NIST is the National Institute of Standards and Technology.
FIPS is the Federal Information Processing Standards
Standard 140-2 is the Security Requirements for Cryptographic Modules.
NIST is the National Institute of Standards and Technology.
FIPS is the Federal Information Processing Standards
Standard 140-2 is the Security Requirements for Cryptographic Modules.
It is important to understand which level of 140-2 you are asking about. There are 4. Also, are we talking about data at rest or in transport?
Many private sector companies use the NIST security framework (NIST CSF) as the framework for policies and procedures and not necessarily to be fully compliant with encryption strenghts ie SHA-1 vs SHA-256 etc.
Thank you for your prompt reply! I am speaking primarily about data in transit. I believe any level of FIPS 140-2 encryption is currently acceptable to satisfy government requirements.
I believe that SSL 2/3 is not certified, but TLS 1.0 is. A good resource for all of this is to look at sans.org or iase.disa.mil. It's been a while since I've been involved in DoD stuff, Common Criteria, DISA IASE and DISA STIG etc. Still good resources for this kind of information
Same question for FileMaker 16 and 17 please?