Windows validating

Cryptographic modules are stored in the "windows\system32" or "windows\system32\drivers" directory. #665); FIPS186-4 RSA; RSADP - RSADP Primitive (Cert. The Windows operating system provides a group (or local) security policy setting, “System cryptography: Use FIPS compliant algorithms for encryption, hashing, and signing”, which is used by many Microsoft products to determine whether to operate in a FIPS-approved mode. #663); SP800-135 - Section 4.1.1, IKEv1 Section 4.1.2, IKEv2 Section 4.2, TLS (Cert. Within the US Federal government, the FIPS 140 standard applies to any security system (whether hardware, firmware, software, or a combination thereof) to be used by agencies for protecting sensitive but unclassified information. Some agencies have expanded its use by requiring that the modules to be procured for secret systems also meet the FIPS 140 requirements. When this policy is set, the validated cryptographic modules in Windows will also operate in a FIPS-approved mode.

The list of validated CAPI binaries is identified in the CAPI Validated Cryptographic Modules section below and the list of validated CNG binaries is identified in the CNG Validated Cryptographic Modules section below.

The following list contains some of the Windows components and Microsoft products that rely on FIPS 140 validated cryptographic modules: This section provides information for System Integrators and Auditors who are responsible for deploying Microsoft products in a manner consistent with the product’s FIPS 140 Security Policy.

There are two steps to ensure that Microsoft products operate in FIPS mode: Systems Integrators must ensure that all cryptographic modules installed are, in fact, FIPS 140 validated.

We'll send an email to to let you know if you've provided enough information to recover your account.

It usually takes us about 24 hours to review the information submitted.

Leave a Reply