SecureBlackbox 16: Is SecureBlackbox FIPS-certified?


SecureBlackbox itself is not certified. However, on Windows it can work in so-called FIPS mode, when only FIPS-certified cryptographic modules of Windows are used. FIPS mode is enabled by assigning the SBCryptoProvManager.FIPSCompliantCryptoProviderManager object to the CryptoProviderManager property of the high-level component. FIPS mode is supported for PKI, SSH, SFTP, PDF, XML, and Office document security. FIPS mode is NOT supported for OpenPGP, SSL/TLS, HTTPS, and FTPS because of the very limited set of algorithms offered by Windows certified cryptographic modules.

The next step is to verify if the host system does have certified versions of the mentioned cryptographic modules (see this article). SecureBlackbox doesn't perform such checks.

We appreciate your feedback. If you have any questions, comments, or suggestions about this article please contact our support team at support@nsoftware.com.