FIPS (Federal Information Processing Standards) is a set of standards developed by the United States Federal Government for use in computer systems. FIPS 140-2 is the subset of standards which defines approved encryption algorithms used for handling sensitive information.
If your Clearswift ARgon for Email has been pre-configured to operate in FIPS Mode, the cryptographic modules used by the ARgon Server are compliant with FIPS-140-2.
FIPS Mode can only be implemented on Email ARgon Servers.
Consequently, in FIPS mode, you will not be able to do the following:
Many organizations handle sensitive information on a regular basis. Government departments, financial institutions and other high security industries require a recognized level of security when exchanging information. FIPS-140-2 provides approved standards for message encryption and data handling, and is a key requirement for an increasing number of organizations. In FIPS Mode, the Clearswift ARgon for Email is compliant with this requirement.
FIPS Mode provides confidence that the ARgon Server is handling sensitive and unclassified information to the FIPS 140-2 standard required by US Federal Government.
FIPS-enabled Email ARgon Servers can be peered with other FIPS enabled ARgon Servers. However, FIPS compliance can not be extended to ARgon Server Peers which are not FIPS enabled.
You can only restore FIPS configurations to a FIPS enabled ARgon Server. This ensures FIPS compliance is maintained consistently on your ARgon Server or across your ARgon Server Peers.
You cannot restore a non-FIPS configuration to a FIPS enabled ARgon Server.
You cannot restore a FIPS configuration to a non-FIPS enabled ARgon Server.
If a ARgon Server is FIPS enabled, weaker S/MIME signatures (for example, signatures from a non-FIPS enabled ARgon Server) will be identified as 'Unknown'.
There are a number of processes that are necessary to the operation of the ARgon Server which are currently not FIPS compliant. These are described in detail in the FIPS Areas of Non Compliance topic in the Reference section.
FIPS mode is selected during the installation of Clearswift ARgon for Email. It cannot be enabled (or disabled) without re-installing the ARgon Server.