Features > Transfer Security > FIPS 140-2 Validation

Cerberus FTP Server

What is FIPS 140-2?

Cerberus FTP Server FIPS 140-2 Compliance

Cerberus FTP Server uses an embedded FIPS 140-2-validated cryptographic module (Certificate #4282 using the OpenSSL 3 FIPS Provider Module) for all cryptographic operations and meets federal cryptographic requirements with FIPS 140-2 validated cryptography up to 256-bit AES encryption over SSL and SSH. This certificate will remain active through the FIPS 140-2 sunset date of 21 September 2026. 

Cerberus will add FIPS 140-3 support when OpenSSL receives FIPS 140-3 validation, which will likely come at some point in 2024. 

Meets all FIPS 140-2 cryptographic requirements

Certified by NIST/CSEC’s Cryptographic Module Validation Program

What is FIPS 140-2 Compliance?

In 2001, NIST‘s Federal Information Processing Standard (FIPS) publication 140-2 established a security standard for cryptographic modules used by the U.S. federal government in the collection, storage, transfer, sharing and dissemination of sensitive information. Most federal agencies and regulated industries must comply with the FIPS 140-2 standard by law, and all products sold to the federal government that use cryptographic modules must be FIPS 140-2 validated.

What Organizations Require FIPS-Compliant File Transfer?

The organizations below are required to use FIPS-compliant cryptography by law:

  • U.S. federal and state government agencies that deal with citizens’ private information
  • The U.S. military and its vendors working with sensitive but unclassified data
  • Vendors, suppliers and third parties selling cryptographic modules to the federal government or using these modules in support of their services

Industries that deal with sensitive data requiring high levels of privacy for regulatory or security reasons will often require the FIPS 140-2 standard as well. These industries include:

  • Financial institutions
  • Information-processing vendors
  • Healthcare-related organizations that fall under HIPAA regulation
  • Educational institutions
  • Utilities

However, the FIPS 140-2 standard can be used any organization that wishes to transfer files securely, safeguard business data, and protect its most critical information.

What Does it Mean to be FIPS 140-2 Compliant?

A FIPS-validated solution must use cryptographic algorithms and hash functions that meet the FIPS requirements. Specifically, a FIPS-validated solution must:

  1. Use algorithms and hash functions approved under FIPS 140-2 requirements
  2. Be validated by the joint NIST/CSEC Cryptographic Module Validation Program (CMVP)

     

    Full Feature List

    Cerberus FTP Server HIPAA Compliance Icon

    Protocols

    FTP, FTP/S, SFTP, SCP, HTTP/S

    Transfer Security

    SSH, SSL, FIPS 140-2

    MFT Automation

    Event, Alert & Sync Tools

    Cerberus FTP Server Automated File Transfer Event Manager Icon

    Environment

    Windows Server, Cloud & Virtual

    Access Protection

    IP, User & Protocol Restriction Tools

    Account Management

    AD, LDAP, 2FA, SSO & More

    Auditing and Reporting

    File Access, User and Admin Logging

    Cerberus FTP Server Automated File Transfer Event Manager Icon

    Administration Tools

    API, Sync Manager, & Other Tools

    Cerberus FTP Server Editions

    Professional

    Secure file transfer server for Windows

    • FTP, FTPS, SFTP & SCP
    • IP access controls
    • Groups & virtual directories
    • Web admin & SOAP API
    • AD/LDAP integration
    • FIPS 140-2 encryption
    • Server replication
    • Phone & email support

    $999 / year

    View Professional

    Enterprise

    Enhanced automation & security

    • All Professional features
    • HTTP/S web client
    • Azure AD SSO support
    • Event automation & alerts
    • File retention policies
    • Ad hoc file sharing
    • Advanced stats & reporting
    • Phone & email support

    $2,499 / year

    View Enterprise

    Cerberus FTP Server Five Star CNET Reviews

    Enterprise Plus

    Mission-critical performance & support

    • All Enterprise features
    • Scalable global solution
    • 24/7/365 severity 1 support
    • Rogue transfer detection
    • Performance testing
    • Automated network scanning
    • Upgrade & migration support
    • DR, test & dev licenses

    $4,999 / year

    View Enterprise Plus

    Cerberus FTP Server 5 Star G2 Reviews

    Raved and Reviewed

     

    Here’s what a few of our many satisfied customers have to say about Cerberus FTP Server.

    “Our users have found Cerberus to be straightforward.  We have handled many service tickets over the past three years, and Cerberus has had the least number of issues, by far.”

    James Fayson

    IT Service Owner, PACE, OASIS, Duke Health Technology Solutions

    “We’ve been using Cerberus for at least five years, and it’s been awesome. Everything’s been very simple and easy, and we haven’t come across any limitations. It always just seems to work.”

    Jake Cloward

    Support Manager, Companion Corporation

    “It’s not designed to be complicated, and it doesn’t need to be managed. I can hire someone new and they can be up to speed in minutes. Everyone on the team loves it.”

    Tim Klein

    Systems Administrator, Netalytics/Methasoft

    Latest News

    New Feature Highlights in Cerberus FTP Server Version 13

    In case you missed our earlier announcement, we released Cerberus FTP Server Version 13 on April 10th. In this post, we want to highlight some of the new features and benefits that administrators and users will enjoy. (Of course, you can always read the full release...

    Cerberus FTP Server 13.0 Introduces Enhanced SSH Options

    Continuing from our TLS enhancements introduced in Cerberus FTP Server 12.11, we are adding new key exchange and cipher options as shown in the screenshot below: Key Exchange Algorithms Version 13 adds Edwards Curves (x25519 and x448) to the supported list of KEXs....

    Cerberus FTP Server 13.0 Introduces Single Sign-On Support

    Single Sign-On (SSO) provides a seamless authentication experience to users, allowing them to log in once and access all authorized applications without the need to enter separate credentials. Security Assertion Markup Language (SAML) is a standard protocol for...