How To Enable FIPS 140-2 Encryption

Configuration Guide › Security and Permissions › How To Enable FIPS 140-2 Encryption

How To Enable FIPS 140-2 Encryption

Federal Information Processing Standards (FIPS) 140-2 is a US federal standard that dictates the security requirements for cryptographic modules that are utilized within a security system protecting sensitive information in computer systems.

The product makes limited use of encryption, primarily to protect passwords and other information that is used to access other applications, databases, or operating environments.

To enable FIPS 140-2 compliant encryption in CA GovernanceMinder, do the following:

Implement Transport Layer Security (TLS/SSL) protection at the application server level.
Provide an acceptable level of key (passphrase) security.
Download and install Java security components.
Configure the product to use FIPS-certified encryption algorithms. CA uses the RSA Crypto‑J library for FIPS-compliant encryption.

Important! If FIPS-compliant encryption is adopted after the product begins to function, inconsistencies can result. Previously encrypted data can be rendered inaccessible, and passwords must be redefined. Select algorithms and a key storage method, and implement FIPS-compliant encryption immediately after installation, before you begin to work with the product.

More information:

SSL-Encrypted Communication