The current FIPS
module for OpenSSL has not had a significant upgrade since 2012, during which time encryption standards have significantly evolved.
A product's status in the FIPS
140-2 process is made public, with vendor approval, through the CMVP's Modules In Process List which is updated on a regular basis.
EFJ Inc (Nasdaq: EFJI) announced on Monday (11 June) that the company's subsidiary, 3e Technologies International (3eTI), a provider of FIPS
140-2 Validated WLAN products, has received National Institute of Standards and Technology (NIST) FIPS
140-2 Validation for its AirGuard 3e-525V-3 wireless access point with video module.
The CMVP uses laboratories accredited by NIST's National Voluntary Laboratory Accreditation Program to test cryptographic products that conform to FIPS
140-1 validation is an important step for RSA BSAFE Crypto-J software because it provides a standard for federal organizations using security systems that provide protection for sensitive or valuable data designed for the Java environment," said Victor Chang, vice president of the Developer Solutions division at RSA Security.
Under the terms of the agreement Arcot's TransFort solution will be integrated with nCipher's FIPS
140 level 3 nShield HSM technology.
140-2 is an information technology security validation program that certifies products and systems for use in government-run and other highly regulated industries, such as finance and healthcare, where sensitive information is collected, stored, and shared.
We are proud to have once again obtained FIPS
validation for our remote support appliances and software, said Scott Braynard, VP of Public Sector, Bomgar.
The early adoption of AES is perhaps more remarkable because, prior to the approval of FIPS
197, AES algorithm testing was not available through NIST's Cryptographic Module Validation Program (CMVP), a program for assurance testing of cryptographic modules jointly operated by NIST and the Canadian Government Communications Security Establishment.