{"id":3069,"date":"2019-08-31T11:44:39","date_gmt":"2019-08-31T11:44:39","guid":{"rendered":"https:\/\/www.testpreptraining.com\/tutorial\/?page_id=3069"},"modified":"2020-05-01T11:35:11","modified_gmt":"2020-05-01T11:35:11","slug":"compliance-on-aws-2","status":"publish","type":"page","link":"https:\/\/www.testpreptraining.ai\/tutorial\/aws-certified-security-specialty\/compliance-on-aws-2\/","title":{"rendered":"Compliance On AWS"},"content":{"rendered":"\n<p>Multiple compliance programs are complied to by Amazon. Few important are listed<\/p>\n\n\n\n<ul class=\"wp-block-list\"><li>DoD 5220.22-M or NIST 800-88 techniques used to destroy data during decommissioning process<\/li><li>magnetic storage devices not in use and to be decommission, are sent for physical destruction after being degaussed<\/li><li>There is a separation in AWS\u2019s internal corporate network and production network for AWS\u2019s customers<\/li><li>AWS provides protection against DDOS, Man in the Middle attacks, Ip Spoofing, Port Scanning and Packet Sniffing by other tenants<\/li><li>Different instances run on the same physical hardware and are isolated from each other via the Xen hypervisor<\/li><li>Instances running in AWS, do not have access to other instances running in same machine or location<\/li><li>Instance access is limited to allocated resources only<\/li><li>Any traffic between instances is regarded being similar to traffic for public internet<\/li><li>No instance can access the bare metal hardware like disk devices but only virtual disks access is provided<\/li><li>After usage and deallocation of storage on disk drive by one instance, each block of storage is reset by AWS, so that no data can be retrieved by any consecutive customer\u2019s instance<\/li><li>Memory allocated to guests is scrubbed or set to 0 by the hypervisor when unallocated from a guest<\/li><li>Unallocated memory is NEVER returned to the pool of free memory until memory scrubbing is done<\/li><li>Firewalls in hypervisor layer, between physical network interface and instances virtual interfaces<\/li><li>All network packets must pass through the firewall layer<\/li><li>AWS lists all of their certifications and compliance reports on an annual basis<\/li><\/ul>\n\n\n\n<p>AWS provides alignment with security best practices and a variety of IT security standards, including:<\/p>\n\n\n\n<ul class=\"wp-block-list\"><li>SOC 1\/SSAE 16\/ISAE 3402 (formerly SAS 70)<\/li><li>SOC 2<\/li><li>SOC 3<\/li><li>FISMA, DIACAP, and FedRAMP<\/li><li>DOD CSM Levels 1-5<\/li><li>PCI DSS Level 1<\/li><li>ISO 9001 \/ ISO 27001<\/li><li>ITAR<\/li><li>FIPS 140-2<\/li><li>MTCS Level 3<\/li><\/ul>\n\n\n\n<p>Also, industry-specific standards, including:<\/p>\n\n\n\n<ul class=\"wp-block-list\"><li>Criminal Justice Information Services (CJIS)<\/li><li>Cloud Security Alliance (CSA)<\/li><li>Family Educational Rights and Privacy Act (FERPA)<\/li><li>Health Insurance Portability and Accountability Act (HIPAA)<\/li><li>Motion Picture Association of America (MPAA)<\/li><\/ul>\n\n\n\n<figure class=\"wp-block-image\"><img loading=\"lazy\" decoding=\"async\" width=\"596\" height=\"400\" src=\"https:\/\/www.testpreptraining.ai\/tutorial\/wp-content\/uploads\/2019\/09\/image-160-596x400.png\" alt=\"\" class=\"wp-image-3765\" srcset=\"https:\/\/www.testpreptraining.ai\/tutorial\/wp-content\/uploads\/2019\/09\/image-160-596x400.png 596w, https:\/\/www.testpreptraining.ai\/tutorial\/wp-content\/uploads\/2019\/09\/image-160.png 624w\" sizes=\"auto, (max-width: 596px) 100vw, 596px\" \/><\/figure>\n","protected":false},"excerpt":{"rendered":"<p>Multiple compliance programs are complied to by Amazon. Few important are listed DoD 5220.22-M or NIST 800-88 techniques used to destroy data during decommissioning process magnetic storage devices not in use and to be decommission, are sent for physical destruction after being degaussed There is a separation in AWS\u2019s internal corporate network and production network&#8230;<\/p>\n","protected":false},"author":1,"featured_media":0,"parent":2474,"menu_order":35,"comment_status":"closed","ping_status":"closed","template":"","meta":{"_acf_changed":false,"footnotes":""},"categories":[2],"tags":[7,299],"class_list":["post-3069","page","type-page","status-publish","hentry","category-amazon-aws","tag-aws","tag-compliance-on-aws"],"acf":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v22.1 - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>Compliance On AWS - Testprep Training Tutorials<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.testpreptraining.ai\/tutorial\/aws-certified-security-specialty\/compliance-on-aws-2\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Compliance On AWS - Testprep Training Tutorials\" \/>\n<meta property=\"og:description\" content=\"Multiple compliance programs are complied to by Amazon. Few important are listed DoD 5220.22-M or NIST 800-88 techniques used to destroy data during decommissioning process magnetic storage devices not in use and to be decommission, are sent for physical destruction after being degaussed There is a separation in AWS\u2019s internal corporate network and production network...\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.testpreptraining.ai\/tutorial\/aws-certified-security-specialty\/compliance-on-aws-2\/\" \/>\n<meta property=\"og:site_name\" content=\"Testprep Training Tutorials\" \/>\n<meta property=\"article:modified_time\" content=\"2020-05-01T11:35:11+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.testpreptraining.ai\/tutorial\/wp-content\/uploads\/2019\/09\/image-160-596x400.png\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data1\" content=\"2 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\/\/www.testpreptraining.ai\/tutorial\/aws-certified-security-specialty\/compliance-on-aws-2\/\",\"url\":\"https:\/\/www.testpreptraining.ai\/tutorial\/aws-certified-security-specialty\/compliance-on-aws-2\/\",\"name\":\"Compliance On AWS - Testprep Training Tutorials\",\"isPartOf\":{\"@id\":\"https:\/\/www.testpreptraining.ai\/tutorial\/#website\"},\"datePublished\":\"2019-08-31T11:44:39+00:00\",\"dateModified\":\"2020-05-01T11:35:11+00:00\",\"breadcrumb\":{\"@id\":\"https:\/\/www.testpreptraining.ai\/tutorial\/aws-certified-security-specialty\/compliance-on-aws-2\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/www.testpreptraining.ai\/tutorial\/aws-certified-security-specialty\/compliance-on-aws-2\/\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/www.testpreptraining.ai\/tutorial\/aws-certified-security-specialty\/compliance-on-aws-2\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/www.testpreptraining.ai\/tutorial\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"AWS Certified Security Specialty\",\"item\":\"https:\/\/www.testpreptraining.ai\/tutorial\/aws-certified-security-specialty\/\"},{\"@type\":\"ListItem\",\"position\":3,\"name\":\"Compliance On AWS\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/www.testpreptraining.ai\/tutorial\/#website\",\"url\":\"https:\/\/www.testpreptraining.ai\/tutorial\/\",\"name\":\"Testprep Training Tutorials\",\"description\":\"\",\"publisher\":{\"@id\":\"https:\/\/www.testpreptraining.ai\/tutorial\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/www.testpreptraining.ai\/tutorial\/?s={search_term_string}\"},\"query-input\":\"required name=search_term_string\"}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/www.testpreptraining.ai\/tutorial\/#organization\",\"name\":\"Testprep Training\",\"url\":\"https:\/\/www.testpreptraining.ai\/tutorial\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.testpreptraining.ai\/tutorial\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/www.testpreptraining.com\/tutorial\/wp-content\/uploads\/2020\/07\/tpt-logo-6.png\",\"contentUrl\":\"https:\/\/www.testpreptraining.com\/tutorial\/wp-content\/uploads\/2020\/07\/tpt-logo-6.png\",\"width\":583,\"height\":153,\"caption\":\"Testprep Training\"},\"image\":{\"@id\":\"https:\/\/www.testpreptraining.ai\/tutorial\/#\/schema\/logo\/image\/\"}}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Compliance On AWS - Testprep Training Tutorials","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.testpreptraining.ai\/tutorial\/aws-certified-security-specialty\/compliance-on-aws-2\/","og_locale":"en_US","og_type":"article","og_title":"Compliance On AWS - Testprep Training Tutorials","og_description":"Multiple compliance programs are complied to by Amazon. Few