Tag: FIPS

This post distills how one Amazon Web Services (AWS) customer in the defense and aerospace industry interpreted the U.S. International Traffic in Arms Regulations (ITAR) and concluded that U.S. commercial AWS Regions could support their export-controlled workloads, including AI workloads, when configured appropriately.

Federal Information Processing Standard (FIPS) 140-2 specifies the security requirements for cryptographic modules that protect sensitive information. It is the current United States and Canadian government standard, and is applicable to systems that are required to be compliant with Federal Information Security Management Act (FISMA) or Federal Risk and Authorization Management Program (FedRAMP). In this blog, we demonstrate how to enable FIPS mode in Amazon Linux 2 and verify that unauthorized cryptographic functions are not being used in OpenSSL or the OpenSSH server.