The IT Law Wiki
Advertisement

Citation

NIST, Security Requirements for Cryptographic Modules (FIPS 140-2) (May 25, 2001) (full-text).

Overview

FIPS 140-2 specifies the security requirements for a cryptographic module used within a security system protecting sensitive information in computer and telecommunication systems (including voice systems) and provides four increasing, qualitative levels of security intended to cover a wide range of potential applications and environments. Agencies are required to encrypt agency data, where appropriate, using NIST-validated cryptographic modules as specified in FIPS 140-2.

Advertisement