With great pleasure and satisfaction, I am sharing with the community that the cryptographic library used in BigFix 11 has achieved the FIPS (Federal Information Processing Standard). 140-2 certification for security of encryption algorithms!
Please refer to the certificate and related documentation on the NIST site:
Cryptographic Module Validation Program | CSRC (nist.gov)
BigFix has always used FIPS – compliant encryption modules; BigFix former FIPS certification, though, was moved to “Historical” list by CMVP following the End of general support for the OpenSSL v2 crypto module.
We recommend every BigFix customer to plan an upgrade to BigFix 11 to be able to leverage the enhanced security and functionality that the new release provides.
At the same time, we want to reassure that crypto code embedded in previous release (9.5 and 10.0) is still being actively maintained and vulnerabilities will continue to be addressed.
Looking forward, it is our intention to certify BigFix also with the latest FIPS 140-3 standard, while current FIPS 140-2 is fully valid and supported by NIST until September 2026.
In case you have questions, don’t hesitate to ask.
Alessandro Dinia
BigFix Product Manager