Obadian
Hey, you might need to update about FIPS 140-2 compliance since KMS supports it as well https://aws.amazon.com/blogs/security/aws-key-management-service-now-offers-fips-140-2-validated-cryptographic-modules-enabling-easier-adoption-of-the-service-for-regulated-workloads/
I agree. KMS is FIPS 140-2 compliant and Cloud HSM is FIPS 140-3 compliant. Not sure if each of them have received the certification at those levels but I suspect they are also certified at those levels too.