U.S. flag   An official website of the United States government
Dot gov

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Https

Secure .gov websites use HTTPS
A lock (Dot gov) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.

CIS AWS End User Compute Services Benchmark 1.1.0 Checklist Details (Checklist Revisions)

Supporting Resources:

Target:

Target CPE Name
Amazon Web Services cpe:/a:amazon:web_services:- (View CVEs)

Checklist Highlights

Checklist Name:
CIS AWS End User Compute Services Benchmark
Checklist ID:
1104
Version:
1.1.0
Type:
Compliance
Review Status:
Final
Authority:
Third Party: Center for Internet Security (CIS)
Original Publication Date:
09/08/2023

Checklist Summary:

his document provides prescriptive guidance for configuring security options for the services within End User Computing category in AWS. This Benchmark is intended to be used in conjunction with the CIS Amazon Web Services Foundations Benchmark. For more information about this approach see the Introduction section of this document. The specific AWS Services in scope for this document include: Amazon WorkSpaces Amazon WorkDocs Amazon AppStream 2.0 Amazon WorkLink To obtain the latest version of this guide, please visit http://benchmarks.cisecurity.org. If you have questions, comments, or have identified ways to improve this guide, please write us at benchmarkinfo@cisecurity.org.

Checklist Role:

  • Virtualization Server
  • Web Application Server

Known Issues:

Not provided.

Target Audience:

This document is intended for system and application administrators, security specialists, auditors, help desk, platform deployment, and/or DevOps personnel who plan to develop, deploy, assess, or secure solutions in Amazon Web Services. A typical enterprise has use cases for each service from access desktop resources from any computer or tablet, to stream GPU intensive apps to accessing internal web-based content, from mobile devices.

Target Operational Environment:

  • Managed
  • Specialized Security-Limited Functionality (SSLF)

Testing Information:

Not provided.

Regulatory Compliance:

Not provided.

Comments/Warnings/Miscellaneous:

Not provided.

Disclaimer:

https://www.cisecurity.org/cis-securesuite/cis-securesuite-membership-terms-of-use/

Product Support:

Not provided.

Point of Contact:

benchmarkinfo@cisecurity.org

Sponsor:

Not provided.

Licensing:

https://www.cisecurity.org/cis-securesuite/cis-securesuite-membership-terms-of-use/

Change History:

new checklist - 2/26/24
updated support information and prose link
Candidate to Final - 4/30/24

Dependency/Requirements:

URL Description

References:

Reference URL Description

NIST checklist record last modified on 04/30/2024