Unlocking AI models in Standard AWS Regions from AWS GovCloud (US): Cross-partition access with Amazon Bedrock
Public Sector Blog
This article explains how AWS GovCloud (US) workloads can securely access Amazon Bedrock AI models in Standard AWS Regions through three connectivity approaches.
- GovCloud workloads send HTTPS requests to Bedrock in Standard Regions via cross-partition connections
- TLS encryption protects data in transit; Lambda retrieves API keys from Secrets Manager
- Option 1: Internet-based connectivity for quick POCs; traffic crosses public internet
- Option 2: Site-to-Site VPN with private endpoints; encrypted tunnel, moderate setup complexity
- Option 3: AWS Direct Connect; dedicated private connection, highest security and performance
- All options require Bedrock API key authentication and model access enabled in destination region
- Data transfer costs incurred in both accounts; compliance review essential before implementation
Organizations should evaluate these options against their compliance requirements, data sensitivity, and existing network infrastructure to select the appropriate connectivity method.
The AWS News Feed is currently looking for gold sponsors. If you want to support the AWS community and reach a large audience of AWS professionals, consider sponsoring the AWS News Feed.
Related articles
Sep 30
2025
2025
Unlocking commercial AI models in AWS GovCloud (US): Secure cross-partition access with Amazon Bedrock
Jan 29
2026
2026
Accessing commercial AI from AWS GovCloud (US) for your CJIS workloads
Nov 3
2025
2025
Unlock enterprise data for generative AI by integrating structured sources with Amazon Bedrock in AWS GovCloud (US)
Mar 27
2025
2025
Enable Amazon Bedrock cross-Region inference in multi-account environments
The AWS News Feed is currently looking for silver sponsors. If you want to support the AWS community and reach a large audience of AWS professionals, consider sponsoring the AWS News Feed.