Issue
Are any of the Schneider Electric access software products FIPS compliant?
Environment
FIPS compliant access control
Cause
New U.S. Government access control regulations.
Resolution
FIPS Compliance information
The Federal Information Processing Standard 140-1 (FIPS 140-1) and its successor FIPS 140-2 are United States Government standards that provide a benchmark for implementing cryptographic software. They specify best practices for implementing crypto algorithms, handling key material and data buffers, and working with the operating system. Both IPSec and the Encrypting Files System (EFS) in Windows 2000, Windows Server 2003 and Windows XP use the FIPS-140-1 evaluated Kernel Mode Cryptographic Module to encrypt the traffic packet data and file contents respectively if configured appropriately with the selections of FIPS compliant algorithms.
The FIPS-compliant, kernel-mode, crypto module lets organizations deploy FIPS 140-1-compliant, Internet Protocol Security (IPSec) implementations using:
- L2TP (Layer Two Tunneling Protocol)/IPSec VPN client and server.
- L2TP/IPSec tunnels for gateway-to-gateway VPN connections.
- IPSec tunnels for gateway-to-gateway VPN connections.
- IPSec-encrypted, end-to-end, network traffic between client and server, and server to server.
Currently, I/NET Seven is not FIPS Compliant. There are not any plans to make I/NET Seven FIPS Compliant.
The Continuum product line is FIPS Compliant. Click here for a PDF with more information.
FIPS 140-2 Validation Certificate
http://csrc.nist.gov/groups/STM/cmvp/documents/140-1/140crt/140crt1355.pdf
Schneider Electric Continuum Network Security Module
http://csrc.nist.gov/groups/STM/cmvp/documents/140-1/140sp/140sp1355.pdf
