AWS GovCloud (US-West) User Guide
AWS GovCloud (US-West) User Guide

What Is AWS GovCloud (US-West)?

AWS GovCloud (US-West) is an isolated AWS Region designed to allow U.S. government agencies and customers to move sensitive workloads into the cloud by addressing their specific regulatory and compliance requirements. The AWS GovCloud (US-West) Region adheres to U.S. International Traffic in Arms Regulations (ITAR) requirements.

You can run workloads that contain all categories of Controlled Unclassified Information (CUI) data and government-oriented, publicly available data in the AWS GovCloud (US-West) Region. The AWS GovCloud (US-West) Region supports the management of regulated data by offering the following features:

  • Restricting physical and logical administrative access to U.S. citizens only.

  • Providing FIPS 140-2 endpoints. (For details on each service, see the AWS GovCloud (US-West) Endpoints section.)

Depending on your requirements, you can also run unclassified workloads in the AWS GovCloud (US-West) Region and use the unique capabilities of this region.


AWS manages physical and logical access controls for the AWS boundary. However, the overall security of your workloads is a shared responsibility, where you are responsible for controlling user access to content in your AWS GovCloud (US-West) account.

The AWS GovCloud (US-West) User Guide provides details on setting up your AWS GovCloud (US-West) account, identifies the differences between the AWS GovCloud (US-West) Region and other AWS Regions, and defines usage guidelines for processing ITAR-regulated data within the AWS GovCloud (US-West) Region. This guide assumes that you are familiar with Amazon Web Services (AWS).

Additional resources: