FIPS 140-2

FIPS 140-2, short for the U.S. Federal Information Processing Standard 140-2, Security Requirements for Cryptographic Modules, specifies requirements related to the secure design and implementation of cryptographic modules that provide protection for sensitive or valuable data. atsec offers these cryptographic module testing services:

  • Consultation on FIPS 140-2 requirements
  • Assessment of your cryptographic module test readiness
  • Support for the production of the Security Policy, Finite State Model, and user documentation
  • Conformance testing of cryptographic modules, resulting in a certificate issued by the National Institute of Standards and Technology (NIST) and Communications Security Establishment of Canada (CSEC) Cryptographic Module Validation Program (CMVP)

As atsec is actively involved in the new verison of FIPS 140-3, we can already prepare our customers for any changes in the standard.