FIPS 140-2 cryptography for TLS TN-Q18

The Federal Information Processing Standard (FIPS) Publication 140-2 is a U.S. government standard. FIPS is based on Section 5131 of the Information Technology Management Reform Act of 1996. It defines the minimum security requirements for cryptographic modules in IT products.

Windows Desktop

The scan engine on Windows uses Windows Schannel for HTTPS TLS support.

If Windows is configured for FIPS mode then Schannel (and hence the scan engine) only uses FIPS compliant cryptography, and the following FIPS 140-2 certificate numbers for Windows Desktop.

Macintosh Desktop

The scan engine on macOS uses Secure Transport for HTTPS TLS support, which uses the Apple Corecrypto Module for cryptographic operations and the following FIPS 140-2 certificate numbers for macOS.

OnDemand Cloud

The cloud app is hosted on Azure. All Azure services use FIPS 140 approved algorithms for data security because the operating system uses FIPS 140 approved algorithms and the following FIPS 140-2 certificate numbers for Windows Server.

Downloads

Software downloads are hosted on Azure and served over TLS 1.2 with FIPS compliant cryptographic algorithms.

Applies To: All products

Last Reviewed: June 3, 2022