How To Enable FIPS 140-2 Encryption

Configuration Guide › Security and Permissions › How To Enable FIPS 140-2 Encryption

How To Enable FIPS 140-2 Encryption

FIPS 140-2 is a US federal standard that dictates the security requirements for cryptographic modules utilized within a security system protecting sensitive information in computer systems.

CA GovernanceMinder makes limited use of encryption, primarily to protect passwords and other information used to access other applications, databases, or operating environments.

Follow these steps:

Implement Transport Layer Security (TLS/SSL) protection at the application server level.
Provide an acceptable level of key (passphrase) security.
Download and install Java security components.
Configure CA GovernanceMinder to use FIPS-certified encryption algorithms. CA uses the RSA Crypto‑J library for FIPS-compliant encryption.

Important! If FIPS-compliant encryption is adopted after CA GovernanceMinder begins to function, inconsistencies can result. Previously encrypted data can be rendered inaccessible, and passwords must be redefined. Select algorithms and a key storage method, and implement FIPS-compliant encryption immediately after installation, before you begin to work with CA GovernanceMinder.

More information:

SSL-Encrypted Communication