Page created: 15 Jul 2022
|
Page updated: 20 Jan 2023
The Federal Risk and Authorization Management Program (FedRAMP) could require that United States government agencies and organizations that work with those agencies ensure that their cloud-based services adhere to the FIPS 140-2 specification, which defines a set of requirements for cryptographic processing.
As of the 8.3.0.0 release, the PingDirectory server, PingDirectoryProxy server, PingDataSync server, and the PingDataMetrics Engine products provide support for running in a FIPS 140-2-compliant mode.
When setting up in FIPS 140-2-compliant mode, the server uses the Bouncy Castle FIPS Java API in approved-only mode, which rejects attempts to use non-FIPS 140-2-compliant cryptography.