Important News:SafeLogic announces PQC Early Adopter Program at RSA Conference 2024 Learn more!

 

 

 

FIPS 140 Validated Cryptography Software

SafeLogic's CryptoComply Software is the First Step on Your Path to FIPS Certification and PQC Migration

 

Request an Evaluation Copy of CryptoComply

 



CryptoComply is a Family of Standards-Based, FIPS 140 Validated, 'Drop-In Compatible' Cryptographic Modules

Designed for use in servers, desktops, the Cloud,
mobile devices and embedded/IoT systems.

Delivers core cryptographic functions via robust algorithm support. Performs secure key management, data integrity, data at rest encryption, and secure communications.

Provides the basis for Common Criteria, FedRAMP, StateRAMP, CMMC 2.0, DoDIN APL and CNSA 2.0 compliance.

Get a NIST FIPS validation certificate in your company's name in two months when combined with SafeLogic's RapidCert expedited validation program. With our MaintainCert support service, SafeLogic will keep your FIPS 140 solution active over time without it going 'historical'.

CryptoComply

 

CryptoComply Supports a Broad Range of Platform Types, Operating Systems, Languages, and Open Source Modules Including ...

 

Platform Types

Appliance
Cloud
Embedded
IOT
Mainframe
Mobile
Server

Operating Systems

AIX
Android
Apple iOS
Apple macOS
CentOS
Debian
FreeBSD
Oracle Linux
Red Hat
SUSE
Windows Server

Programming Languages

C
C++
C#
Go
Java
.NET
Python
Rust
And more...

Drop-In Compliance

BoringCrypto
Bouncy Castle
Dell BSAFE Crypto-J
OpenSSL
OpenSSL 1.0.2
OpenSSL 3.0
OpenSSL 3.0.8
OpenSSL 3.1
OpenSSL 3.2
Sun JCE

Join the Early Adopter Program to Test FIPS 140-3 Pre-Validated Modules

Under this program, SafeLogic customers can download and test the company’s various FIPS 140-3 modules that have successfully completed rigorous testing by a certified laboratory and are currently being reviewed by NIST’s Cryptographic Module Validation Program (CMVP).

SafeLogic is making these pre-validated FIPS 140-3 modules available now because some of its customers may have long development or release cycles and would like early access to the software for integration testing. 

If you are a SafeLogic customer and are interested in participating in FIPS 140-3 EAP, please email sales@safelogic.com or contact your SafeLogic representative, who will be happy to assist you.

FIPS 140-3 EAP

Learn More About the FIPS 140-3 Early Access Program

News Flash: SafeLogic Announces PQC Early Access Program at RSA Conference 2024

PQC Solutions

 

CryptoComply is also the foundation for SafeLogic's next-generation Post Quantum Cryptography solutions.

SafeLogic customers can start testing and experimenting with the full slate of PQC algorithms being standardized by NIST in the Summer of 2024.  NIST has already announced that once standardized, these algorithms will be incorporated into FIPS 140.

EAP members will also be able to test PQC capabilities including cryptographic asset discovery, cryptoagility and hybrid use cases.

Learn More About SafeLogic's PQC Solutions

Only CryptoComply Delivers These Capabilities and Benefits to Companies Entering Markets Requiring FIPS 140 Validation

 

Open Source Compatibility Speeds Implementation

CryptoComply modules are drop-in replacements for the low-level cryptographic libraries underlying TLS/SSL functions. CryptoComply is now available as a direct, drop-in replacement for OpenSSL, JCE (Java Cryptographic Extension) providers such as Bouncy Castle, SunJCE, and RSA BSAFE Crypto-J.

Single Code Library Eliminates Wasted Effort

Validations on a per-product basis waste time, money, and effort. CryptoComply delivers a single code library to support cross-operating system platforms. Save valuable resources by incorporating CryptoComply into multiple products or multiple product lines while maintaining your FIPS 140 certification.

OpenSSL 3 and TLS 1.3 with FIPS Validated Encryption

Technology vendors using OpenSSL and TLS while requiring FIPS 140 validated cryptography want to be using the latest and most secure versions of OpenSSL and TLS. CryptoComply OpenSSL 3 FIPS Provider supports both OpenSSL 3 APIs and TLS 1.3 with a FIPS-validated encryption module.

RapidCert Expedites Validation of Your CryptoComply Solution

FIPS 140 validations can take over two years. But with CryptoComply and SafeLogic's RapidCert expedited validation program, you can receive a NIST FIPS certification in your company's name in as little as two months.

SafeLogic's MaintainCert Service Keeps Your Certification in Active Status

With FIPS 140 validations, any changes to a traditional module, additional platform support, or discovered vulnerabilities in the module code could force a revalidation. With MaintainCert, SafeLogic performs all the necessary work with NIST and its certification labs to keep your CryptoComply-based certifications in active status over time, thereby avoiding the dreaded 'historical' status.

Red Hat 7 and CentOS 7 Users Make CryptoComply Their New FIPS Strategy

Red Hat has announced "End of Maintenance" for ten-year-old Red Hat 7 and CentOS 7. Five of Red Hat’s seven FIPS certificates for Red Hat 7.7 have gone Historical. Users still on these platforms who were relying on default OS capabilities risk losing government business without FIPS validated cryptography. SafeLogic has helped several companies in this predicament quickly move to CryptoComply and obtain FIPS certificates in their names.

 

Request an Evaluation Copy of CryptoComply

See What Your Peers are Saying about SafeLogic's FIPS Validation-as-a-Service

 

Want to learn more about how CryptoComply puts you on the path to FIPS 140 success? Speak with one of our FIPS experts!