AWS CloudHSM
User Guide

Compliance

AWS and AWS Marketplace partners offer many solutions for protecting data in AWS. However, some applications and data are subject to strict contractual or regulatory requirements for managing and using cryptographic keys. Relying on a FIPS-validated HSM can help you meet corporate, contractual, and regulatory compliance requirements for data security in the AWS Cloud. You can review the FIPS-approved security policies for the HSMs provided by AWS CloudHSM below.

FIPS Validation for Hardware Used by CloudHSM

Certificate #3254 was issued on August 2, 2018.

Certificate #2850 was issued on February 27, 2017.

FIPS 140-2 Compliance

The Federal Information Processing Standard (FIPS) Publication 140-2 is a US government security standard that specifies security requirements for cryptographic modules that protect sensitive information. The HSMs provided by AWS CloudHSM comply with FIPS 140-2 level 3.

PCI DSS Compliance

The Payment Card Industry Data Security Standard (PCI DSS) is a proprietary information security standard administered by the PCI Security Standards Council. The HSMs provided by AWS CloudHSM comply with PCI DSS.