The Computer Systems Laboratory (CSL) of the National Institute of Standards and Technology (NIST) receives many inquiries regarding the implementation of Federal Information Processing Standard (FIPS) 140, General Security Requirements for Equipment Using the Data Encryption Standard. Since FIPS 140 is currently being revised and will be reissued as FIPS 140-1, many agency officials ask if the provisions of FIPS 140 still apply. This CSL Bulletin addresses these issues and provides guidance to agencies on FIPS waiver procedures. The bulletin does not establish new policy or modify the status of existing FIPS; rather, it summarizes and clarifies existing policy.
The Computer Systems Laboratory (CSL) of the National Institute of Standards and Technology (NIST) receives many inquiries regarding the implementation of Federal Information Processing Standard (FIPS) 140, General Security Requirements for Equipment Using the Data Encryption Standard. Since FIPS...
See full abstract
The Computer Systems Laboratory (CSL) of the National Institute of Standards and Technology (NIST) receives many inquiries regarding the implementation of Federal Information Processing Standard (FIPS) 140, General Security Requirements for Equipment Using the Data Encryption Standard. Since FIPS 140 is currently being revised and will be reissued as FIPS 140-1, many agency officials ask if the provisions of FIPS 140 still apply. This CSL Bulletin addresses these issues and provides guidance to agencies on FIPS waiver procedures. The bulletin does not establish new policy or modify the status of existing FIPS; rather, it summarizes and clarifies existing policy.
Hide full abstract