FIPS 140-2

FIPS (Federal Information Processing Standards) 140-2 is a set of U.S. NIST (National Institute of Standards and Technology) standards for cryptographic modules that many global organizations are mandated to meet. Thales e-Security delivers products that have been tested and certified to these rigorous standards and that help you comply while also giving you the confidence you need in your cryptographic tools.

FIPS 140-2 Overview

According to FIPS Publication 140-2:

[It] provides a standard that will be used by Federal organizations when these organizations specify that cryptographic-based security systems are to be used to provide protection for sensitive or valuable data. Protection of a cryptographic module within a security system is necessary to maintain the confidentiality and integrity of the information protected by the module. This standard specifies the security requirements that will be satisfied by a cryptographic module.

The FIPS 140-2 compliance standard provides four increasing qualitative levels of security intended to cover a wide range of potential applications and environments. The security requirements cover areas related to the secure design and implementation of a cryptographic module. These areas include cryptographic module specification; cryptographic module ports and interfaces; roles, services, and authentication; finite state model; physical security; operational environment; cryptographic key management; electromagnetic interference/electromagnetic compatibility (EMI/EMC); self-tests; design assurance; and mitigation of other attacks.

Product Overview

Thales e-Security Support for FIPS 140-2 Compliance Standards

Thales develops cryptographic products and subsystems which conform to the FIPS 140-2 standards. Thales e-Security products that meet these compliance standards include:

Hardware Security Modules (HSMs)

The nShield family of FIPS-certified HSMs provide a secure solution for generating encryption and signing keys, creating digital signatures, encrypting data and more in a network environment.

The payShield family of FIPS-certified HSMs are proven hardware security modules dedicated to the payment industry for issuing credentials, processing transactions and managing keys.

Data at Rest Encryption – Vormetric Data Security Platform

At the center of the Vormetric Data Security Platform is the Vormetric Data Security Manager (DSM), providing key and policy management for Vormetric Transparent EncryptionVormetric Tokenization and Vormetric Application Encryption. Delivered in an appliance form factor, the DSM delivers FIPS-certified key storage and protection.

Data in Motion Encryption Hardware

DataCryptor 5000 FIPS-certified appliances provide robust network data security, low latency, and high performance in Layer 2 and IP networks.

In addition to helping you comply with FIPS 140-2; FedRAMPFIPS 199FIPS 200FISMA; and NIST 800-53, Revision 4, Thales e-Security solutions help you comply with:

Common Criteria



Other standards that will arise

Compliance Details

Thales e-Security’s FIPS 140-2 Certified Products


Related Resources

Data Sheet: nShield Connect

The nShield Connect is the premier network-attached hardware security module (HSM) in the Thales family of high security data protection solutions.


Data Sheet: Datacryptor 5000

The Datacryptor 5000 Series is a family of high-speed data in motion security platforms that deliver high performance encryption at near zero latency.