information. The FIPS 140-2 security standard is recognized by the U.S. and Canadian governments, as well as by the European Union.
This AMI is FIPS 140-2 compliant at the operating system level and applications can be run on this platform to meet compliance requirements as well as to harden the runtime environment.
Kurian has released preconfigured software applications such as CMS platforms, Jenkins, databases, LAMP stack, Ansible, popular tools in DevOps toolchain, and monitoring applications that are widely used by system administrators and DevOps engineers. For selected Linux distributions hardened images based on CIS benchmark are also available. The Kurian AMIs are built following official installation steps so you do not need to learn any custom procedures if additional configurations need to be done.
Highlights
- The Federal Information Processing Standard 140-2 (FIPS 140-2) compliant.
- AMI is built with the latest operating system and security patches.
- Also relevant to businesses operating in the energy, transportation, manufacturing, healthcare and financial services sectors.
Details
Typical total price
$0.051/hour
Features and programs
Financing for AWS Marketplace purchases
Pricing
Free trial
- ...
Instance type | Product cost/hour | EC2 cost/hour | Total/hour |
---|---|---|---|
t2.nano | $0.005 | $0.006 | $0.011 |
t2.micro AWS Free Tier | $0.005 | $0.012 | $0.017 |
t2.small | $0.005 | $0.023 | $0.028 |
t2.medium Recommended | $0.005 | $0.046 | $0.051 |
t2.large | $0.005 | $0.093 | $0.098 |
t2.xlarge | $0.005 | $0.186 | $0.191 |
t2.2xlarge | $0.005 | $0.371 | $0.376 |
t3.nano | $0.005 | $0.005 | $0.01 |
t3.micro AWS Free Tier | $0.005 | $0.01 | $0.015 |
t3.small | $0.005 | $0.021 | $0.026 |
Additional AWS infrastructure costs
Type | Cost |
---|---|
EBS General Purpose SSD (gp2) volumes | $0.10/per GB/month of provisioned storage |
Vendor refund policy
Free evaluation of the AMI for 2 weeks is available for the paid versions. The charges when applicable are usage based and the service can be discontinued anytime.
Legal
Vendor terms and conditions
Content disclaimer
Delivery details
64-bit (x86) Amazon Machine Image (AMI)
Amazon Machine Image (AMI)
An AMI is a virtual image that provides the information required to launch an instance. Amazon EC2 (Elastic Compute Cloud) instances are virtual servers on which you can run your applications and workloads, offering varying combinations of CPU, memory, storage, and networking resources. You can launch as many instances from as many different AMIs as you need.
Version release notes
Release of FIPS compatible machines images with OS security patches on August 28th, 2022.
Additional details
Usage instructions
- Spin up new instances using one-click from AWS console or aws cli or autoscaling options as your infrastructure provisioning process requires.
- SSH into the new instance as user centos to perform additional configurations. Follow AMI documentation to verify the enabling of FIPS on the host.
- Customers can use this AMI to build applications. It is up to the application developers where and how to store any sensitive information and to encrypt data in rest and transit and, for any such requirements, the customers may have to customize this AMI to meet the needs as determined by the working of the applications.
- The AMI does not store any passwords or keys and it is up to the customers to rotate the secrets if that would be added as part of the customization. The AMI does not have any encrypted data that is needed for any build process.
Resources
Support
Vendor support
Email issues to contact@kurianinc.us and allow 24 hours to respond. For additional contact info visit
AWS infrastructure support
AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.
Similar products
Customer reviews
(2022-09-26) OpenSSL 1.0.2k-fips. Good for TLS 1.2, but no good for TLS 1.3 needs.
Looking for a fips compliant ami for tls 1.3 purposes, look elsewhere. No details posted on the Kurian website, wiki, or github, and no reviews to help determine if this image would meet those requirements or not. Looking for an OpenSSL v1.1.1 fips cert.
[root@ip-10-222-11-120 centos]# openssl version
OpenSSL 1.0.2k-fips 26 Jan 2017