Previous Topic: New and Changed Features in r12.1 SP1Next Topic: Operating Modes


FIPS 140-2 Compliance Overview

The Federal Information Processing Standards (FIPS) 140-2 publication is a security standard for the cryptographic libraries and algorithms a product should use for encryption. FIPS 140-2 encryption affects the communication of all sensitive data between components of CA Technologies products and between CA Technologies products and third-party products. FIPS 140-2 specifies the requirements for using cryptographic algorithms within a security system protecting sensitive, unclassified data.

CA User Activity Reporting Module offers FIPS compatibility with event traffic secured using FIPS-compliant algorithms when operating in FIPS mode. CA User Activity Reporting Module also offers a default, non-FIPS mode in which event traffic is not secured with FIPS-compliant algorithms. CA User Activity Reporting Module servers in a federated network cannot mix the two operating modes. This means that a server running in non-FIPS mode cannot share query and report data with a server that is running in FIPS mode.

Information about enabling and disabling FIPS mode is available in the Implementation Guide section on installing CA User Activity Reporting Module, and in the online help for the System Status service.

More information:

Operating Modes

Encryption Libraries

Algorithms Used

About Certificates and Key Files

FIPS Support Limitations

Configure Mozilla Firefox to Access CA User Activity Reporting Module in FIPS Mode

Adding New CA User Activity Reporting Module Servers to an Existing FIPS Mode Federation