Enable FIPS mode on Windows devices
The Code42 agent on Mac and Windows devices use the cryptographic module provided by their respective operating systems for encryption and decryption of backup data.
Although the Code42 agent uses the same operating system-provided cryptographic module on all Windows devices, you must also enable "FIPS mode" on Windows devices to ensure FIPS compliance.
The National Institute of Standards and Technology (NIST) is an organization of the U.S. Department of Commerce whose mission is to set standards that enhance economic security. Many organizations are required to comply with the following NIST security standards:
- NIST 800-53: Security and Privacy Controls for Federal Information Systems and Organizations
- NIST 800-171: Protecting Controlled Unclassified Information in Nonfederal Systems and Organizations
One of the NIST 800-171 requirements is the Federal Information Processing Standards (FIPS) standard FIPS 140-2, which sets the requirements for cryptographic modules used for data encryption and decryption.
- Ensure that the Windows devices in your Code42 environment run supported Windows versions. For supported Windows versions, see Code42 platform hardware and software requirements.
- To set the "FIPS mode" flag to true on Windows devices, follow instructions in section "Information for System Integrators" in Microsoft's article FIPS 140 Validation.
- National Institute of Standards and Technology