An organization is making software for the CIA in USA. CIA agreed to host the application on
AWS but in a secure environment. The organization is thinking of hosting the application on the
AWS GovCloud region. Which of the below mentioned difference is not correct when the
organization is hosting on the AWS GovCloud in comparison with the AWS standard region?
A.
The billing for the AWS GovCLoud will be in a different account than the Standard AWS account.
B.
GovCloud region authentication is isolated from Amazon.com.
C.
Physical and logical administrative access only to U.S. persons.
D.
It is physically isolated and has logical network isolation from all the other regions.
Explanation:
AWS GovCloud (US) is an isolated AWS region designed to allow U.S. government agencies and
customers to move sensitive workloads into the cloud by addressing their specific regulatory and
compliance requirements. The AWS GovCloud (US) Region adheres to the U.S. International
Traffic in Arms Regulations (ITAR) requirements. It has added advantages, such as:
Restricting physical and logical administrative access to U.S. persons only There will be a
separate AWS GovCloud (US) credentials, such as access key and secret access key than the
standard AWS account
The user signs in with the IAM user name and password
The AWS GovCloud (US) Region authentication is completely isolated from Amazon.com If the
organization is planning to host on EC2 in AWS GovCloud then it will be billed to standard AWS
account of organization since AWS GovCloud billing is linked with the standard AWS account and
is not be billed separately
http://docs.aws.amazon.com/govcloud-us/latest/UserGuide/whatis.html