Looking at the forums it looks like the aps and edgerouters are able to meet fips 1402 but ubiquiti hasnt bothered to go through the certification process. Fips 140 2 security requirements for cryptographic modules documentation topics. Fips 199 is the standards for security categorization of federal information and information systems of the united states federal government standard. The nist cryptographic module validation cmv program was announced on july 17, 1995. Fips mode uses fips 1402 approved algorithms using the rsa bsafe cryptoc micro edition me 3. Fips pub 140 2 change notices 12032002 federal information processing standards publication supercedes fips pub 140 1, 1994 january 11 security requirements for cryptographic modules category. Fips 140 1 and fips 1402 are two of a series of federal information processing standards publications fips pubs that have been issued by the u. After the transition period, all previous validations against fips 140 1 will still be recognized. Fips 201 or federal information processing standard publication 201 is a united states federal government standard that outlines the use of the personal identity verification piv card requirements for all federal government agencies and contractors. The government began drafting fips 1403 in 2005, and various versions of the new draft fips validation have. What if the encrypted drive is on a virtual machine, is that still fips 1402 compliant in a virtual machine setup, bitlocker can be used without a usb drive because one of the drives on the. The title is security requirements for cryptographic modules. The federal information processing standard fips publication 1402 is a us and canadian government standard that specifies the security requirements for cryptographic modules that protect sensitive information.
This security policy supports the addition of nokias ipso firmware version 4. The standard provides four increasing, qualitative levels of security. Randomness test question from fips 1401 and comparison. Fips pub is an abbreviation for federal information processing standards publication. Federal information processing standards publications. These levels are intended to cover the wide range of potential applications. It establishes security categorization of the information systems used by the federal government, one component of risk assessment. Testing of cryptographic modules against fips 140 2 will end on september 22, 2021. All of these components can be configured to run in fips mode by setting the sqlnet. The national institute of standards and technology nist computer security division created the fips 201. Fips 199 is the acronym for federal information processing standard publication 199.
See the fips 140 3 development project for information on the implementation schedule and development of supporting sp 800140x documents. Cryptographic module validation program nist and csec keywords. Fips 1402 provides four increasing, qualitative levels of security. Standards cryptographic module validation program csrc. Is bitlocker on a virtual machine still fips 1402 compliant.
Fips 1402 is a standard established by nist national institute of standards and technology. Fips federal information processing standard 1402 is a u. If you require use of fips 1402 validated cryptographic modules when accessing aws us eastwest, aws govcloud us, or aws canada. This section provides an overview of fips 1402 validation in the connectivity product suite. May 25, 2001 change notice 2, 1232002 planning note 3222019. Fips 1402 you take security seriously and so do we. Federal information processing standard fips 180 1, secure hash standard affixed. There are no fips security relevant changes introduced between ipso firmware versions 4. Federal information processing standards publication. Notice that the question gives, for the runs test of fips 1402, a table of the erroneous bounds of fips 1402 without change notice 1. Federal information processing standards publication 1403 fips 1403 would be a new standard that would replace fips 1402 in the same way that fips 1402 replaced fips 140 1. Current federal information processing standards fips 1402 security requirements for cryptographic modules 01 may 25 supersedes fips pub 1401, 1994 january 11 1804 secure hash standard shs 2015 august. Cryptographic module in snapdragon 805 is fips 1402. Fips 1402 is a replacement for the earlier fips 140 1.
Initial publication was on may 25, 2001 and was last updated december 3, 2002. The federal information processing standard fips publication 140 2 is a u. Fips 140 compliant is an industry term for it products that rely on fips 140 validated products for cryptographic functionality. Modules validated as conforming to fips 1401 and fips 1402 are accepted by. There were many changes made to the 2 bringing it up to date with current technologies and practices. Publications fips changes and announcements fips listed by number withdrawn fips replacement standards for withdrawn fips on geographic codes federal information standards fips created february 24, 2010, updated may 21, 2018. Fips pub 87, guidelines for adp contingency planning.
If you plan to use this appliance in a fips 1402 environment when validation is. Federal information processing standards publications fips. Security requirements for cryptographic modules includes. There are three major phases to a fips 1402 validaion. This federal information processing standard 140 2 specifies the security requirements that will be satisfied by a cryptographic module, providing four increasing, qualitative levels. There are three key players in fips 1402 validaion process. This is significant in that it demonstrates qualcomm cryptographic compliance and helps qualify our customers to enter government departments and other regulated industries with fips 1402 requirements. Federal information processing standards fips nist special publication 800series general information nist special publication 1800series general information itl bulletins itl newsletters nist special publication 500 series. Agencies may retain and use fips 140 1 validated products that have been purchased before the end of the transition period.
From approval of fips 140 1 to its effective date, agencies may purchase equipment with fips 140 1. There are 4 steps, not 8 its just that the requirements for climbing those steps were tweaked. Bitlocker can be used as a cryptographic module to fulfill fips 1402 security level 1 compliance in a common setup, usb thumb drives can be used to unlock drives encrypted by bitlocker on startup. The changes in the acceptance level in the runs test made in fips 1402 change notice 1 from fips 1402 before that is documented page 54 to be a correction, that seems credible. Fips users upgrading from tivoli netcoolomnibus v7. Fips 1402 validation is a testing and certification program that verifies that a. Marketing bulletin seagate secure selfencrypting drives. Federal information processing standards publications fips pubs are issued by the. Who are the key players in the fips 1402 validaion process. Table 1 summarizes the implementation schedule for fips 140 1. The effective date of this standard is june 30, 1994.
