FIPS 140-2 Certified Modules for Ubuntu 16.04 LTS

Chris Johnston

Chris Johnston

on 13 December 2017

We are pleased to announce that officially certified FIPS 140-2 level 1 cryptographic packages are now available for Ubuntu 16.04 LTS for Ubuntu Advantage Advanced customers and as a separate, stand-alone product.

In 2016 Canonical began the process of completing the Cryptographic Module Validation Program to obtain FIPS 140-2 validation for Ubuntu 16.04 LTS. This has been successfully completed and Canonical now offers key components of Ubuntu 16.04 LTS compliant with the FIPS 140-2 level 1 standard. The FIPS compliant modules are available to Ubuntu Advantage Advanced subscribers in the Ubuntu Advantage private archive.

We currently use Ubuntu Linux because of its superior development environment and frequent LTS releases. As a business that develops software, one of our customer’s requirements is to utilize FIPS 140-2 validated software. We have been able to start rolling out the Ubuntu FIPS modules without needing to reinstall the operating system. This keeps our developers happy and productive as Ubuntu is their preferred environment and minimizes transition cost. The FIPS modules also include a VPN solution which we look forward to implementing to allow our developers to work remotely but still meet our customer’s requirements.

-Alex Stuart, North Point Defense

 

Users interested in FIPS 140-2 compliant modules on Ubuntu 16.04 can purchase Ubuntu Advantage at https://buy.ubuntu.com/ or by contacting the Canonical Sales Team.

For further information please visit https://www.ubuntu.com/security.

 

FAQ

What is FIPS?

FIPS stands for Federal Information Processing Standards which is a set of publications developed and maintained by the National Institute of Standards and Technology (NIST), a United States federal agency. These publications define the security criteria required for government computers and telecommunication systems.

What is the FIPS 140-2 standard?

According to NIST, FIPS 140-2 “specifies the security requirements that will be satisfied by a cryptographic module used within a security system protecting sensitive but unclassified information.”

Why should I use the FIPS 140-2 modules?

Government, defence, healthcare, and finance organizations worldwide operate in highly regulated industries and are required to meet the security requirements defined in the FIPS 140-2 standard. This includes the United States, Canadian, and United Kingdom governments as well as government contractors.

Where can I find out more about FIPS?

General information about the Federal Information Processing Standards can be found on the NIST website. More detailed information about FIPS 140-2 itself can be found in the Federal Information Processing Standards Publication 140-2 document.

Which modules are included?

What versions of Ubuntu have FIPS certified modules?

Currently only Ubuntu 16.04 LTS has FIPS certified modules.

How Can I Find Out More?

Click here to make an inquiry, and somebody from our team will get back to you!

Ubuntu Server

The leading platform for scale-out computing, Ubuntu Server delivers the best value scale-out performance available.

Newsletter signup

Select topics you’re interested in

In submitting this form, I confirm that I have read and agree to Canonical’s Privacy Notice and Privacy Policy.

Related posts

IoT Security at Scale: Managing end-to-end security

Title: IoT Security at Scale: Managing end-to-end security for Commercial IoT Gateways Speakers: Kevin Tate, CRO, Rigado Date/Time: August 8, 12:00PM EST / 5:00PM BST Rigado, a Canonical partner, provides a secure, scalable gateway…

Introducing the Dell Precision 7530 and 7730 with Ubuntu

We’re excited to see Dell announce the availability of the latest Precision mobile workstations which come preinstalled with Ubuntu 16.04 LTS. Canonical have been part of Dell’s Project Sputnik since Day 1, and over 5 years later we are…

Fing snaps up 30,000 customers with a secure, future-proof IoT device

The number of IoT devices set to be in use worldwide is due to explode depending on the source over the next couple of years. According to Gartner, the figure is set to be as much as 20.4 bn devices by 2020 with consumer products…