FIPS Version of Cortex XSOAR

Cortex XSOAR offers a FIPS version of Cortex XSOAR, using a software library validated against FIPS 140-2.
Cortex XSOAR offers a FIPS version of Cortex XSOAR. The FIPS version uses a software library that has been validated against FIPS 140-2, a U.S. government standard used to approve cryptography modules. FIPS 140-2 requires that cryptographic modules use approved algorithms and key sizes. FIPS validated algorithms include symmetric and asymmetric encryption techniques, hash standards, digital signatures, and message authentication. Details of the software cryptographic library that has been validated against FIPS 140-2, a U.S. government standard, can be viewed at the Cryptographic Module Validation Program website, Certificate 3812.
The FIPS version of Cortex XSOAR can be used for single server deployments, multi-tenant deployments, and high availability deployments (single server or multi-tenant).
The FIPS version of Cortex XSOAR has been tested with Red Hat 7.7 and CentOS 7.7, and is vender affirmed to be functionally equivalent with all other Linux versions supported by the non-FIPS version of Cortex XSOAR.
Cortex XSOAR will, by default, install the standard version of Docker or Podman for your operating system. If you require the FIPS version of Docker or Podman instead, it must be installed prior to installing the FIPS version of Cortex XSOAR.
The FIPS version of Cortex XSOAR has the following limitations:
  • D2 agents and shared agents are not supported.
  • Upgrades between FIPS and non-FIPS certified versions are not supported, including database migrations, backups, and restores.
  • The FIPS version supports only engines installed on the Linux operating system

Recommended For You