AWS GovCloud (US) User Guide
AWS GovCloud (US) User Guide

AWS Artifact

AWS Artifact provides on-demand downloads of AWS security and compliance documents, such as AWS ISO certifications, Payment Card Industry (PCI), and Service Organization Control (SOC) reports. You can submit the security and compliance documents (also known as audit artifacts) to your auditors or regulators to demonstrate the security and compliance of the AWS infrastructure and services that you use. You can also use AWS Artifact to review, accept, and track the status of AWS agreements such as the Business Associate Addendum (BAA). With AWS Artifact, you can accept agreements with AWS and designate AWS accounts that can legally process restricted information.

This service has no differences between AWS GovCloud (US) Regions and the standard AWS Regions.

For more information about AWS Artifact, see the AWS Artifact documentation.

ITAR Boundary

AWS GovCloud (US) has an ITAR boundary, which defines where customers are allowed to store ITAR-controlled data for this service in AWS GovCloud (US) Regions. To maintain ITAR compliance, you must place ITAR-controlled data on the applicable part of the ITAR boundary. If you do not have any ITAR-controlled data in AWS GovCloud (US) Regions, this section does not apply to you. The following information identifies the ITAR boundary for this service:

ITAR-Regulated Data Permitted ITAR-Regulated Data Not Permitted
  • Customer's code

  • Environment variable

  • Role

  • VPC

  • KMS key

Do not enter ITAR-regulated data in the following console fields:

  • Function name

  • Description

  • DLQ data (can be exported through Amazon SNS and Amazon SQS)

  • Memory

  • Timeout

  • Runtime

  • Role name for service principals

  • Aliases

On this page: