AWS GovCloud (US)
User Guide

Amazon S3

The following list details the differences for using Amazon Simple Storage Service (Amazon S3) in the AWS GovCloud (US) Region compared to other AWS regions:

  • You cannot do a direct copy of the contents of an Amazon S3 bucket in the AWS GovCloud (US) Region to or from another AWS region.

  • Cross-region replication is not supported in the AWS GovCloud (US) Region.

  • If you use Amazon S3 policies, use the AWS GovCloud (US) ARN identifier. For more information, see Amazon Resource Names (ARNs) in AWS GovCloud (US).

  • In the AWS GovCloud (US) Region, Amazon S3 has three endpoints. If you are processing ITAR-regulated data, use one of the SSL endpoints. If you have FIPS requirements, use the FIPS 140-2 endpoint ( You can access VPC endpoints for Amazon S3 over both the FIPS and non-FIPS endpoints. For a list of AWS GovCloud (US) endpoints, see AWS GovCloud (US) Endpoints.

  • Amazon S3 bucket names are unique to the AWS GovCloud (US) Region. Bucket names in the AWS GovCloud (US) Region are not shared across other AWS regions.

  • Amazon S3 Transfer Acceleration is not available in the AWS GovCloud (US) Region.

For more information about Amazon S3, see the Amazon Simple Storage Service documentation.

ITAR Boundary

The ITAR boundary defines where customers are allowed to store ITAR-regulated data for this service in the AWS GovCloud (US) Region. You must comply with the boundaries in order to maintain ITAR compliance. If you do not have any ITAR-regulated data in the AWS GovCloud (US) Region, this section does not apply to you. The following information identifies the ITAR boundary for this service:

ITAR-Regulated Data Permitted ITAR-Regulated Data Not Permitted
  • All data entered and stored in Amazon S3 buckets can contain ITAR-regulated data.

  • Amazon S3 metadata is not permitted to contain ITAR-regulated data. This metadata includes all configuration data that you enter when creating and maintaining your Amazon S3 buckets, such as bucket names.

  • Do not enter ITAR-regulated data in the following fields:

    • Resource tags

On this page: