What is the difference between FIPS 140 1 and FIPS 140-2?

What is the difference between FIPS 140 1 and FIPS 140-2?

FIPS 140-1 is one of NIST’s most successful standards and forms the very foundation of the Cryptographic Module Validation Program. FIPS 140-2 addresses lessons learned from questions and comments and reflects changes in technology. The standard was strengthened, but not changed in focus or emphasis.

What are FIPS 140-2 levels?

The FIPS 140-2 encryption standard defines four levels, which are: Level 1: Requires that production-grade equipment and externally tested algorithms be used. Level 2: Requires physical tamper-evidence and role-based authentication for hardware. It requires hardware to be tamper-active.

What are FIPS 140-2 requirements?

FIPS 140-2 requires that any hardware or software cryptographic module implements algorithms from an approved list. The FIPS validated algorithms cover symmetric and asymmetric encryption techniques as well as use of hash standards and message authentication.

How secure is FIPS 140-2?

FIPS 140-2 has also become the de-facto standard for encryption beyond the federal government and is recognized as an important security standard outside the United States.

Does BitLocker meet FIPS 140-2?

BitLocker is FIPS-validated, but it requires a setting before encryption that ensures that the encryption meets the standards set forth by FIPS 140-2.

What is the difference between FIPS 140-2 and FIPS 197?

What is the difference between FIPS 140-2 and FIPS 197? FIPS 197 certification looks at the hardware encryption algorithms used to protect the data. FIPS 140-2 is the next, more advanced level of certification. FIPS 140-2 includes a rigorous analysis of the product’s physical properties.

Is BitLocker 140 a FIPS?

BitLocker is FIPS-validated, but it requires a setting before encryption that ensures that the encryption meets the standards set forth by FIPS 140-2. When encrypting devices with BitLocker, please be sure to follow the steps below to ensure that the encryption used is within parameters of control 3.13. 11.

Is BitLocker FIPS 140 compliant?

Thus, BitLocker™ maintains FIPS 140-2 compliance on both Vista Enterprise and Ultimate Edition, for both x86 and x64 processor architectures. The cryptographic integrity checking of early boot components in the Vista and BitLocker™ cryptographic modules as follows: 1.

What do you need to know about FIPS 140-2?

FIPS 140-2 Levels Explained. Security Level 2 allows the software and firmware components of a cryptographic module to be executed on a general purpose computing system using an operating system that • meets the functional requirements specified in the Common Criteria (CC) Protection Profiles…

What does CMVP stand for in FIPS 140-2?

The CMVP validates the test results of National Voluntary Laboratory Accreditation Program (NVLAP) accredited Cryptographic and Security Testing (CST) Laboratories which test cryptographic modules for conformance to Federal Information Processing Standard Publication (FIPS) 140-2, Security Requirements for Cryptographic Modules.

Where can I find the FIPS Validation List?

Cryptographic modules validation listings can be found at: • Cryptographic Module Validation Lists Cryptographic algorithm validation listings can be found at: • Cryptographic Algorithm Validation Lists Implementation Guidance for FIPS PUB 140-2 and the Cryptographic Module Validation Program National Institute of Standards and Technology

What is the Federal Information Processing Standard 140-2?

This Federal Information Processing Standard (140-2) specifies the security requirements that will be satisfied by a cryptographic module, providing four increasing, qualitative levels intended to cover a wide range of potential applications and environments.