Release Notes › FIPS Compliance › FIPS Algorithms Used
FIPS Algorithms Used
CA ControlMinder components use the following cryptographic algorithms. Different components use different algorithms.
- In FIPS-only mode:
- SSL (TLS 1.0)—client/server communication
- AES in CBC mode—encryption of PMD update file (Windows), bidirectional password history (Windows)
- SHA-1—Unidirectional password encryption (Windows), Trusted Programs, policy signatures (advanced policy management)
- In regular mode:
- CA ControlMinder r8 SP1 encryption libraries (DES, Triple DES, AES, MD5, and so on)
- SSL (SSL V2, SSL V3 and TLS 1.0)—client/server communication
- SHA-1 (from CAPKI)—used for signatures of trusted programs, signatures of policies
- AES (from CAPKI)—used for password validation when working with bidirectional password history
Copyright © 2013 CA Technologies.
All rights reserved.
|
|