Solved

FIPS 140-2 Compliant Encryption

Posted on 2010-11-23
2
1,451 Views
Last Modified: 2012-05-10
Hello,

I am wondering if SSL/TLS is a FIPS 140-2 Compliant Encryption. If so, can you please point me to an authoritative source?

Thank you,
Joseph Irvine
0
Comment
Question by:jkeagle13
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
2 Comments
 
LVL 27

Expert Comment

by:Tolomir
ID: 34199978
0
 
LVL 33

Accepted Solution

by:
Dave Howe earned 500 total points
ID: 34205497
it depends on what you mean by compliant.

the openssl libraries are fully *certified*, when run in FIPS mode (this restricts you to just the FIPS approved algos). Any SSL link is FIPS *compliant* if the webserver (not client!) is set to operate only using FIPS approved algos - but will not be certified.

apache would be FIPS *certified* only if the openssl library it links to is compiled to FIPS mode (not the default). IIS, similarly, is *certified* if it uses the FIPS compatable libraries (available by default from windows 2003 onwards) AND the system is set to FIPS compliant mode in group policy.  There is no setting that will make IIS compliant but not certified, as one implies the other in windows.
0

Featured Post

Efficient way to get backups off site to Azure

This user guide provides instructions on how to deploy and configure both a StoneFly Scale Out NAS Enterprise Cloud Drive virtual machine and Veeam Cloud Connect in the Microsoft Azure Cloud.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Data center, now-a-days, is referred as the home of all the advanced technologies. In-fact, most of the businesses are now establishing their entire organizational structure around the IT capabilities.
Use of TCL script on Cisco devices:  - create file and merge it with running configuration to apply configuration changes
This video gives you a great overview about bandwidth monitoring with SNMP and WMI with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're looking for how to monitor bandwidth using netflow or packet s…
In this tutorial you'll learn about bandwidth monitoring with flows and packet sniffing with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're interested in additional methods for monitoring bandwidt…

751 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question