It is one thing to know you can do something, but it is a different thing to be certified and tested. While top security and performance have always been key to our product efforts, we haven’t always had the luxury of time and resources to take people off development efforts to pay necessary attention to certification. That all changed as of yesterday when we received the FIPS 140-2 Level 1 certificate for HyTrust KeyControl Cryptographic Module 1.0, a component within the HyTrust KeyControl key management server which in turn is a component of HyTrust DataControl (more on DataControl Encryption).
The certificate number is 2524 and the module is listed on the NIST website:
The FIPS 140-2 process was started in January 2015 in conjunction with Aegisolve Cyber Security Laboratories, who are accredited by the U.S. Federal Government National Institute of Standards and Technology (NIST) for Cryptographic and Security Testing.
FIPS PUB 140-2, short for the Federal Information Processing Standard (FIPS) Publication 140-2, is a U.S. government computer security standard used to accredit cryptographic modules. FIPS validation is considered a benchmark for government security and assures end users that a technology has passed rigorous testing under the Cryptographic Algorithm Validation Program (CAVP).
The FIPS 140-2 certified KeyControl Cryptographic Module is a core component within the HyTrust DataControl encryption and key management solution which protects both physical and virtual machines in private and public cloud infrastructures. DataControl is the only encryption solution that allows you to encrypt large databases and datastores with zero downtime and works across the major public cloud infrastructures including vCloud Air, AWS and Microsoft Azure. It is also the only encryption solution that allows you to rekey with zero downtime. Conveniently, encryption travels with the VM, allowing for faster, easier migration from private to public cloud or across cloud providers.
The FIPS 140-2 program ensures that cryptographic key material and algorithms conform to strict NIST guidelines. HyTrust customers can be sure that HyTrust¹s KeyControl key management server conforms to the highest of standards. So while the quality and performance have been there from day one, with recent expansion of the engineering team we have finally been able to get caught up with the necessary homework for certification. Speaking of engineering teams, we are still looking for A Players to fill some key roles – have a look here and let us know if you see anything that might be a good fit.
Big thanks to the folks at Aegisolve, particularly Travis Spann and team who provided the type of guidance and handholding that made a potentially long and painful process considerably less so.