Beta
×

Welcome to the Slashdot Beta site -- learn more here. Use the link in the footer or click here to return to the Classic version of Slashdot.

Thank you!

Before you choose to head back to the Classic look of the site, we'd appreciate it if you share your thoughts on the Beta; your feedback is what drives our ongoing development.

Beta is different and we value you taking the time to try it out. Please take a look at the changes we've made in Beta and  learn more about it. Thanks for reading, and for making the site better!

Amazon Launches 'AWS GovCloud'

Soulskill posted more than 3 years ago | from the uptime-is-not-a-mandate dept.

Cloud 26

wiredmikey writes "Amazon Web Services today announced 'AWS GovCloud,' a new AWS Region designed to allow U.S. government agencies and contractors to move IT applications and systems into the cloud by addressing their specific regulatory and compliance requirements. Previously, government agencies with data subject to Compliance regulations such as the International Trade and Arms Regulation (ITAR), which governs how organizations manage and store defense-related data, were unable to process and store data in the cloud that the federal government mandated be accessible only by U.S. persons. AWS said that it will screen customers prior to providing access to the AWS GovCloud, helping to ensure customers are 'U.S. Persons,' not subject to export restrictions."

Sorry! There are no comments related to the filter you selected.

Fuck Amazon (-1)

Anonymous Coward | more than 3 years ago | (#37114332)

I bet the Jews did this.

Re:Fuck Amazon (-1)

Anonymous Coward | more than 3 years ago | (#37114362)

Given the stereotype of Jews (which I am not saying is always accurate), they probably really did.

Now, who here ever thought of Amazon as a defense contractor? I know I didn't, and honestly, it seems a little distasteful.

yep (-1)

Anonymous Coward | more than 3 years ago | (#37114416)

"by addressing their specific regulatory and compliance requirements."

aka staking the list so all the mexicans go first in traffic court

A curse... (-1, Troll)

CursedAss (2439170) | more than 3 years ago | (#37114440)

Don't read this... it is a curse...

In 2007, a little boy named Timothy was standing in the hallway inside of his house. He then turned towards the place where the hallway connects with his mom's bedroom and spotted a box of graham crackers. This made him realize that there was a new rule in his house: anyone who walks past the box of graham crackers must allow the large black man standing near it to fuck their ass! Then, for some reason, he tried to run past the box of graham crackers and was grabbed by the large black man. The large black man looked at his bootyass naked ass and screamed, "There is no hole!" Timothy then escaped and ran into his mom's closet, and the black man followed. The black man then bumped into a cabbage patch kid in the closet and angered it. Timothy managed to escape outside while the black man's ass was turned into a rumblehouse. Then, Timothy noticed that a close friend of his had his car parked in front of his house and was signaling him to get inside. Timothy did so, and the car took off down the road at great speed while Timothy explained his situation to his friend.

While Timothy was celebrating the fact that he escaped, the car began slowing down; his friend then said, "Now, now, now's the time right now!"

Timothy asked him what he was doing. His friend grinned evilly and replied, "What slowness can I offer you? I'm copyright owner Madow!" and turned into an old man wearing a butler's outfit.

The car continued to slow down, and the cabbage patch kid was catching up to them. Timothy then got out of the car (since he could run faster than it was moving) and began running. However, what seemed to be an invisible entity lifted him into the air and thrusted him ass-first around the world at a speed greater than the speed of light! Eventually, Timothy's bootyass naked ass crashed directly into the very cabbage patch kid he was trying to escape from! The cabbage patch kid was then sucked into Timothy's ass as if his ass was a spaghetti noodle (just like grandma)! At that point, his ass became a bouncehouse for the cabbage patch kid, and major tickle was inflicted upon it!

Now that you have read this, the very same cabbage patch kid will get sucked right up your ass as if your ass is a spaghetti noodle, and major tickle will be inflicted upon it!

You can prevent this by doing the following: post this comment in three different threads.

Re:A curse... (0)

Anonymous Coward | more than 3 years ago | (#37114694)

TL;DR.

Coming soon... (1)

mescobal (1516701) | more than 3 years ago | (#37114442)

Skynet!!!!

No FISMA. (1)

chill (34294) | more than 3 years ago | (#37114518)

Despite the vague phrasing of the article, AWS GovCloud hasn't yet received any FISMA certification which means they're going to have a very hard time getting anyone in gov't to use them seriously.

Re:No FISMA. (2)

wiredmikey (1824622) | more than 3 years ago | (#37114914)

According to Amazon Web Services, and as mentioned in the article, GovCloud "supports existing AWS security controls and certifications such as FISMA, SAS-70, ISO 27001" -- So it seems as though you are incorrect on the fact that GovCloud hasn't received FIMSA certification.

Re:No FISMA. (1)

SmurfButcher Bob (313810) | more than 3 years ago | (#37115248)

Not sure. But I do know that "supports" != "has".

Re:No FISMA. (1)

Wingman 5 (551897) | more than 3 years ago | (#37115384)

They say "supports" because it is up to the developer to have the application that uses the GovCloud be certified. All they are saying is "Our services will not prevent you from writing applications that can fulfill these certifications"

Re:No FISMA. (1)

chill (34294) | more than 3 years ago | (#37117324)

Not true. As defined by NIST 800-60 and FIPS 199, you aren't talking about an application, but rather an "information system". NIST 800-53 defines minimum security requirement.

