Page created: 27 Jul 2021 |
Page updated: 14 Jan 2022
The Federal Risk and Authorization Management Program (FedRAMP) could require that United States government agencies and organizations that work with those agencies ensure that their cloud-based services adhere to the FIPS 140-2 specification, which defines a set of requirements for cryptographic processing.
As of the 188.8.131.52 release, the PingDirectory Server, PingDirectoryProxy Server, PingDataSync Server, and the PingDataMetrics Engine products provide support for running in a FIPS 140-2-compliant mode.
When setting up in FIPS 140-2-compliant mode, the server uses the Bouncy Castle FIPS Java API in approved-only mode, which rejects attempts to use non-FIPS 140-2-compliant cryptography.