Introduction to FIPS 140-2 compliance - PingDirectory

Introduction to FIPS 140-2 compliance - PingDirectory - 9.2

PingDirectory 9.2

bundle

pingdirectory-92

ft:publication_title

PingDirectory 9.2

Product_Version_ce

PingDirectory 9.2

category

Product

pd-92

pingdirectory

ContentType_ce

Page created: 15 Jul 2022 |

Page updated: 20 Jan 2023

| 1 min read

9.2 Product PingDirectory Administrator Audience Administration User task Configuration Software Deployment Method Product documentation Content Type

The Federal Risk and Authorization Management Program (FedRAMP) could require that United States government agencies and organizations that work with those agencies ensure that their cloud-based services adhere to the FIPS 140-2 specification, which defines a set of requirements for cryptographic processing.

As of the 8.3.0.0 release, the PingDirectory server, PingDirectoryProxy server, PingDataSync server, and the PingDataMetrics Engine products provide support for running in a FIPS 140-2-compliant mode.

When setting up in FIPS 140-2-compliant mode, the server uses the Bouncy Castle FIPS Java API in approved-only mode, which rejects attempts to use non-FIPS 140-2-compliant cryptography.