Amazon Elastic Container Registry (ECR) now meets the criteria for PCI compliance in AMER, EMEA, and APAC. ECR PCI DSS compliance in China is pending approval. You can now use ECR to store, manage, and deploy Docker container images that are subject to Payment Card Industry Data Security Standard (PCI DSS) compliance. In addition to Amazon ECR, Amazon Elastic Container Service (ECS) also already meets the criteria for PCI compliance in AMER, EMEA, and APAC.
PCI DSS is a proprietary information security standard administered by the PCI Security Standards Council and applies to all entities that store, process or transmit cardholder data and/or sensitive authentication data including merchants, processors, acquirers, issuers, and service providers.
Amazon ECR is a fully-managed Docker container registry that makes it easy for developers to store, manage, and deploy Docker container images. Amazon ECR is integrated with Amazon Elastic Container Service (ECS), simplifying your development to production workflow. Amazon ECR eliminates the need to operate your own container repositories or worry about scaling the underlying infrastructure. Amazon ECR hosts your images in a secure, highly available, and scalable architecture allowing you to reliably deploy containers for your applications. For more information, visit the Amazon ECR product page.
Visit the AWS global region table for a full list of AWS Regions where Amazon ECR is available.
To learn more about PCI DSS certification, visit the PCI DSS Compliance site.