AWS govcloud-us documentation change
Summary
Changed markdown link formatting to plain URLs for compliance program references
Security assessment
The changes only modify URL presentation from markdown links to plain text without altering security content. All compliance program descriptions and security requirements remain unchanged. No evidence of vulnerability fixes or security incidents addressed.
Diff
diff --git a/govcloud-us/latest/UserGuide/govcloud-compliance.md b/govcloud-us/latest/UserGuide/govcloud-compliance.md index 71c6b2713..c10a56ae0 100644 --- a//govcloud-us/latest/UserGuide/govcloud-compliance.md +++ b//govcloud-us/latest/UserGuide/govcloud-compliance.md @@ -13 +13 @@ AWS GovCloud (US) gives government customers and their partners the flexibility -The US Federal Government is dedicated to delivering its services to the American people in the most innovative, secure, and cost-efficient fashion. Cloud computing plays a key part in how the federal government can achieve operational efficiencies and innovate on demand to advance their mission across the nation. That is why many federal agencies today are using AWS cloud services to process, store, and transmit federal government data. For more information, see [https://aws.amazon.com/compliance/fedramp](https://aws.amazon.com/compliance/fedramp) +The US Federal Government is dedicated to delivering its services to the American people in the most innovative, secure, and cost-efficient fashion. Cloud computing plays a key part in how the federal government can achieve operational efficiencies and innovate on demand to advance their mission across the nation. That is why many federal agencies today are using AWS cloud services to process, store, and transmit federal government data. For more information, see https://aws.amazon.com/compliance/fedramp @@ -17 +17 @@ The US Federal Government is dedicated to delivering its services to the America -A growing number of military customers are adopting AWS services to process, store, and transmit US Department of Defense (DoD) data. AWS enables defense organizations and their business associates to create secure environments to process, maintain, and store DoD data. For more information, see [https://aws.amazon.com/compliance/dod](https://aws.amazon.com/compliance/dod) +A growing number of military customers are adopting AWS services to process, store, and transmit US Department of Defense (DoD) data. AWS enables defense organizations and their business associates to create secure environments to process, maintain, and store DoD data. For more information, see https://aws.amazon.com/compliance/dod @@ -21 +21 @@ A growing number of military customers are adopting AWS services to process, sto -The Cybersecurity Maturity Model Certification (CMMC) program enhances cyber protection standards for companies in the DIB. It is designed to protect sensitive unclassified information that is shared by the DoD with its contractors and subcontractors. The program incorporates a set of cybersecurity requirements into acquisition programs and provides the DoD increased assurance that contractors and subcontractors are meeting these requirements. For more information, see [https://aws.amazon.com/compliance/cmmc](https://aws.amazon.com/compliance/cmmc) +The Cybersecurity Maturity Model Certification (CMMC) program enhances cyber protection standards for companies in the DIB. It is designed to protect sensitive unclassified information that is shared by the DoD with its contractors and subcontractors. The program incorporates a set of cybersecurity requirements into acquisition programs and provides the DoD increased assurance that contractors and subcontractors are meeting these requirements. For more information, see https://aws.amazon.com/compliance/cmmc @@ -25 +25 @@ The Cybersecurity Maturity Model Certification (CMMC) program enhances cyber pro -AWS GovCloud (US) supports compliance with United States International Traffic in Arms Regulations (ITAR). As a part of managing a comprehensive ITAR compliance program, companies that are subject to ITAR export regulations must control unintended exports by restricting access to protected data to US Persons, and by restricting physical location of protected data to the US. AWS GovCloud (US) provides an environment that is physically located in the US, and access by AWS personnel is limited to US Persons, thereby allowing qualified companies to use AWS to transmit, process, and store protected articles and data subject to ITAR restrictions. For more information, see [https://aws.amazon.com/compliance/itar](https://aws.amazon.com/compliance/itar) +AWS GovCloud (US) supports compliance with United States International Traffic in Arms Regulations (ITAR). As a part of managing a comprehensive ITAR compliance program, companies that are subject to ITAR export regulations must control unintended exports by restricting access to protected data to US Persons, and by restricting physical location of protected data to the US. AWS GovCloud (US) provides an environment that is physically located in the US, and access by AWS personnel is limited to US Persons, thereby allowing qualified companies to use AWS to transmit, process, and store protected articles and data subject to ITAR restrictions. For more information, see https://aws.amazon.com/compliance/itar @@ -29 +29 @@ AWS GovCloud (US) supports compliance with United States International Traffic i -The [CJIS Security Policy](https://www.fbi.gov/services/cjis/cjis-security-policy-resource-center) outlines the "appropriate controls to protect the full lifecycle of CJI (Criminal Justice Information), whether at rest or in transit," irrespective of the underlying information technology model. For more information, see [https://aws.amazon.com/compliance/cjis](https://aws.amazon.com/compliance/cjis) +The [CJIS Security Policy](https://www.fbi.gov/services/cjis/cjis-security-policy-resource-center) outlines the "appropriate controls to protect the full lifecycle of CJI (Criminal Justice Information), whether at rest or in transit," irrespective of the underlying information technology model. For more information, see https://aws.amazon.com/compliance/cjis @@ -33 +33 @@ The [CJIS Security Policy](https://www.fbi.gov/services/cjis/cjis-security-polic -Internal Revenue Service Publication 1075 (IRS Pub 1075) provides guidance for US government agencies and their agents to protect Federal Tax Information (FTI). While the IRS does not publish an official designation or certification for compliance with Pub 1075, AWS supports organizations to protect FTI managed in AWS by aligning our implementations of NIST 800-53 and FedRAMP security controls with the respective IRS Pub 1075 security requirements. For more information, see [https://aws.amazon.com/compliance/irs-1075](https://aws.amazon.com/compliance/irs-1075) +Internal Revenue Service Publication 1075 (IRS Pub 1075) provides guidance for US government agencies and their agents to protect Federal Tax Information (FTI). While the IRS does not publish an official designation or certification for compliance with Pub 1075, AWS supports organizations to protect FTI managed in AWS by aligning our implementations of NIST 800-53 and FedRAMP security controls with the respective IRS Pub 1075 security requirements. For more information, see https://aws.amazon.com/compliance/irs-1075 @@ -37 +37 @@ Internal Revenue Service Publication 1075 (IRS Pub 1075) provides guidance for U -The Federal Information Processing Standard (FIPS) Publication 140-3 is a US and Canadian government standard that specifies the security requirements for cryptographic modules that protect sensitive information. For more information, see [https://aws.amazon.com/compliance/fips](https://aws.amazon.com/compliance/fips) +The Federal Information Processing Standard (FIPS) Publication 140-3 is a US and Canadian government standard that specifies the security requirements for cryptographic modules that protect sensitive information. For more information, see https://aws.amazon.com/compliance/fips @@ -41 +41 @@ The Federal Information Processing Standard (FIPS) Publication 140-3 is a US and -The Authority to Operate (ATO) on AWS Program helps AWS Partners meet their customers’ authorization needs, whether it be architecting, configuring, deploying, or integrating tools and controls. AWS supports businesses globally that need to meet security, privacy, and compliance requirements for healthcare, privacy, national security, and financial sectors. ATO on AWS supports workloads for government organizations such as FedRAMP, FISMA, the RMF, and CMMC in the U.S. For more information, see [https://aws.amazon.com/partners/programs/ato](https://aws.amazon.com/partners/programs/ato) +The Authority to Operate (ATO) on AWS Program helps AWS Partners meet their customers’ authorization needs, whether it be architecting, configuring, deploying, or integrating tools and controls. AWS supports businesses globally that need to meet security, privacy, and compliance requirements for healthcare, privacy, national security, and financial sectors. ATO on AWS supports workloads for government organizations such as FedRAMP, FISMA, the RMF, and CMMC in the U.S. For more information, see https://aws.amazon.com/partners/programs/ato