Enhancing Security and Compliance: AWS Elastic Beanstalk Now Supports FIPS 140-3 Enabled VPC Endpoints
Seattle, WA – August 5, 2025 – Amazon Web Services (AWS) is pleased to announce a significant advancement in the security and compliance capabilities of AWS Elastic Beanstalk, its fully managed platform for deploying and scaling web applications and services. Effective today, AWS Elastic Beanstalk now supports FIPS 140-3 enabled interface VPC endpoints.
This important update allows customers to leverage the Federal Information Processing Standards (FIPS) Publication 140-3, a U.S. government standard for cryptographic modules, when interacting with AWS Elastic Beanstalk through VPC endpoints. This move is designed to further bolster security for sensitive workloads and assist organizations in meeting stringent regulatory and compliance requirements.
Understanding the Significance
FIPS 140-3 compliance is a critical benchmark for many government agencies, defense contractors, and organizations handling sensitive data. By enabling FIPS 140-3 on interface VPC endpoints for Elastic Beanstalk, AWS is providing a more secure pathway for these entities to manage their applications within the AWS cloud.
What are VPC Endpoints?
VPC endpoints, specifically interface endpoints in this context, allow you to privately connect your Virtual Private Cloud (VPC) to supported AWS services without requiring an internet gateway, NAT device, VPN connection, or AWS Direct Connect connection. This private connectivity enhances security by keeping traffic between your VPC and the AWS service within the AWS network.
How This Update Benefits Customers
The integration of FIPS 140-3 enabled interface VPC endpoints for Elastic Beanstalk brings several key benefits to customers:
- Enhanced Security for Sensitive Workloads: For organizations that must adhere to FIPS 140-3 standards, this feature provides a robust solution for securely deploying and managing their Elastic Beanstalk applications. Traffic directed to Elastic Beanstalk via these endpoints will utilize cryptographic modules that have been validated against FIPS 140-3.
- Improved Compliance Posture: This offering will be particularly valuable for customers in regulated industries, such as government, finance, and healthcare, who need to demonstrate compliance with federal security mandates.
- Reduced Attack Surface: By keeping traffic within the AWS network and avoiding the public internet, the attack surface for your Elastic Beanstalk deployments is significantly reduced.
- Streamlined Management: Customers can now manage their Elastic Beanstalk interactions through secure, private endpoints, simplifying network architecture and security configurations.
How to Utilize FIPS 140-3 Enabled VPC Endpoints with Elastic Beanstalk
To take advantage of this new capability, customers can create interface VPC endpoints for Elastic Beanstalk within their VPC. During the endpoint creation process, they will have the option to enable FIPS 140-3 compliance. Once configured, all traffic from within the VPC destined for Elastic Beanstalk via this endpoint will leverage FIPS 140-3 validated cryptographic modules.
AWS remains committed to providing secure and compliant cloud solutions that empower organizations of all types to innovate and grow. This latest enhancement to AWS Elastic Beanstalk underscores that commitment by offering a more secure and compliant pathway for deploying and managing applications, especially for those with stringent security and regulatory requirements.
AWS Elastic Beanstalk now supports FIPS 140-3 enabled interface VPC endpoints
AI has delivered the news.
The answer to the following question is obtained from Google Gemini.
Amazon published ‘AWS Elastic Beanstalk now supports FIPS 140-3 enabled interface VPC endpoints’ at 2025-08-05 17:11. Please write a detailed article about this news in a polite tone with relevant information. Please reply in English with the article only.