Federal Information Processing Standards support

Federal Information Processing Standards (FIPS) support is incorporated in a single BMC AMI Datastream package and with the generally available security information and event management (SIEM) package. This package supports FIPS mode encryption to meet the National Institute of Standards and Technology (NIST) FIPS 140-2 criteria for use by governments or similar organizations.


FIPS mode enforces more restrictions than non-FIPS mode. For example, the key database must have been created in FIPS mode, and certain cipher suites are considered too weak for FIPS mode. For more information, see the following resources: 

  • "System SSL and FIPS 140-2" in the IBM publication z/OS Cryptographic Services System Secure Sockets Layer Programming
  • The US Department of Commerce publication SECURITY REQUIREMENTS FOR CRYPTOGRAPHIC MODULES

Important

Although not a validated cryptographic module, BMC AMI Datastream uses IBM z/OS Cryptographic Services for all cryptographic services. IBM z/OS Cryptographic Services is FIPS 140-2 certified.

For information about requesting FIPS mode encryption, see SERVER-statement.

 

Tip: For faster searching, add an asterisk to the end of your partial query. Example: cert*