Arcot Achieves FIPS 140-2 Level 1 Compliance

On August 10, 2007, the United States and Canadian governments issued a certificate stating that the Arcot Core Security Module, v 2.0, is now FIPS 140-2, Level 1 validated. The National Institute of Standards and Technology's Computer Security Division (CSD) has awarded Arcot the certifications on the following algorithms: Triple-DES (Cert. #499); SHS (Cert. #558); HMAC (Cert. #242); RSA (Cert. #201); and RNG (Cert. #268).

The Arcot Core Security Module is a software cryptographic module that is implemented as a software library. This software library provides cryptographic services to all Arcot Systems products. The module provides FIPS-approved cryptographic services for encryption, decryption, digital signing and verification of digital signatures, key generation, secure hashing, HMAC message authentication codes, and random number generation.

The U.S. National Institute of Standards and Technology established the Cryptographic Module Validation Program (CMVP) that validates cryptographic modules to Federal Information Processing Standards (FIPS) 140-1 Security Requirements for Cryptographic Modules, and other FIPS cryptography based standards. The CMVP is a joint effort between NIST and the Communications Security Establishment (CSE) of the Government of Canada. To earn FIPS certifications, products undergo rigorous testing by an accredited independent lab that satisfies the government's high standards.

For more information regarding Arcot's most recent FIPS certifications, visit the NIST website at the following addresses:

NIST Website - Validated FIPS 140 Cryptographic Modules, 2007 (Arcot is #818)
http://csrc.nist.gov/cryptval/140-1/1401val2007.htm

NIST Website – Arcot FIPS 140-2 Certificate
http://csrc.nist.gov/cryptval/140-1/140crt/140crt818.pdf