Skip to Content

SAP’s CommonCryptoLib Crypto Kernel version 8.4.47.0 has just received the FIPS 140-2 certification.

FIPS stands for Federal Information Processing Standard and is a US standard required by US public sector agencies. Meanwhile, it has also become a mandatory requirement in healthcare and financial industries. FIPS 140-2 sets the standards for the security requirements for cryptographic modules to ensure that the applied mathematical algorithms are implemented properly, following verified best practices to protect your sensitive data.

Adapting to the latest compliance standards, SAP follows the strategy to build and keep customer trust.

 

More information:

Detailed description of what has been certified:

FIPS 140-2 certification of SAP’s CommonCryptoLib Crypto Kernel

The certificate is available here: http://csrc.nist.gov/groups/STM/cmvp/documents/140-1/140crt/FIPS140ConsolidatedCertMay2017.pdf.

What you need to do to activate the certified version:

Central Note 1848999 for CommonCryptoLib 8

(Partner and Customers need an S-User to view the note. You can order your S-User here:

http://service.sap.com.)

About the certification body:

NIST Computer Security Division – Cryptographic Module Validation Program (CMVP)

Previous FIPS certifications:

https://blogs.sap.com/2015/01/21/sap-s-crypto-kernel-receives-fips-140-2-certificate/

 

To report this post you need to login first.

Be the first to leave a comment

You must be Logged on to comment or reply to a post.

Leave a Reply