Home
Resources
Reference Guides
Additional reference guides with information on items such as Alerts and Incidents and Federal Information Processing Standards (FIPS).
Federal Information Processing Standards
Introduction
Compliant FIPS cryptography features
A description of the features that are compliant with Federal Information Processing Standards (FIPS), and those that are non-compliant.

Resources
- Release Notes
  Access the release notes for release-based products.
- N2OS Configuration
  The N2OS Configuration - Reference Guide.
- N2OS Software Development Kit
  The N2OS Software Development Kit (SDK).
- Integration Guides
  Integration guides to help you use applications that integrate with Nozomi Networks products.
- Reference Guides
  Additional reference guides with information on items such as Alerts and Incidents and Federal Information Processing Standards (FIPS).
  - Alerts and Incidents
  - Federal Information Processing Standards
    - Introduction
      - Federal Information Processing Standards
        A description of the use of Federal Information Processing Standards in the Nozomi Networks software.
      - Compliant FIPS cryptography features
        A description of the features that are compliant with Federal Information Processing Standards (FIPS), and those that are non-compliant.
      - FIPS operations auditing
        The Federal Information Processing Standards (FIPS) audit trail tracks specific FIPS events.
      - FIPS mode status
        When running in Federal Information Processing Standards (FIPS) mode, the sensor adds a FIPS indicator after the version string.
      - Supported SSH protocols in FIPS mode
        A list of all the secure shell (SSH) protocols that are supported in Federal Information Processing Standards (FIPS) mode.
      - Supported HTTPS protocols in FIPS mode
        A list of all the Hypertext Transfer Protocol Secure (HTTPS) protocols that are supported in Federal Information Processing Standards (FIPS) mode.
      - Important notes
        Important notes that you should be aware of.
    - Configuration
- Quick Start Guides
  Hardware Quick Start Guides.
- Security
  Stay up-to-date with the most recent information and solutions for all vulnerabilities that affect Nozomi Networks products.
- Print format documentation
  A list of all the technical documentation that is available in print format.
- Documentation archive
  Access previous versions of the technical documentation.

Compliant FIPS cryptography features

A description of the features that are compliant with Federal Information Processing Standards (FIPS), and those that are non-compliant.

To achieve full compliance with Federal Information Processing Standards (FIPS), make sure that the system is configured in FIPS-mode and only uses FIPS-compliant features.

FIPS-compliant features

After enabling FIPS mode, these features will use compliant cryptography:

hypertext transfer protocol secure (HTTPS) Web interface
secure shell (SSH) remote access
Remote Collector and Central Management Console (CMC) data flows
Local users password encryption
Configuration secrets stored in the local configuration file

Non-compliant features

The Nozomi Networks software does not prevent you from using features that are not compliant with FIPS. If you want to achieve full compliance with FIPS, make sure that the system:

Is configured in FIPS mode
Only uses FIPS-compliant features

The list below shows some, but not all, non-compliant features:

server message block (SMB) remote backup transfer
Unencrypted Syslog forwarding
simple network management protocol (SNMP) with users configured with MD5 or DES protocols
Any cryptography usage outside the security boundary of the FIPS library