Compliant Framework for Federal and DoD Workloads in AWS GovCloud (US)

This AWS Solution is no longer available for new deployments

If you're deploying a new environment...

We encourage you to use the Landing Zone Accelerator on AWS solution, which incorporates the features of the Compliant Framework for Federal and DoD Workloads in AWS GovCloud (US) solution, plus additional AWS best practices and global compliance frameworks.

If you have active environments based on this AWS Solution...

You can continue to use this solution. AWS will no longer provide updates to the source code, such as integrating new AWS services and features or modernizing AWS Lambda toolchains. As a customer, you maintain full control of your content that you upload to the AWS services under your AWS account. Upon your initial solution deployment, a point-in-time replication of all source files runs from the public open-source into an AWS CodeCommit repository within your Management (Root) account.

  • If your existing environment based on this solution hosts production workloads, or you have an active authority to operate (ATO) and your workloads are mostly static, you can continue to use this solution.
  • If you recently deployed environments based on this solution, we recommend deploying a new environment using the Landing Zone Accelerator on AWS solution. The United States (US) Federal and Department of Defense (DoD) section of that solution’s implementation guide provides details on the resulting architecture and AWS GovCloud (US) Region-specific deployment instructions.
  • If you recently deployed environments using the Compliant Framework for Federal and DoD Workloads in AWS GovCloud (US) solution that have also generated architectural diagrams for an interim authorization to test (IATT), you will still have valid diagrams.

 

Overview

The Landing Zone Accelerator on AWS solution evolved from the Compliant Framework for Federal and DoD Workloads in AWS GovCloud (US) solution.

 

Similarities

  • Both solutions configure AWS resources in a multi-account environment using the AWS Cloud Development Kit (AWS CDK).
  • The Compliant Framework for Federal and DoD Workloads in AWS GovCloud (US) solution deploys a Defense Information Systems Agency (DISA)-based Secure Cloud Computing Architecture (SCCA) within an AWS GovCloud (US) Region.
  • The Landing Zone Accelerator on AWS solution deploys an equivalent DISA-based SCCA when you use the AWS GovCloud (US) Region-specific instructions.

 

Benefits

Dedicated engineering team supporting the open-source project.

Support for standard and AWS GovCloud (US) Regions.

Support for AWS Secret and AWS Top Secret Regions in the United States.

AWS Support based on your support plan.

Was this page helpful?