Stack Overflow
Stack Overflow

Questions tagged [fips]

The term "fips" commonly refers to the Federal Information Processing Standards Publication 140 (FIPS 140), a document published by the National Institute of Standards and Technology (NIST), a U.S. government agency. Cryptographic software and hardware that complies with the standard must use only cryptographic algorithms specified in FIPS 140-2, the latest published revision.

The term FIPS is sometimes used to refer to a specific publication, Security Requirements for Cryptographic Modules FIPS 140. Cryptographic software and hardware that complies with the standard must use only cryptographic algorithms specified in FIPS 140-2, the latest published revision.

However, FIPS 140-2 is one of many publications that describes information technology standards for use by U.S. Government Agencies.

Further information can be found at the FIPS Home Page

432 questions
2
votes
1 answer

Use pandas to get county name using fips codes

I have fips codes here: http://www2.census.gov/geo/docs/reference/codes/files/national_county.txt And a dataset that looks like this: fips_state fips_county value 1 1 10 1 3 34 1 …
Mike Johnson Jr
  • 776
  • 1
  • 13
  • 32
2
votes
1 answer

Is PHP's password_hash FIPS compliant?

I believe hash('sha256', $pw) is FIPS compliant, but I know for certain that an attack vector is possible with using that function. Also, there is no salt (so I would have to encounter that implementation and I would rather not). Is…
TimD
  • 25
  • 4
2
votes
0 answers

Compiling a short program with OpenSSL with FIPS module

I've got a very simple encryption/decryption program that works fine without FIPS support enabled, but fails when it is: #include #include #include #include void…
Matthew Heimlich
  • 343
  • 2
  • 13
2
votes
1 answer

Can I use WPF without disabling FIPS compliance?

I've seen lots of complaints about build issues (specifically with WPF) with the error: This implementation is not part of the Windows Platform FIPS validated cryptographic algorithms. Unfortunately, I cannot work-around or disable FIPS compliance…
kissmeimpolish
  • 37
  • 1
  • 4
2
votes
0 answers

fips_premain.c with Include bitcode causes crash

I have added the FIPS compliant openssl module to our iOS app. After which we submitted to apple and it kept getting rejected for an instant crash that we were unable to duplicate with our enterprise build. After much trial and error we found that…
Bot
  • 11,868
  • 11
  • 75
  • 131
2
votes
0 answers

Is there a way to enable FIPS Mode (for FIPS 140 compliance) while debugging an application?

I have the unfortunate happenstance of developing a C# application that must run under FIPS mode in production. I'm trying to test if it will work under FIPS mode, but I am finding that this causes severe and systematic problems for Visual Studio. I…
jpmc26
  • 28,463
  • 14
  • 94
  • 146
2
votes
1 answer

Does RADIUS’s use of the MD5 algorithm make it not FIPS validated for an application that allows RADIUS authentication?

The issue is if you enforce FIPS validated cryptography in the Windows security policy settings, an exception will be thrown because RADIUS protocol uses the MD5 algorithm to hash the request authenticator. There is not an alternative MD5 algorithm…
user455264
  • 21
  • 1
  • 2
2
votes
2 answers

Can I enable FIPS momentarily in a .net application?

Openssl allows going in and out of FIPS mode. Does the windows crypto api and .net wrapper classes alow a similar function? I want to enable FIPS mode, sign a document, and then return to normal mode.
Rex Bloom
  • 364
  • 4
  • 14
2
votes
2 answers

FIPS mode causing Ruby on Rails app to fail because of MD5 digest/openssl issue?

We developed a web-app using Ruby on Rails as our front-end running on nginx. Recently, due to some security audits, our server was patched for FIPS 140-2 compliance, which is a government standard for crypto modules. They installed dracut-fips,…
Evan Chin
  • 21
  • 3
2
votes
1 answer

Building OpenSSL with FIPS on Mac OSX 10.11

1. Is it possible to build OpenSSL with FIPS on Mac OSX 10.11 ? I am trying to maintain compatibility with a number of other platforms that all use OpenSSL with FIPS. I know Apple strongly recommends using CommonCrypto and I believe this will work…
M. Mayer
  • 133
  • 1
  • 7
2
votes
1 answer

C# FIPS 140-2 Encryption

I got tasked with coming up with a way to change our company's data library to be FIPS 140-2 compliant. We're primarily a microsoft shop and currently have a crypto library leveraging RijndealManaged to perform our encryption/decryption. There are…
JakeHova
  • 1,189
  • 2
  • 15
  • 36
2
votes
0 answers

FIPS_mode_set(1) error:00000000:lib(0):func(0):reason(0)

I'm trying to enable FIPS mode with this code: #include #include #include int main ( int argc, char *argv[] ) { #ifdef OPENSSL_FIPS int mode, result; // Get FIPS mode …
Marcos Bontempo
  • 59
  • 1
  • 6
2
votes
0 answers

ignore messages in Jenkins console/FIPS integrity verification test failed

Could you help me please and let me know if there is a plugin for Jenkins which lets me to hide specific messages in console output in the jobs? For example in every build I see "FIPS integrity verification test failed" and I want to get rid of…
Радослав Христов
  • 21
  • 2
2
votes
1 answer

Android cryptography library FIPS validation

I want to know, is the android's cryptography library (javax.crypto) "validated to FIPS 140-2"? I need for a specific product which FIPS is important.
mohammads
  • 228
  • 1
  • 9
2
votes
1 answer

Test Vectors for AES-128-ECB and OpenSSL

I am running one of the test vectors for AES-128-ECB given at http://csrc.nist.gov/publications/nistpubs/800-38a/sp800-38a.pdf . I am storing the plain text in "plain" file and resultant encrypted text in "cipher" file. OpenSSL being used by me is…
user2363993
  • 125
  • 1
  • 4
1 2 3
28 29