Overview
Ubuntu Pro FIPS is the first and only FIPS certified image for the public cloud. Ubuntu Pro FIPS is the critical foundation for state agencies administering federal programs and private sector companies with government contracts. Ubuntu Pro FIPS is built upon the power of Ubuntu Pro's enhanced stability, compliance and security features and is maintained to provide your organization with the strongest FIPS foundation now and in the future.
Additional security patches beyond the basic maintenance that comes with Ubuntu ensure all Critical and High CVEs for 28,000 packages are addressed. Kernel livepatch applies security fixes to the live running kernel, ensuring maximum uptime and minimizing operational overhead. Ubuntu Pro FIPS rolls up all the security features Canonical customers enjoy, and enables them automatically with no up front contract required.
Ubuntu Pro FIPS includes Canonical's Ubuntu Advantage Essential offerings for both Infrastructure and Applications such as certification, compliance and hardening profiles including FIPS 140-2, Common Criteria EAL2, CIS and DISA STIG. Security patch coverage expands constantly based on customer priorities and usage patterns.
Ubuntu Pro FIPS is a separate build of Ubuntu certified by the National Institute of Standards and Technology (NIST) with all the additional security capabilities that Canonical provides to enterprise customers including those who operate in regulated environments such as FedRAMP, HIPAA, PCI.
Highlights
- National Institute of Standards and Technology (NIST) certification for the Ubuntu kernel and several security components.
- Canonical's Extended Security Maintenance covers thousands of the most widely deployed packages on Ubuntu. Additionally, kernel livepatch maximizes uptime while providing real-time defense against critical kernel exploits.
- Ubuntu Pro FIPS is backed by a 10-year maintenance commitment from Canonical, including patches for high and critical CVEs for all supported components.
Details
Typical total price
$0.10/hour
Pricing
- ...
Instance type | Product cost/hour | EC2 cost/hour | Total/hour |
---|---|---|---|
t2.nano | $0.002 | $0.006 | $0.008 |
t2.micro AWS Free Tier | $0.002 | $0.012 | $0.014 |
t2.small | $0.002 | $0.023 | $0.025 |
t2.medium | $0.004 | $0.046 | $0.05 |
t2.large | $0.004 | $0.093 | $0.097 |
t2.xlarge | $0.007 | $0.186 | $0.193 |
t2.2xlarge | $0.014 | $0.371 | $0.385 |
t3.nano | $0.004 | $0.005 | $0.009 |
t3.micro AWS Free Tier | $0.004 | $0.01 | $0.014 |
t3.small | $0.004 | $0.021 | $0.025 |
Additional AWS infrastructure costs
Type | Cost |
---|---|
EBS General Purpose SSD (gp2) volumes | $0.10/per GB/month of provisioned storage |
Vendor refund policy
We do not currently support refunds, but you can cancel at any time.
Legal
Vendor terms and conditions
Content disclaimer
Delivery details
64-bit (x86) Amazon Machine Image (AMI)
Amazon Machine Image (AMI)
An AMI is a virtual image that provides the information required to launch an instance. Amazon EC2 (Elastic Compute Cloud) instances are virtual servers on which you can run your applications and workloads, offering varying combinations of CPU, memory, storage, and networking resources. You can launch as many instances from as many different AMIs as you need.
Version release notes
Automated version update for new release
Additional details
Usage instructions
For Ubuntu Cloud Guest it is suggested to manually configure your Security Group/Firewall settings. The 1-Click Security Group opens only port 22 so that you can access your instance via SSH using login 'ubuntu'. If you chose the 1-Click Security Group, you may change it later to enable applications using the AWS Console or API.
Resources
Vendor resources
Support
Vendor support
Please allow 24 hours
AWS infrastructure support
AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.
Similar products
Customer reviews
Broken distro - cannot enable fips-updates
This AMI is broken, as one cannot enable fips-updates. Two problems, one solvable by using apt-key to add a missing repo key, but "ua enable fips-updates" still fails:
The following packages have unmet dependencies:
ubuntu-aws-fips : Depends: libgcrypt20 (>= 1.8.5-5ubuntu1.fips.1.4) but 1.8.5-5ubuntu1.fips.1.1 is to be installed
Depends: libgcrypt20-hmac (>= 1.8.5-5ubuntu1.fips.1.4) but 1.8.5-5ubuntu1.fips.1.1 is to be installed
The Ubuntu Pro FIPS 18.04 AMI works fine.