The Federal Information Security Management Act (FISMA) is a federal law in the United States, enacted in 2002 to bolster computer security within the government networks. It defines mandatory processes for federal government information systems and mandates yearly audits for compliance. These processes are defined in the Federal Information Processing Standards (FIPS) documents issued by the National Institute of Standards and Technologies.
After being signed into law in 2002, FISMA has brought major attention to data security within the whole federal government. One of the key NIST publications specifying requirements for security technologies is FIPS 140-2, which is a security standard used to accredit cryptographic modules. All federal government agencies need to use data security products that are FIPS 140-2 validated
SSH's Information Assurance Platform incorporates a FIPS 140-2 certified cryptographic module to meet the compliance requirements of FISMA and other government regulations.
SSH's products have been certified on both Windows and Unix platforms, while the mainframe components utilize the integrated FIPS-certified IBM hardware accelerators for easy FIPS-compliance in heterogeneous, cross-platform environments.