Important News:SafeLogic's CryptoComply Achieves FIPS 140-3 Validation for 28 OEs and Receives Certificate #4781! Read the blog post!

Request Consultation
Request Consultation

FIPS 140

Compliance

Technology

Industries

 

 

 

FIPS 140-3 Validated Cryptography Software

 

SafeLogic's CryptoComply Software is the First Step on Your Path to FIPS 140-3 Certification and PQC Migration

 

 

 

NEWS FLASH: SafeLogic’s CryptoComply Encryption Software Achieves FIPS 140-3 Validation

CryptoComply is FIPS 140-3 Certified

 

To learn more, read the blog post.

  • SafeLogic is excited to announce that its CryptoComply v3 encryption software has achieved FIPS 140-3 validation, has received FIPS 140-3 certificate #4781 from the National Institute of Standards (NIST), and is now Generally Available (GA)

  • FIPS 140-3 is the latest FIPS 140 standard from NIST and represents the gold standard for cryptographic module validation

  • SafeLogic’s FIPS 140-3 validated CryptoComply v3 cryptographic software is certified across more than two dozen OEs, from mobile operating systems (e.g., iOS, iPadOS, and Android), to Windows, macOS, Windows Server, Oracle Solaris, and several Linux distributions (e.g., AlmaLinux, Debian, FreeBSD, Red Hat Enterprise Linux, Rocky Linux, SUSE Linux, and Ubuntu). 

CryptoComply is a Family of Standards-Based, FIPS 140-3 Validated, 'Drop-In Compatible' Cryptographic Modules

Designed for use in servers, desktops, the Cloud,
mobile devices and embedded/IoT systems.

Delivers core cryptographic functions via robust algorithm support. Performs secure key management, data integrity, data at rest encryption, and secure communications.

Provides the basis for Common Criteria, FedRAMP, StateRAMP, CMMC 2.0, DoDIN APL and CNSA 2.0 compliance.

Get a NIST FIPS validation certificate in your company's name in two months when combined with SafeLogic's RapidCert expedited validation program. With our MaintainCert support service, SafeLogic will keep your FIPS 140 solution active over time without it going 'historical'.

CryptoComply

 

CryptoComply Supports a Broad Range of Platform Types, Operating Systems, Languages, and Open Source Modules Including ...

 

Platform Types

Appliance
Cloud
Embedded
IOT
Mainframe
Mobile
Server

Operating Systems

AIX
Android
Apple iOS
Apple iPadOS
Apple macOS
AlmaLinux
CentOS
Debian
FreeBSD
Oracle Solaris
Red Hat Enterprise Linux
Rocky Linux
SUSE
Ubuntu
Windows
Windows Server

Programming Languages

C
C++
C#
Go
Java
.NET
Python
Rust
And more...

Drop-In Compliance

BoringCrypto
Bouncy Castle
Dell BSAFE Crypto-J
OpenSSL 1.0.2
OpenSSL 3.0
OpenSSL 3.0.8
OpenSSL 3.1
OpenSSL 3.2
Sun JCE

Algorithms

FIPS 140-2
FIPS 140-3
PQC
CNSA 2.0

Modules

Java
Mobile
Server
OpenSSL 3.x

 

Speak with a SafeLogic Cryptography Expert

CryptoComply Customers Can Now Test SafeLogic's PQC Solutions 

PQC Solutions

 

CryptoComply is also the foundation for SafeLogic's next-generation Post Quantum Cryptography solutions.

SafeLogic customers can start testing and experimenting with the full slate of PQC algorithms NIST standardized in August 2024 by participating in SafeLogic's PQC Early Access Program (EAP)

In addition to the new algorithms that will eventually be incorporated into FIPS 140-3, EAP members will also be able to test SafeLogic PQC capabilities, including cryptographic asset discovery, cryptoagility, and hybrid use cases.

Learn About SafeLogic's PQC Solutions

Only CryptoComply Delivers These Capabilities and Benefits to Companies Entering Markets Requiring FIPS 140-3 Validation

 

Open Source Compatibility Speeds Implementation

CryptoComply modules are drop-in replacements for the low-level cryptographic libraries underlying TLS/SSL functions. CryptoComply is now available as a direct, drop-in replacement for OpenSSL, JCE (Java Cryptographic Extension) providers such as Bouncy Castle, SunJCE, and RSA BSAFE Crypto-J.

