Introduction to FIPS 140-2 compliance - PingDirectory

Page created: 15 Jul 2022 |

Page updated: 20 Jan 2023

| 1 min read

9.2 Product PingDirectory Administrator Audience Administration User task Configuration Software Deployment Method Product documentation Content Type

The Federal Risk and Authorization Management Program (FedRAMP) could require that United States government agencies and organizations that work with those agencies ensure that their cloud-based services adhere to the FIPS 140-2 specification, which defines a set of requirements for cryptographic processing.

As of the 8.3.0.0 release, the PingDirectory server, PingDirectoryProxy server, PingDataSync server, and the PingDataMetrics Engine products provide support for running in a FIPS 140-2-compliant mode.

When setting up in FIPS 140-2-compliant mode, the server uses the Bouncy Castle FIPS Java API in approved-only mode, which rejects attempts to use non-FIPS 140-2-compliant cryptography.