Introducing Mirantis k0rdent Virtualization: Single platform for VMs and containers   |  Learn More

Contact Us
Docs
Store
Partners
Training
Public Sector
Why k0rdent?
Products

AI INFRASTRUCTURE MANAGEMENT

k0rdent logo
Mirantis k0rdent AI

AI application and platform management at scale

INFRASTRUCTURE PRODUCTS

k0rdent enterprise logo
Mirantis k0rdent Enterprise

Manage AI, Container & VM workloads at fleet scale

mke logo
Mirantis Kubernetes Engine (MKE)

Enterprise container platform

mosk logo
Mirantis OpenStack for Kubernetes (MOSK)

Private cloud platform

SECURE SOFTWARE SUPPLY CHAIN

mcr logo
Mirantis Container Runtime (MCR)

Industry leading runtime

msr logo
Mirantis Secure Registry (MSR)

Enterprise container registry

MANAGEMENT AND DEPLOYMENT

lens logo
Lens Desktop

The world’s most popular Kubernetes IDE

amazee logo
amazee.io

Application Delivery and Hosting Platform

OPEN SOURCE

k0rdent logo
k0rdent

Open source distributed container management

k0smotron logo
k0smotron

Kubernetes control plane manager

k0s logo
k0s

Zero friction Kubernetes

Solutions
AI/ML Infrastructure Solutions
Multi-Cloud & Multi-Cluster Management Solutions
VMware Replacement
Services
Modern Application Delivery
App Modernization
Cloud Platform Operations
AI Inferencing Platform
Workload Migration
Enterprise Support
Resources

KNOWLEDGE BASE

Resource Library
Blog
Case Studies
Webinars
Tech Talks
Cloud Native Cookbook

COMPANY

Press Releases
About
Careers
Leadership
Events
Free Trials
k0rdent logo
Mirantis k0rdent AI

AI application and platform management at scale

mke logo
Mirantis Kubernetes Engine (MKE)

Enterprise container platform

msr logo
Mirantis Secure Registry (MSR)

Enterprise container registry

mcr logo
Mirantis Container Runtime (MCR)

Industry leading runtime

mosk logo
Mirantis OpenStack for Kubernetes (MOSK)

Private Cloud Platform

GET STARTED
< BLOG HOME

From Heartbeat to Holistic Implementation — Secure Cloud Native Deployments with FIPS 140-2 and DISA STIG

Michelle Yakura - August 25, 2021
- cloud native, cybersecurity, DISA, FIPS, security, stig
image

Cybersecurity has become national security as parties both foreign and domestic increasingly try to hack into government information systems. It is no wonder then that U.S. federal requirements for information security have also become the gold standard for cybersecurity in financial services, telecommunications, healthcare and other regulated markets. 


In cloud computing, chief among these requirements are FIPS 140-2, a security standard for cryptographic modules published by the National Institute for Standards and Technology (NIST), and DISA STIG, a set of best practices from the Department of Defense. Designed to be “secure by default,” the Mirantis Cloud Native Platform portfolio features FIPS 140-2 and DISA STIG compliant products to offer organizations the assurance and convenience of ready-to-deploy solutions validated for the highest levels of protection.

Achieving Compliance with FIPS 140-2 and DISA STIG

This month, Mirantis announced a new certificate of FIPS 140-2 validation covering encryption modules for the following products:

Additionally, we have achieved DISA STIG compliance for Swarm-based solutions and are in the process of acquiring compliance for Kubernetes. 


Mirantis has more than 100 government customers across four continents, ranging from military forces and securities commissions to health ministries and transportation agencies. Our FIPS 140-2 validation is essential to our business with U.S. federal agencies, as procurement officers will only talk to cloud computing vendors that are compliant. Similarly, doing business with the U.S. military requires DISA STIG compliance. 


Increasingly, enterprises in industries as diverse as banking, insurance, healthcare, retail, manufacturing, and telecommunications are also mandating or prioritizing FIPS 140-2 and DISA STIG compliant solutions.