The system includes physical security, physical computers, etc. and not just a software application. The equipment, location and methods used by AWS would need to be evaluated as part of these information systems.

While that can't be done without the application, there are parts of 800-53's minimum security requirements that would apply exclusively to the components provided by AWS.

Re:No FISMA. (1)

dlgeek (1065796) | more than 3 years ago | (#37115912)

FISMA AWS enables U.S. government agency customers to achieve and sustain compliance with the Federal Information Security Management Act (FISMA). AWS has been certified and accredited to operate at the FISMA-Low level. AWS has also completed the control implementation and successfully passed the independent security testing and evaluation required to operate at the FISMA-Moderate level. AWS is currently pursuing a certification and accreditation to operate at the FISMA-Moderate level from government agencies.

--Amazon Web Services: Risk and Compliance [cloudfront.net]

Re:No FISMA. (1)

chill (34294) | more than 3 years ago | (#37117354)

Thanks. I had only read the parent to that [amazon.com] and hadn't yet dug into the whitepaper.

Your quote confirms what I suspected might be the case: FISMA low with medium being pursued. Interesting...

Tag (0)

Anonymous Coward | more than 3 years ago | (#37114588)

The tag #TRAP is needed on this.

As for regular US citizens wanting such... (1)

sethstorm (512897) | more than 3 years ago | (#37114642)

This would be nice if this was available to US citizens as well. It would provide some certainty to where one's own data resides, and that they're not outside the US's jurisdiction. That, and you wouldn't have much more than geographic placement.

Re:As for regular US citizens wanting such... (2)

MBCook (132727) | more than 3 years ago | (#37114920)

For S3, you have to specify the home region of your storage. As far as I know, your storage is not copied in the other regions, that's what CloudFront is for. I believe EC2 is also setup in regions and your VM stays where you created it.

Why do you think that signing up for Amazon's cloud means your data will go overseas?

Re:As for regular US citizens wanting such... (1)

SmurfButcher Bob (313810) | more than 3 years ago | (#37115262)

> This would be nice if this was available to US citizens as well

No need. I can already kick the power cord out of the wall on my own stuff, any time I want.

Re:As for regular US citizens wanting such... (0)

Anonymous Coward | more than 3 years ago | (#37115734)

Did you ever hear of google docs?

Re:As for regular US citizens wanting such... (1)

Braino420 (896819) | more than 3 years ago | (#37118220)

It would provide some certainty to where one's own data resides, and that they're not outside the US's jurisdiction.

This isn't something unique to GovCloud; you can (must?) set your s3 buckets/ec2 instances up in a specific availability zone, which determines the location of your data.

Other than the restriction to US persons and the requirement that EC2 instances are launched within a VPC, we didn't make any other changes to our usual operational systems or practices. In other words, the security profile of the existing Regions was already up to the task of protecting important processing and data. In effect, we simply put a gateway at the door -- "Please show your passport or green card before entering."

-AWS Blog [typepad.com]

For the government.... (1)

desertfool (21262) | more than 3 years ago | (#37114670)

That wants downtime and lost data in the EC2 cloud.

You must pay attention to supporting documents (-1)

Anonymous Coward | more than 3 years ago | (#37115106)

You must pay attention to supporting documents
The north face sale [onsalethenorthface.org] his section will require you to include your personal information such as name and contact information, in addition to mortgage information, such as account number of the problem is that the total owedYou must pay attention to supporting documents
The north face sale [onsalethenorthface.org] his section will require you to include your personal information such as name and contact information, in addition to mortgage information, such as account number of the problem is that the total owedYou must pay attention to supporting documents
The north face sale [onsalethenorthface.org] his section will require you to include your personal information such as name and contact information, in addition to mortgage information, such as account number of the problem is that the total owedYou must pay attention to supporting documents
The north face sale [onsalethenorthface.org] his section will require you to include your personal information such as name and contact information, in addition to mortgage information, such as account number of the problem is that the total owedYou must pay attention to supporting documents
The north face sale [onsalethenorthface.org] his section will require you to include your personal information such as name and contact information, in addition to mortgage information, such as account number of the problem is that the total owed

And Then ... (3, Insightful)

StormyMonday (163372) | more than 3 years ago | (#37115290)

... Outsource support and system management to Mumbai. What could possibly go wrong?

amazon is a bunch of nazis (0)

Anonymous Coward | more than 3 years ago | (#37115530)

is a bunch of nazis - trying to block moneis to wikileaks.... shame on you

How about all other non-US Governments? (0)

Anonymous Coward | more than 3 years ago | (#37116430)

Due to the patriot act all cloud-offerings from US-based companies are off-limits for government use. (Because the cloud-provider by law have to give any data to US government if requested. This is in particular in conflict with EU law and i assume other countries will have similar issues.) Is the only possible solution to this to move the company HQ out of US?

How Amusing! (1)

Anonymous Coward | more than 3 years ago | (#37117650)

Honeypot or target painter? You decide.

C&A - NIST SP800-53 (1)

Eol1 (208982) | more than 3 years ago | (#37121808)

No, what is stopping the government from moving to the cloud is crazy NIST requirements in some of the archaic parts of NIST SP800-53. If they can give me a fully certified compliant system you would seem movement in droves.

Check for New Comments
Slashdot Login

Need an Account?

Forgot your password?