If you’re a government agency or work directly with government-related documents, your file transfer solution of choice must be highly secure. Luckily, The United States Federal Information Processing Standard or FIPS makes it easy for you to know that you’re doing what it takes to protect your agency’s most valuable data.
That means implementing IT solutions that are FIPS compliant – fully tested by a third party lab to make sure they meet approved cryptographic algorithms. Put more simply, ensuring that built-in processes are in place to prevent unauthorized access, resulting in transactions that are secure and fully encrypted.
Government agencies require FIPS 140-2 certified encryption to ensure the protection of data in transit. The Accellion Mobile File Sharing solution utilizes FIPS 140-2 certified encryption. Accellion has completed the rigorous validation process and obtained certification by the Cryptographic Module Validation Program (CMVP) to meet the security requirements set forth for Federal organizations by the National Institute of Standards and Technology (NIST).
All wireless “data in transit” is transmitted using FIPS 140-2 Certified Secure Socket Layer (SSL). With Accellion, government agencies are assured that all data downloaded to wireless devices is in full compliance with US Federal Government guidance and policy. Our certificate is available on the NIST website. All “data at rest” is also stored encrypted whether on a mobile device or on the Accellion system.
FIPS compliance is exactly why Accellion is trusted by many government clients, including the U.S. Securities and Exchange Commission and NASA. Our solution meets FIPS 140-2 certification by automatically running a series of startup tests to validate existing cryptographic libraries. We then check the integrity of the system to make sure the software has not been altered or security has been compromised. If the tests are passed successfully, our solution is initialized; if not, file sharing and collaboration services are immediately disabled. This gives customers the peace of mind that only authenticated recipients will access files and that your documents are safe, around the clock.
Before you invest in solutions that will touch your agency’s critical documents, make sure your short list is focused exclusively on vendors that meet the FIPS 140-1 and 140-2 cryptographic module. And then grant your users clearance for fast and simple data exchanges.