Important News:SafeLogic's CryptoComply Achieves FIPS 140-3 Validation for 28 OEs and Receives Certificate #4781! Read the blog post!
The SafeLogic Blog
Okta & SafeLogic Partnered to Complete Pair of FIPS 140-2 Validations
April 23, 2019 •Walt Paley
It’s not every day that you encounter a unicorn.
“It’s a term that has certainly become overused. You might even say that it ‘jumped the shark’,” said SafeLogic CEO Ray Potter with a smile. “But every once in a while, you encounter an organization that isn’t a myth at all. Okta is very impressive, from their product line to their professionalism, and it was a real pleasure to align our efforts together.”
Okta, like many other cutting-edge companies, selected SafeLogic as their partner to complete FIPS 140-2 validation. Faced with a traditional timeline of at least twelve months, Okta recognized the value in SafeLogic’s tandem solution, combining CryptoComply software with the RapidCert service to compress the validation into mere weeks. In this case, Okta selected two flavors of CryptoComply, Mobile and Java, to maximize coverage of their customers’ platforms and form factors. Validation certificate #3344 was posted by the Cryptographic Module Validation Program (CMVP) at the National Institute of Standards and Technology (NIST) on December 17, 2018 for the Okta Cryptographic Module for Mobile, while certification #3353 was posted on January 29, 2019 for the Okta Cryptographic Module for Java, after being held in limbo during the U.S. government shutdown.
“We’re very excited to bring FIPS 140-2 capabilities to our customers. We know they will benefit from the security and ease-of-use of Okta Verify, particularly those with compliance requirements governed by NIST,” said Chris Niggel, Okta’s Director of Security and Compliance. “By partnering with an established expert like SafeLogic, we were able to strategically shift our engineering efforts to user needs, while reaping the benefits of an accelerated schedule and simplification of the FIPS 140-2 process. We didn’t need to hire any specialists or devote any engineering hours to familiarize with FIPS 140-2 or the challenges therein.”
As a Cloud vendor, Okta pays particular attention to strategic planning for FedRAMP, so when the Project Management Office (FedRAMP PMO) updated the controls in November 2017 to require FIPS 140-2 Level 1 Multi-Factor Authentication for privileged users (control IA-2(11)), Okta recognized that the options to cloud providers for strong authentication were extremely limited. After completing certification in partnership with SafeLogic, Okta Verify simplifies compliance for FedRAMP-authorized applications, and can be used to protect privileged users, as well as unprivileged (normal) users.
“This was a natural next step for us,” added Niggel. “By completing our FIPS validation, Okta customers deploy NIST-benchmarked authentication, allowing them to focus on creating innovative solutions for government customers.”
The innovation doesn’t stop there. Okta leveraged their FIPS 140-2 validation to provide MFA integration with Epic Systems, one of the leading Electronic Health Record (EHR) vendors in the multibillion dollar healthcare industry. This allows doctors to be able to use Epic’s Electronic Prescriptions of Controlled Substances (EPCS) functionality with Okta Verify while complying with U.S. Drug Enforcement Administration (DEA) and Health Insurance Portability and Accountability Act (HIPAA) regulations, and in partnership with vendors like F5, Citrix, and VMware. I recommend reading more about this use case for more information.
"I'm excited that Okta chose SafeLogic for its FIPS 140-2 validated crypto," Potter commented. “The use of MFA is proliferating fast, and rightfully so. Personally, I can’t wait to see what they do next!”
Walt Paley
Walter Paley is the VP of Communications for SafeLogic. He is responsible for strategy, content, marketing, and outreach. Walt has worked with a series of start-ups and companies in growth stages, including Nukona (acquired by Symantec), Qubole, Bitzer Mobile (acquired by Oracle), and TigerText, among others. An Alumnus of the psychology program at UC San Diego, Walt lives in Southern California with his wife, kids, and their black lab, Echo.
Popular Posts
Search for posts
Tags
- FIPS 140 (112)
- FIPS validation (85)
- Encryption (70)
- cryptography (68)
- NIST (62)
- CryptoComply (60)
- SafeLogic (58)
- Industry News (54)
- cryptographic module (51)
- Conversations (49)
- CMVP (48)
- RapidCert (46)
- compliance (41)
- Ray Potter (33)
- SafeLogic News (33)
- Event (27)
- federal (27)
- CAVP (23)
- Cybersecurity (23)
- FIPS 140-3 (20)
- OpenSSL (16)
- government (14)
- FedRAMP (13)
- post-quantum cryptography (13)
- CryptoCompact (12)
- Cryptology (12)
- DoD (12)
- RSA (12)
- healthcare (12)
- partners (12)
- NSA (11)
- PQC (10)
- Cloud (9)
- security (9)
- CMMC (8)
- Suite B (8)
- testing (8)
- whitepaper (8)
- Approved Products List (APL) (6)
- HITECH (6)
- ICMC (6)
- lab (6)
- CEO (5)
- NIST 800-171 (5)
- NIST 800-53 (5)
- OpenSSL 3.0 (5)
- iOS (5)
- procurement (5)
- C3PAO (4)
- Common Criteria (4)
- HITECH Act (4)
- OpenSSL 3.x (4)
- TLS 1.3 (4)
- deadline (4)
- encrypt (4)
- innovation (4)
- procure (4)
- public sector (4)
- Air Force (3)
- BSAFE (3)
- DFARS (3)
- HIPAA Safe Harbor (3)
- HITECH Safe Harbor (3)
- OpenSSL 1.1.1 (3)
- POA&M (3)
- magazine (3)
- queue (3)
- transition (3)
- 3PAO (2)
- ACVP (2)
- BAA (2)
- CIO (2)
- CSP (2)
- Cyber Defense Magazine (2)
- Defense Industrial Base (2)
- HIPAA security controls (2)
- Historical Status (2)
- MFA (2)
- OpenSSL 1.0.2 (2)
- SPRS (2)
- StateRAMP (2)
- entropy (2)
- excellence (2)
- finance (2)
- founder (2)
- gold (2)
- leader (2)
- maturity (2)
- overlap (2)
- pilot (2)
- rsa conference (2)
- solution (2)
- sponsors (2)
- sunset (2)
- vendor (2)
- year (2)
- Active Status (1)
- Alliance for Digital Innovation (1)
- Android (1)
- CIO Prime Views (1)
- DHS (1)
- DIU (1)
- DIUx (1)
- DOJ (1)
- DoDIN APL (1)
- Entropy Source Validation (1)
- FCA (1)
- FIPS Compliance (1)
- FISMA (1)
- GSA (1)
- HITRUST (1)
- Matt Cornelius (1)
- Matthew Cornelius (1)
- Maturity Model (1)
- NCCoE (1)
- OMB (1)
- SLED (1)
- SP800-131A (1)
- SP800-90A (1)
- TLS 1.1 (1)
- background (1)
- best (1)
- co-founder (1)
- codies (1)
- congress (1)
- cybertech (1)
- education (1)
- elliptic curve cryptography (1)
- extended (1)
- faq (1)
- fintech (1)
- fiscal (1)
- fiscal year (1)
- fraud (1)
- globee (1)
- hill (1)
- interview (1)
- kratos (1)
- libgcrypt (1)
- national cybersecurity strategy (1)
- opportunities (1)
- parallel (1)
- profile (1)
- public (1)
- representatives (1)
- reseller (1)
- senate (1)
- senators (1)
- simplify (1)
- state (1)
- stealth mode (1)
- story (1)
- terminology (1)
- trophy (1)
- whistleblower (1)
- whistleblowing (1)