important are listed DoD 5220.22-M or NIST 800-88 techniques used to destroy data during decommissioning process magnetic storage devices not in use and to be decommission, are sent for physical destruction after being degaussed There is a separation in AWS\u2019s internal corporate network and production network...","og_url":"https:\/\/www.testpreptraining.ai\/tutorial\/aws-certified-security-specialty\/compliance-on-aws-2\/","og_site_name":"Testprep Training Tutorials","article_modified_time":"2020-05-01T11:35:11+00:00","og_image":[{"url":"https:\/\/www.testpreptraining.ai\/tutorial\/wp-content\/uploads\/2019\/09\/image-160-596x400.png"}],"twitter_card":"summary_large_image","twitter_misc":{"Est. reading time":"2 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/www.testpreptraining.ai\/tutorial\/aws-certified-security-specialty\/compliance-on-aws-2\/","url":"https:\/\/www.testpreptraining.ai\/tutorial\/aws-certified-security-specialty\/compliance-on-aws-2\/","name":"Compliance On AWS - Testprep Training Tutorials","isPartOf":{"@id":"https:\/\/www.testpreptraining.ai\/tutorial\/#website"},"datePublished":"2019-08-31T11:44:39+00:00","dateModified":"2020-05-01T11:35:11+00:00","breadcrumb":{"@id":"https:\/\/www.testpreptraining.ai\/tutorial\/aws-certified-security-specialty\/compliance-on-aws-2\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.testpreptraining.ai\/tutorial\/aws-certified-security-specialty\/compliance-on-aws-2\/"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/www.testpreptraining.ai\/tutorial\/aws-certified-security-specialty\/compliance-on-aws-2\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.testpreptraining.ai\/tutorial\/"},{"@type":"ListItem","position":2,"name":"AWS Certified Security Specialty","item":"https:\/\/www.testpreptraining.ai\/tutorial\/aws-certified-security-specialty\/"},{"@type":"ListItem","position":3,"name":"Compliance On AWS"}]},{"@type":"WebSite","@id":"https:\/\/www.testpreptraining.ai\/tutorial\/#website","url":"https:\/\/www.testpreptraining.ai\/tutorial\/","name":"Testprep Training Tutorials","description":"","publisher":{"@id":"https:\/\/www.testpreptraining.ai\/tutorial\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.testpreptraining.ai\/tutorial\/?s={search_term_string}"},"query-input":"required name=search_term_string"}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.testpreptraining.ai\/tutorial\/#organization","name":"Testprep Training","url":"https:\/\/www.testpreptraining.ai\/tutorial\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.testpreptraining.ai\/tutorial\/#\/schema\/logo\/image\/","url":"https:\/\/www.testpreptraining.com\/tutorial\/wp-content\/uploads\/2020\/07\/tpt-logo-6.png","contentUrl":"https:\/\/www.testpreptraining.com\/tutorial\/wp-content\/uploads\/2020\/07\/tpt-logo-6.png","width":583,"height":153,"caption":"Testprep Training"},"image":{"@id":"https:\/\/www.testpreptraining.ai\/tutorial\/#\/schema\/logo\/image\/"}}]}},"_links":{"self":[{"href":"https:\/\/www.testpreptraining.ai\/tutorial\/wp-json\/wp\/v2\/pages\/3069","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.testpreptraining.ai\/tutorial\/wp-json\/wp\/v2\/pages"}],"about":[{"href":"https:\/\/www.testpreptraining.ai\/tutorial\/wp-json\/wp\/v2\/types\/page"}],"author":[{"embeddable":true,"href":"https:\/\/www.testpreptraining.ai\/tutorial\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.testpreptraining.ai\/tutorial\/wp-json\/wp\/v2\/comments?post=3069"}],"version-history":[{"count":5,"href":"https:\/\/www.testpreptraining.ai\/tutorial\/wp-json\/wp\/v2\/pages\/3069\/revisions"}],"predecessor-version":[{"id":5143,"href":"https:\/\/www.testpreptraining.ai\/tutorial\/wp-json\/wp\/v2\/pages\/3069\/revisions\/5143"}],"up":[{"embeddable":true,"href":"https:\/\/www.testpreptraining.ai\/tutorial\/wp-json\/wp\/v2\/pages\/2474"}],"wp:attachment":[{"href":"https:\/\/www.testpreptraining.ai\/tutorial\/wp-json\/wp\/v2\/media?parent=3069"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.testpreptraining.ai\/tutorial\/wp-json\/wp\/v2\/categories?post=3069"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.testpreptraining.ai\/tutorial\/wp-json\/wp\/v2\/tags?post=3069"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}