Support
Explanations

How Invicti approaches to FIPS

This document is for:
Invicti Standard, Invicti Enterprise On-Premises

Invicti is compatible with the Federal Information Processing Standards (FIPS) 140-2. Invicti can function on a machine where FIPS policy is enabled without throwing any errors.

This compatibility starts with the Invicti Enterprise On-Premises 2.3 and Invicti Standard 6.3.033782.

What is FIPS?

  • FIPS 140-2 is a US government standard that specifies the basic security standards for cryptographic modules in IT devices. The confidentiality and integrity of the information protected by this module require the module's protection.
  • So, all federal agencies as well as their contractors and service providers, including networking and cloud service providers, need to comply with this standard.
  • Beyond the federal agencies, this standard has become the de-facto norm for encryption and is widely acknowledged as a critical security standard.

Configuring Invicti for FIPS

Invicti can function on a machine where FIPS policy is enabled without throwing any errors. This means if the FIPS policy is enabled on a machine that runs or installs Invicti, that policy does not interfere with the running state of the software. Additionally, no error event log entries are recorded.

Invicti does not have FIPS certification or verification.

The following table shows which Invicti application is compatible with the FIPS-policy-enabled environment.

Environment

Application

Status

Windows OS

Invicti Enterprise Web Application

Compatible

Windows OS

Invicti Enterprise Agent

Compatible

Windows OS

Invicti Standard

Compatible

Linux OS, Native

Invicti Enterprise Agent

Incompatible

Linux OS, via Container

Invicti Enterprise Agent

See Compatible. Configuring Invicti Enterprise agent on Linux OS

Configuring Invicti Enterprise agent on Linux OS

In order to continue using the Invicti Enterprise scanning agent on Linux operating systems, you need to use the Dockerization version of the agent.

For further information, see Installing a Scan Agent via Dockerization.

Not found what you're looking for?

Open a ticket and our technical support team will assist you quickly.

Open a ticket This will redirect you to the ticketing system.