CryptoComply by SafeLogic

Additional Info

CompanySafeLogic
Websitehttp://www.SafeLogic.com
Company size (employees)10 to 49

Overview

CryptoComply is a FIPS 140 validated encryption module designed to be deployed within solutions sold to the U.S. Government and regulated industries. It has won dozens of awards and accolades since launching in 2012 and continues to power the cryptography within millions of devices. Since FIPS 140 certification is a requirement for FedRAMP and other Authority to Operate (ATO) programs, companies large and small have partnered with SafeLogic to integrate CryptoComply and earn their own accelerated FIPS certificate with SafeLogic’s RapidCert service.

Note the distinction between ‘FIPS validated’ and ‘FIPS compliant’.
To be ‘validated’, the module must undergo rigorous testing with a 3rd party lab, confirmed by NIST, and placed on the official NIST list (https://csrc.nist.gov/Projects/cryptographic-module-validation-program/Validated-Modules/Search). ‘Compliant’ means that the module uses the right techniques and algorithms and could theoretically go through the certification process in the future.
The U.S. federal mandate calls for FIPS validation – a current, active certificate proving conformance. SafeLogic simplifies that effort and delivers in less than 8 weeks.

How we are different

- CryptoComply was designed to be fully compatible with OpenSSL's open source architecture and replaces the OpenSSL FIPS object module that has now been moved to 'Historical' status by NIST
- CryptoComply is bundled with RapidCert, which delivers FIPS validation in less than 8 weeks, a far cry from the traditional 12-18 months
- CryptoComply is also available for Java JCE, NSS, and Libgcrypt use cases, providing the same savings in cost, time, and effort.