When deployed in Advanced Encryption Mode, CA DataMinder uses the Advanced Encryption Standard (AES) adopted by the US government. Specifically, it uses the TLS protocol to transfer sensitive data between machines.
To allow this, CA has licensed the RSA BSAFE Crypto-J 4.0 and SSL-J 5.1.1 cryptographic libraries. These libraries have been validated as meeting the FIPS 140-2 Security Requirements for Cryptographic Modules. The FIPS 140-2 Certificate number for these libraries is 1291. CA DataMinder uses these libraries to encrypt sensitive data being transferred between machines.
Note: The term ‘FIPS 140-2 compliant’ and the FIPS 140-2 standard relate to the requirements of a cryptographic module (that is, one actually implementing cryptographic algorithms) and not to an application's use of cryptography. An application's use of cryptography is guided by what a FIPS 140-2 compliant cryptographic module will provide. CA DataMinder will not be a FIPS 140-2 compliant product. Instead, it will use a FIPS 140-2 compliant cryptographic module (RSA BSAFE Crypto-J 4.0) and will only use cryptographic algorithms, for purposes such as symmetric encryption, that are approved by FIPS 140-2. We therefore use the term ‘FIPS compatible’ to describe the CA DataMinder support for FIPS 140-2.
|
Copyright © 2014 CA.
All rights reserved.
|
|