User Guide


AWS and AWS Marketplace partners offer many solutions for protecting data in AWS. But some applications and data are subject to strict contractual or regulatory requirements for managing and using cryptographic keys. Using an HSM from AWS CloudHSM can help you meet corporate, contractual, and regulatory compliance requirements for data security in the AWS Cloud.

FIPS 140-2

The Federal Information Processing Standard (FIPS) Publication 140-2 is a US government security standard that specifies security requirements for cryptographic modules that protect sensitive information. The HSMs provided by AWS CloudHSM comply with FIPS 140-2 level 3. For more information, see FIPS Compliance on the AWS website.


The Payment Card Industry Data Security Standard (PCI DSS) is a proprietary information security standard administered by the PCI Security Standards Council. The HSMs provided by AWS CloudHSM comply with PCI DSS. For more information, see PCI DSS Compliance on the AWS website.