FIPS 140-2 Compliant Encryption
How does SecureZIP help meet FIPS 140-2 compliance standards?
PKWARE’s Solution fully addresses the standards outlined in FIPS 140-2 by strongly ENCRYPTING THE DATA ITSELF rather than the storage device. PKWARE's own FIPS mode setting ensures only FIPS 140-2 validated cryptography is used and it avoids the need for setting disruptive operating system FIPS policy settings.
Keeps Data Secure:
- In Movement or Storage
- At its Origin or Destination
Data remains protected even if placed on removable media that is lost or stolen during transit.
The PKWARE Solution offers government agencies the ability to use validated cryptographic modules for protecting data when run in FIPS mode:
|FIPS Validation||Cert #||FIPS Level|
|Windows XP w/SP3||989||140-2|
|Windows Server 2003||382/1012||140-2|
|Windows Server 2008||1010||140-2|
|Windows Server 2008 R2||1337||140-2|
|Windows Server 2012||1894||140-2|
|Z990, z890, Z9EC, z9BC, z10EC, z10BC||661||140-2|
Z990, z890, Z9EC, z9BC, z10EC,
z10BC, z196, z114, zEC12, zBC12
PKWARE helps meet FIPS 140-2 compliance standards:
FIPS 140-2 requires all federal government agencies and departments that use cryptographic-based security systems to protect sensitive information to comply with the standards. Or, if you are an organization that does business with a government agency or department that requires the exchange of sensitive information, you also need to ensure you meet the FIPS 140-2 security standards. Additionally, FIPS 140-2 is becoming a general best practice outside of the government sector and outside of the United States.
Customer Success Story: FIPS 140-2 Compliant Encryption Case Study
The Centers for Medicare & Medicaid Services (CMS) is using SecureZIP PartnerLink not only to meet FIPS 140-2 standards, but also to securely exchange sensitive information with hundreds of external partners, including other federal/state/local government agencies, research labs, universities, and large corporations. To learn more about how CMS is leveraging SecureZIP PartnerLink, please download the CMS Case Study.
In addition to meeting the security standards outlined in FIPS 140-2, SecureZIP helps solve several other data security issues that government agencies are facing. To learn more about how SecureZIP can help solve specific government data security issues and to access case studies and other resources, click here.
What is FIPS 140-2?
FIPS 140-2 is the current version of the Federal Information Processing Standardization 140 (FIPS 140) publication that specifies requirements for cryptography modules. The National Institute of Standards and Technology (NIST) issued the FIPS 140 series to uphold the standards that describe the United States Federal Government requirements that IT products should meet.
Read more about FIPS 140 by downloading the document found here: https://csrc.nist.gov/publications/fips/fips140-2/fips1402.pdf