FIPS 140-2 Compliance Mode

Security Requirements for Cryptographic Modules are formalized in the Federal Information Processing Standard (FIPS publication 140-2), developed by the US National Institute of Standards and Technology (NIST) and Canadian Communication Security Establishment (CSE).

GoAnywhere Services provides a FIPS 140-2 Compliance Mode and when enabled, it only permits the use of FIPS 140-2 compliant ciphers (e.g. AES, Triple DES) for encryption processes.

Product Screenshot:

FIPS 140-2 Compliance Mode

The FIPS 140-2 certified algorithms (ciphers) in GoAnywhere Services are provided by an embedded RSA security module and apply to all SSH and SSL communications within GoAnywhere Services including SFTP, SCP, FTPS and HTTPS protocols.

RSA, a division of EMC, is a trusted provider of security, risk and compliance management solutions for business acceleration. By leveraging RSA’s extensive experience with encryption technology and compliance criteria, GoAnywhere Services is able to satisfy the stringent requirements for FIPS 140-2.

The RSA security module in GoAnywhere Services is unmodified and is certified under NIST Certification 2057 and 2058, which was validated on December 12th, 2013.

FIPS 140-2 Validated
RSA FIPS 140-2

* RSA and the RSA logo are registered trademarks of RSA Security Inc.

GoAnywhere Services can be installed onto Windows, VMware, Linux, IBM i, AIX (pSeries), UNIX, HP-UX, Mac OS and Solaris platforms.  IBM i is also referred to as System i, iSeries, as400, as/400 and i5.