And looking at the list of fips140 validated modules i can see. Information technology laboratory national institute of standards and technology. Fips pub 140 1, security requirements for cryptographic modules. This program validates cryptographic modules for conformance to fips pub 140 1 and fips pub 1402, security requirements for cryptographic modules. Nist federal information processing standard fips 1403. Fips pub 180 1 supersedes fips pub 180 1993 may 11 federal information processing standards publication 180 1 1995 april 17 announcing the standard for secure hash standard the foreword, abstract, and key words can be found at the end of this document. Front power, drive activity, ethernet 0, ethernet 1, overheat controls. Fips 1403, security requirements for cryptographic modules. However fips 1402 implementation guide states that des is not approved since may 19, 2007. Cryptographic module validation program fips 1401 and. Fips 1403, security requirements for cryptographic.
Federal information processing standards publication supersedes fips pub 1402 security requirements for cryptographic modules. Fips 1402 identifies requirements for four security levels for cryptographic modules to provide for a wide spectrum of data sensitivity e. Fips 1402, security requirements for cryptographic modules. Fips pub 73, guidelines for security of computer applications. This validation might not be complete at the time you receive this shipment. Fips 140 2 was signed on may 25, 2001 and became effective november 15, 2001 when derived test requirements for fips pub 140 2, security requirements for cryptographic modules was published. B, fips 1402 level 1 can be achieved by incorporating a software based certified encryption module. Fips 140 3 security requirements for cryptographic modules documentation topics. Security requirements for cryptographic modules fips pub 1401. The federal information processing standard publication 1402, fips pub 140 2, is a u. Abstract this federal information processing standard 1402 specifies the security requirements that will be satisfied by a cryptographic module, providing four increasing, qualitative levels intended to cover a wide range of potential applications and environments. Fips 1402 level 2 and above can be achieved by incorporating an embedded hardware based certified encryption module. What is fips 201 and the differences between fips 2012.
Fips 140 1, issued on 11 january 1994, was developed by a government and industry working group, composed of vendors and users of cryptographic equipment. The federal information processing standard fips publication 140 2, fips pub 140 2, is a u. This isnt unusual, government isnt a large enough market for them to justify the certification process costs. Fips pub 1402 change notices 12032002 federal information processing standards publication supercedes fips pub 1401, 1994 january 11 security requirements for cryptographic modules category. The federal information processing standards publication series of the national institute of standards and technology nist is the official series of publications relating to. Fips pubs are created by nist usually after a public comment period and are issued after.
The federal information processing standard fips 1402 specifies the security requirements that will be satisfied by a cryptographic module utilized within a security system protecting protected information. Current federal information processing standards fips 140 2 security requirements for cryptographic modules 01 may 25 supersedes fips pub 140 1, 1994 january 11. The keyedhash message authentication code hmac fips pub 198 1. Fips 140 federal information processing standardization 140 20. The cmvp accepted test reports from cst laboratories against either fips 140 1 or fips 140 2 and the applicable dtr from november 15, 2001 to may 25, 2002. The group identified the four security levels and eleven requirement areas listed above, and specified requirements for each area at each level.
The federal information processing standard publication 1402, fips pub 1402, is a u. Fips 1402, security requirements for cryptographic. The applicability section of fips pub 1402 states that. First off, lets be clear on what we are talking about. Fips 1401 and fips 1402 validation certificates specify the exact module name. Fips 140 1, security requirements for cryptographic modules, was issued in 1994 and was superseded by fips 1402 in 2001. Federal information processing standard fips publication. Fips labels, fips seals 1402 and 140 1 compliant high security labels and seals from novavision, inc. The federal information processing standard publication 140 2, fips pub 140 2, is a u. To see a listing of the validation, go to the 2012 list of validated fips 140 1 and fips 1402. The 140 series of federal information processing standards fips are u. Federal information processing standard fips publication 1402.
Cryptography information technology laboratory national institute of standards and technology. Federal information processing standards publications fips pubs are issued by the national. Nist issued special publication 80029 outlining the significant changes from fips 1401 to fips 1402. An enterprise information system guidance for mapping types of information and information systems to. In other words, you get the same amount of security from fips 1402 level 1 as from fips 140 1 level 1, and so on. So, they can comply with fips 1402, nothing is mentioned about fips 1804. A typical validaion efort will take anywhere from eight to twelve months from start to inish. After the transition period, modules will no longer be tested against the fips 140 1 requirements. The requirements for fips 140 1 level n and fips 1402 level n are broadly similar. May 06, 2020 fips 140 validated means that the cryptographic module, or a product that embeds the module has been validated certified by the cmvp as meeting the fips 1402 requirements. Depending on the security requirements, companies can choose between four security levels against which the crypto module is tested. Federal information processing standards publication supersedes fips pub 140 2 security requirements for cryptographic modules. Fips 140 2, security requirements for cryptographic modules, was released on may. Fips 1981, the keyedhash message authentication code.
1173 1471 905 1603 1168 251 1269 1092 1567 446 1335 771 1550 1607 613 1237 71 368 206 1490 672 1138 189 164 399 125 406 797 697 1212 1089 362 1214 370 648 969 273 373