SAP’s CommonCryptoLib Crypto Kernel version 22.214.171.124 has just received the FIPS 140-2 certification.
FIPS stands for Federal Information Processing Standard and is a US standard required by US public sector agencies. Meanwhile, it has also become a mandatory requirement in healthcare and financial industries. FIPS 140-2 sets the standards for the security requirements for cryptographic modules to ensure that the applied mathematical algorithms are implemented properly, following verified best practices to protect your sensitive data.
Adapting to the latest compliance standards, SAP follows the strategy to build and keep customer trust.
Detailed description of what has been certified:
The certificate is available here: http://csrc.nist.gov/groups/STM/cmvp/documents/140-1/140crt/FIPS140ConsolidatedCertMay2017.pdf.
What you need to do to activate the certified version:
(Partner and Customers need an S-User to view the note. You can order your S-User here:
About the certification body:
Previous FIPS certifications: