Tuxera’s CryptoCore library has successfully passed the US National Institute of Standards and Technology’s Cryptographic Algorithm Validation Program (CAVP), the first step towards certification under Federal Information Processing Standard FIPS 140-3.
While there are global standards for developing (IEC/ISO19790) and testing (IEC/ISO24759) cryptographic modules, FIPS 140-3 is increasingly relied upon globally as it is stricter and ensures that both global and US-specific requirements are met.
Tuxera’s CryptoCore library – an operating system and hardware-agnostic software solution for encryption and key agreement algorithms – has now successfully passed the CAVP. This is a prerequisite to move to the Cryptographic Module Validation Program (CMVP). Both programs are performed according to FIPS 140-3.
Cryptography is used to encrypt data as well as for digital authentication and signatures. High-quality cryptography is in great demand as data encryption requirements are increasingly specified across a wide variety of applications from automotive to smart energy. The EU’s Cyber Resilience Act, which comes into force in 2027, will introduce the requirement for all internet-connected devices to be secure by design, and data encryption will play an important role in ensuring the requirement is met.
Current regulations already set strict limits on data handling. In some cases, encrypting certain data is the only way to comply with requirements such as the General Data Protection Regulation (GDPR) used in the EU and other, local data protection regulations.
There are already examples of companies receiving GDPR penalties for not properly encrypting the data of cybercrime victims. There are also examples of unprotected networks being used as the point of entry for cyberattacks. Using secure protocols combined with the key agreement and encryption can prevent a range of attacks, reducing the risk of reputational damage and financial losses.
Tuxera’s CryptoCore library helps protect device manufacturers from such consequences and ensures that their products can be sold in as many markets as possible – even those with the strictest standards for data security.
We’ll keep you posted on CryptoCore’s journey toward passing the CMVP!
Katja Hakoneva
Katja is product manager for networking and crypto products at Tuxera. A veteran in product management, Katja brings experience from both ends of the scale: from large OEMs and physical products to smaller growth companies selling SaaS. Katja actively participates in different industry events, with a particular focus on cyber security events. In her free time, she is an enthusiastic épée fencer, and you typically hear about it in the first 5 minutes of meeting her.