Page History
Add_workflow_for_techpubs | ||||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|
|
Panel | ||||
---|---|---|---|---|
In the section:
|
The SBC 11.1 complies with supports the FIPS-140-2 standard3 mode. This feature enhances the SBC's FIPS Object Module and of the SBC. It introduces known answer tests for cryptographic algorithms FFC (Diffie-Hellman), SSH-KDF, and TLS-KDF for the new FIPS standard FIPS-140-2 3 to perform as known answer tests during the Power-On Self Tests (POSTs). These tests are added to the OpenSSL FIPS object module implementation.
Command Syntax
Code Block |
---|
% set system admin <SYSTEM NAME> fips-140-23 mode <disabled | enabled> |
Command Parameters
Parameter | Description |
---|---|
fips-140-2 3 mode | Use this object to enable FIPS-140-2 3 mode.
NOTE: Once you enable the fips-140-2 3 mode is enabled, it cannot be 'disabled' through the configurationyou cannot manually disable it. A fresh software installation is required to set the FIPS-140-2 3 mode back to 'disabled'. |
Configuration Example
Code Block |
---|
set system admin vsbcSystem fips-140-23 mode enabled |
Overview
Content Tools