FIPS-CC Mode for GlobalProtect on (Windows and macOS,
ARM-based devices running on Windows and macOS, iOS, Android,
and Linux) ( Requires GlobalProtect app 6.0.7 version ) | In preparation for submitting the GlobalProtect 6.0 app for
FIPS-CC certification, the GlobalProtect app for Windows and macOS
endpoints, ARM-based devices running on Windows and macOS, iOS,
Android, and Linux has been updated to meet FIPS-CC requirements.
The GlobalProtect app FIPS-CC is supported on x86 and ARM-based
platforms. With this feature, you can
deploy the GlobalProtect app in FIPS-CC mode to enforce stronger
security checks for your users, including the following: Enhanced certificate
validity checks Stricter x509v3 certificate checks, such as OCSP/CRL checks
and extended key usage checks Algorithm health checks (such as FIPS self-tests and integrity
checks) to verify the system integrity and ensure that GlobalProtect
uses the correct cryptography for secure communication Use of FIPS and CC compliant algorithms for enhanced security
(for example, to ensure that GlobalProtect does not use weak algorithms
or key sizes) Updated logging that provides the results of these security checks
Federal Information Processing
Standard (FIPS 140-3) and Common Criteria (CC) are security certifications
that ensure a standard set of security assurances and functionalities.
These certifications are often required by U.S. government agencies
and other domestic and international regulated industries. |