AnsweredAssumed Answered

FIPS 140 validation of RSA OTP

Question asked by Bill Fanelli on Mar 7, 2019
Latest reply on Mar 8, 2019 by Bill Fanelli

FedRAMP requires that OTP authenticators and verifiers use FIPS 140 validated cryptographic modules (CMs) for hashing within OTP products. In Article Number 000014376, RSA Customer Support states that RSA authenticators do not make use of FIPS validated CMs. 

Question: Do RSA verifier products use FIPS validated CMs?

As a side note: Does RSA have plans to make use of FIPS validated CMs in their authenticators?

Outcomes