So how do FIPS 140-2 and DISA STIG relate within a cloud native deployment?

Why Federal Agencies Choose Mirantis Container Solutions

The Onion Metaphor

You didn’t expect to read about onions in this blog, now did you? I also was surprised when I heard one of Mirantis’ top cloud security experts refer to this metaphor, but it makes sense. Cloud security, like an onion, has many layers. Standards like FIPS 140-2 are at the core of the onion, because it provides secure communication. By implementing FIPS 140-2 right at the container runtime, Mirantis Cloud Native Platform secures the heartbeat of container operations, protecting any operation that involves a container action, whether it’s starting up a container, deleting a container, scaling up a container, etc.


Moving outward from the core, we implement security at the cluster level. Recently, Mirantis expanded our FIPS 140-2 validation with encryption modules licensed for Mirantis Kubernetes Engine, our container management platform, and k0s, a lightweight open source Kubernetes distribution. By implementing FIPS 140-2 at the orchestration layer, we also protect any operation that involves a cluster action, such as deploying applications with Kubernetes or Swarm, scaling clusters, managing and deploying private images, etc. 


Many of our customers need to achieve FIPS 140-2 certification for their entire solution stack, so integrating the already FIPS-validated Mirantis products makes their own certification process easier. Having FIPS 140-2 validation for k0s is especially important for edge computing and IoT use cases, to provide high security at remote locations with a small footprint.


As you expand further towards the outer layers of the onion, then DISA STIG provides a set of rules that should be followed to secure a cloud native deployment from a more holistic approach. DISA STIG factors in the entire implementation of your cloud solution, including your adherence to best practices, the processes you use to govern operations, and how you secure your software supply chain.


So if you’re concerned about protecting your Kubernetes or Swarm deployments, Mirantis Cloud Native Platform has got you covered on multiple fronts, ranging from the core of container operations to the orchestration layer to the implementation as a whole.


To learn more about FIPS 140-2 and DISA STIG, watch a webinar recording featuring Mirantis security expert Bryan Langston, Real Verifiable Security.

Recommended posts

Lens ID Just Leveled‑Up Your Security with Two‑Factor Authentication

Lens ID Just Leveled‑Up Your Security with Two‑Factor Authentication

READ NOW
A Milestone for Lightweight Kubernetes: k0s Joins CNCF Sandbox

A Milestone for Lightweight Kubernetes: k0s Joins CNCF Sandbox

READ NOW
How to Mitigate Risk for NGINX Ingress Controller Vulnerabilities Affecting Mirantis Kubernetes Engine

How to Mitigate Risk for NGINX Ingress Controller Vulnerabilities Affecting Mirantis Kubernetes Engine

READ NOW

Michelle Yakura

Michelle Yakura is a Sr. Product Marketing Manager at Mirantis.

Choose your cloud native journey.

Whatever your role, we’re here to help with open source tools and world-class support.

GET STARTED
contact-us
cloud-native-coffee-sidebar

Join Our Exclusive Newsletter

Get cloud-native insights and expert commentary straight to your inbox.

SUBSCRIBE NOW
lens-tutorial

TUTORIAL:

Working with multiple K8s clusters in Mirantis Container Cloud and Lens

Learn to use the Lens Extension for MCC to accelerate development for multiple K8s clusters.

READ NOW
technology-saas-sidebar

SOLUTIONS:

Technology & SaaS

One-stop Kubernetes solutions to accelerate innovation.

LEARN MORE
Mirantis logo
  • Linkedin Icon
  • Facebook Icon
  • Youtube Icon
  • X Icon

900 E Hamilton Avenue
Suite 650
Campbell, CA 95008
+1-650-963-9828

Privacy Policy

Do Not Sell My Information

UK Modern Slavery Act Statement

Why k0rdent?
Products
Open Source
Solutions
Services
Knowledge Base
Company

© 2005 - 2025 Mirantis, Inc. All rights reserved. “Mirantis” and “FUEL” are registered trademarks of Mirantis, Inc. All other trademarks are the property of their respective owners.