Test Utimaco's SecurityServer with our free simulator. Register here.


Utimaco CryptoServer Se Gen2 now validated according to FIPS 140-2

Jan 27, 2017

The National Institute of Standards and Technology (NIST) validated the Utimaco CryptoServer Se Gen2 according to the Federal Information Processing Standard (FIPS) 140-2, which describes the security requirements for cryptographic modules. FIPS is the de facto standard in numerous countries.
Companies and organizations need a FIPS140-2 encryption solution when they:

  • process confidential or sensitive data for public authorities in the USA or Canada
  • set up a timestamp or signature service as Trust Service Provider according to eIDAS.

CryptoServer Se Gen2 is a tamper-proof hardware security module (HSM). It provides secure cryptographic services such as:

  • encryption and decryption (for various cryptographic algorithms like triple-DES, RSA and AES)
  • hashing
  • signature creation and verification (RSA, ECDSA, DSA)
  • random number generation
  • secure key generation, key storage and other key management functions

CryptoServer Se Gen2 is an encapsulated, protected security module. It is realized as a multi-chip embedded cryptographic module as defined in FIPS 140-2 Level 3, which requires tamper detection and response mechanisms as well as identity-based authentication. When operated in FIPS mode, the module offers a general purpose API with FIPS-approved algorithms as well as an administrative interface. A Secure Messaging concept protects communication to and from the module.

For further information, please check our Security Policy or visit the NIST website.