Single Code Library Eliminates Wasted Effort

Validations on a per-product basis waste time, money, and effort. CryptoComply delivers a single code library to support cross-operating system platforms. Save valuable resources by incorporating CryptoComply into multiple products or multiple product lines while maintaining your FIPS 140 certification.

OpenSSL 3 and TLS 1.3 with FIPS Validated Encryption

Technology vendors using OpenSSL and TLS while requiring FIPS 140 validated cryptography want to be using the latest and most secure versions of OpenSSL and TLS. CryptoComply OpenSSL 3 FIPS Provider supports both OpenSSL 3 APIs and TLS 1.3 with a FIPS-validated encryption module.

RapidCert Gets You a FIPS 140 Certificate in Two Months

FIPS 140 validations can take over two years. But with CryptoComply and SafeLogic's RapidCert expedited validation program, you can receive a NIST FIPS certification in your company's name in as little as two months.

SafeLogic's MaintainCert Service Keeps Your Certification in Active Status

With FIPS 140 validations, any changes to a traditional module, additional platform support, or discovered vulnerabilities in the module code could force a revalidation. With MaintainCert, SafeLogic performs all the necessary work with NIST and its certification labs to keep your CryptoComply-based certifications in active status over time, thereby avoiding the dreaded 'historical' status.

Red Hat 7 and CentOS 7 Users Make CryptoComply Their New FIPS Strategy

Red Hat has announced "End of Maintenance" for ten-year-old Red Hat 7 and CentOS 7. Five of Red Hat’s seven FIPS certificates for Red Hat 7.7 have gone Historical. Users still on these platforms who were relying on default OS capabilities risk losing government business without FIPS validated cryptography. SafeLogic has helped several companies in this predicament quickly move to CryptoComply and obtain FIPS certificates in their names.

 

Request an Evaluation Copy of CryptoComply

See What Your Peers are Saying about CryptoComply

 

SafeLogic made sense for us. They offered the most efficient path for Lexmark to FIPS 140-2 validation.

Will Anderson, Manager FW/SW Security, Lexmark

By partnering with an established expert like SafeLogic, we were able to strategically shift our engineering efforts to user needs, while reaping the benefits of an accelerated schedule and simplification of the FIPS 140-2 process.

Chris Niggel, Director of Security & Compliance, Okta

We had to have FIPS 140-2 validation, and SafeLogic made it easy!

Stephen Kovac, VP of Global Government & Head of Corporate Compliance, Zscaler

SafeLogic has provided a tremendous competitive advantage to us. I could not recommend them highly enough.

John Bordwine, Public Sector CTO, Symantec

We did it with SafeLogic's encryption modules, which enabled us to reduce the time, cost, and complexity of validating our solution for federal markets.

Jason Kehl, VP of Engineering, Vectra Networks

We looked into doing our own FIPS 140-2 validation, but after doing our research, we decided that partnering with SafeLogic was the quickest and easiest way for us to achieve the certification.

Rick Abbott, Product Manager Hybrid Cloud Security,Trend Micro

SafeLogic delivered a streamlined FIPS 140-2 validation, as promised and on time.

Lisa Grady, Senior Product Manager, Radiant Logic

SafeLogic's technical team was very impressive with their feedback and responsiveness!

Sal Ceravolo, Voice Product Security Program Manager, REDCOM

We wanted a rapid solution, and SafeLogic provided exactly that - a fast, painless FIPS 140-2 validation.

Jon Oberheide, CTO, Duo Security

We're very pleased with how thorough and efficient SafeLogic was with NIST to help us achieve this FIPS 140-2 certification milestone for SyncDog.

Jonas Gyllensvaan, CEO, SyncDog

Standardizing our cryptographic strategy with SafeLogic's FIPS 140-2 validated modules has been a net positive for both our customers and our engineering team.

Jerry Steinhauer, CTO, Singlewire Software

With SafeLogic's drop-in replacement module, the path to FIPS 140 validation was as easy as they had promised.

John Pavlik, Sr. Director Systems Engineering, Crestron

Our collaboration with SafeLogic streamlined the process, as promised, and enabled our engineers to stay focused on product capabilities.

Sherry Wei, Chief Product Officer, Aviatrix

The hard costs were about half of what we were quoted by the consultant!

Henry Gold, General Manager, API Technologies

SafeLogic actually helped us add significant security features, increase our performance gains, and grow our competitive edge.

Dr. Kevin Eveker, СТО, Dispersive Technologies

Want to learn more about how CryptoComply puts you on the path to FIPS 140-3 success? Speak with one of our FIPS experts!