Compliant Framework for Federal and DoD Workloads in AWS GovCloud (US)

This AWS Solution is no longer available for new deployments.

If you're deploying a new environment...

We encourage you to use the Landing Zone Accelerator on AWS solution, which incorporates the features of the Compliant Framework for Federal and DoD Workloads in AWS GovCloud (US) solution, plus additional AWS best practices and global compliance frameworks.

If you have active environments based on this solution...

You can continue to use this solution. AWS will no longer provide updates to the source code, such as integrating new AWS services and features or modernizing AWS Lambda toolchains. As a customer, you maintain full control of your content that you upload to the AWS services under your AWS account. Upon your initial solution deployment, a point-in-time replication of all source files executed from the public open-source into a AWS CodeCommit repository within your Management (Root) account.

  • If your existing environment based on this solution hosts production workloads, or you have an active ATO and your workloads are mostly static, you can continue to use this solution.
  • If you recently deployed environments based on this solution, we recommend deploying a new environment using the Landing Zone Accelerator on AWS solution. The United States (US) Federal and Department of Defense (DoD) section of that solution’s implementation guide provides details on the resulting architecture and AWS GovCloud (US) Region-specific deployment instructions.
  • If you recently deployed environments using the Compliant Framework for Federal and DoD Workloads in AWS GovCloud (US) solution that have also generated architectural diagrams for an interim authorization to test (IATT), you will still have valid diagrams.
     

What is Landing Zone Accelerator on AWS?

The Landing Zone Accelerator on AWS solution evolved from the Compliant Framework for Federal and DoD Workloads in AWS GovCloud (US) solution.

How are these solutions similar?

  • Both solutions configure AWS resources in a multi-account environment using the AWS Cloud Development Kit (AWS CDK).
  • The Compliant Framework for Federal and DoD Workloads in AWS GovCloud (US) solution deploys a Defense Information Systems Agency (DISA)-based Secure Cloud Computing Architecture (SCCA) within an AWS GovCloud (US) Region.
  • The Landing Zone Accelerator on AWS solution deploys an equivalent DISA-based SCCA when you use the AWS GovCloud (US) Region-specific instructions.

What are the benefits of using the Landing Zone Accelerator on AWS solution?

  • Dedicated engineering team supporting the open-source project
  • Support for standard and AWS GovCloud (US) Regions
  • Support for AWS Secret and AWS Top Secret Regions in the United States
  • AWS Support based on your support plan
  • Ability to use AWS Managed Services (AMS) Operations on Demand
     
Build icon
Deploy an AWS Solution yourself

Browse our library of AWS Solutions to get answers to common architectural problems.

Learn more 
Find an APN partner
Find an AWS Partner Solution

Find AWS Partners to help you get started.

Explore icon
Explore Guidance

Find prescriptive architectural diagrams, sample code, and technical content for common use cases.

Learn more