Experience Aryaka's Unified SASE as a Service. Take The Interactive Tour >>
Blog Resources Threat Research Lab Contact Us Customer Login Book a Demo
aryaka aryaka

FIPS Compliance Readiness for Federal Customers

What you will learn?

Compliance

CCPA

CCPA

GDPR

GDPR

ISO/IEC 27001

ISO/IEC
27001

ISO/IEC 27001 SoA

ISO/IEC
27001 SoA

SOC 2

SOC 2

Overview

Customers operating in regulated industries such as government, defense, and federal contracting may require cryptographic components that comply with FIPS 140-2 or FIPS 140-3 standards. This document outlines Aryaka’s current alignment with FIPS requirements and the use of secure cryptographic protocols.

What is FIPS 140-2/140-3?

FIPS 140 is a U.S. government standard defining how cryptographic modules must be designed, implemented, and tested for federal use.

  • FIPS 140-2 is widely adopted and still recognized for compliance.
  • FIPS 140-3 is the updated version and gradually replacing 140-2, adding more stringent validation.

Aryaka’s Current Position on FIPS Compliance

Cryptographic Module Usage

Aryaka security services enforce strong encryption practices aligned with FIPS guidelines by restricting cipher suites and algorithms to those approved under FIPS standards. This approach ensures robust cryptographic controls where regulatory compliance is required.

TLS Cipher Usage by Function:

  • SSL Inspection:
  • TLS_AES_256_GCM_SHA384
  • TLS_AES_128_GCM_SHA256
  • TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
  • TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
  • SSL Optimization:
  • TLS_AES_256_GCM_SHA384
  • TLS_AES_128_GCM_SHA256
  • ECDHE-RSA-AES128-GCM-SHA256
  • ECDHE-RSA-AES256-GCM-SHA384
  • DHE-RSA-AES128-GCM-SHA256
  • DHE-RSA-AES256-GCM-SHA384

Note: Non-FIPS-approved ciphers can be restricted to maintain alignment with FIPS requirements.

TLS & Encryption Standards

  • TLS Versions Supported: TLS 1.2 and TLS 1.3
  • Encryption Algorithms: AES-256 GCM, SHA-2 family (e.g., SHA-256)
  • Data Protection: AES-256 for both data at rest and in transit
  • Security Standards: SOC 2, ISO 27001, GDPR, and other global standards

FIPS-Aligned Deployment Recommendations

Customers in regulated industries can enable a FIPS-aligned configuration by:

  • Using TLS 1.2 or higher with FIPS-approved cipher suites
  • Integrating with audit logging and SIEM systems for compliance visibility

Certification Status

Aryaka is not currently FIPS 140-2 or 140-3 certified across the full product stack. However:

  • We utilize FIPS-validated cryptographic modules
  • We operate in a FIPS-aligned posture, restricting algorithms and cipher usage to match FIPS standards
  • Formal certification is under evaluation, driven by increased demand from federal and defense sectors

FAQs

Is Aryaka FIPS 140-2 certified?

Not at this time. While we are not certified as a whole product, we do utilize FIPS-validated crypto modules and follow FIPS aligned practices in our encryption pipeline.

Can I deploy your solution in a FIPS-compliant manner?

Yes, you can deploy our solution in a FIPS-aligned mode that enforces FIPS-approved cryptography. Please contact our support team for guidance on suitable configurations.

Is FIPS 140-3 supported?

FIPS 140-3 is the successor to 140-2. While our roadmap includes alignment with this newer standard, our current focus remains on customer needs for 140-2 compatibility.

Compliance

CCPA

CCPA

GDPR

GDPR

ISO/IEC 27001

ISO/IEC
27001

ISO/IEC 27001 SoA

ISO/IEC
27001 SoA

SOC 2

SOC 2