Knowledge Base

Home > Features > FIPS 140-2

Created
Modified

Print Article

Article 2628

FIPS 140-2

FIPS 140-2
The Federal Information Processing Standard (FIPS) Publication 140-2 specifies the security requirements of cryptographic modules used to protect sensitive information.

SmartFTP uses FIPS 140-2 validated cryptographic modules:

CryptoAPI / CNG
The CryptoAPI (CAPI) is the cryptographic module shipped with Microsoft Windows. Microsoft has maintained FIPS 140-2 validation for all operating system starting from Windows XP SP3.

Cryptography API: Next Generation (CNG) is the cryptography library that is available starting with Windows Vista / Windows 2008.

Reference: Technet - FIPS 140 Evaluation

OpenSSL
OpenSSL is used for the SSH implementation in SmartFTP. FIPS 140-2 certificate #1051.
Reference: Validated Cryptographic Modules

Change FIPS 140-2 Mode

SmartFTP enforces the operating system's FIPS policy. To change the FIPS policy of Windows:

  1. Click the Start button
  2. Go to Control Panel
  3. Select Administrative Tools
  4. Select Local Security Policy
  5. Go to Local Policies - Security Options in the tree on the left side
  6. Change System cryptography: Use FIPS compliant algorithms for encryption, hashing, and signing
Reference: Technet - FIPS 140 Evaluation "Instructions on Setting the FIPS Local Policy Flag"

Keywords
fips 140-2

Related Articles
icon Effects of FIPS compliance


Please choose 1 to 5 whether this article solves your problem.

1 No Help at all

5 Problem Solved

Saving...
Thank you for your feedback.

What do you think about this topic? Send feedback!