Module Name
Kaseya FIPS Cryptographic Module
Caveat
No assurance of the minimum strength of generated SSPs (e.g., keys) and random strings. No assurance of minimum security of SSPs (e.g., keys, bit strings) that are externally loaded, or of SSPs established with externally loaded SSPs
Security Level Exceptions
- Physical security: N/A
- Non-invasive security: N/A
Embodiment
MultiChipStand
Description
The Kaseya Cryptographic Module is a software-based cryptographic module that provides validated, FIPS 140-3-compliant cryptographic services to the Kaseya product ecosystem. The module is implemented using SafeLogic's CryptoComply library and supports approved algorithms for encryption, hashing, key generation, random number generation, TLS operations, and secure data protection. Across Kaseya's platforms, the module serves as the central cryptographic provider, protecting data in transit and at rest, enforcing strong cryptographic controls, and supporting secure communications between clients, services, and APIs. The module is product-agnostic and integrated consistently across Kaseya's SaaS, on-premises, and hybrid solutions to ensure a unified, validated cryptographic foundation. Products that utilize this module inherit FIPS-validated cryptographic functionality while maintaining product-specific operations outside the cryptographic boundary.
