Mirantis Achieves New FIPS 140-2 Validation for Encryption
August 04, 2021
By Guillaume Vives
Completes rigorous testing for deployments in U.S. Federal Government
CAMPBELL, Calif., August 4, 2021 – Mirantis, the open cloud company, has received a new certificate of FIPS 140-2 validation covering the encryption modules for Mirantis Container Runtime, Mirantis Kubernetes Engine and the k0s Kubernetes distribution, assuring customers high levels of security for cloud native deployments.
“The issuance of our new FIPS 140-2 validation means that we can continue to offer our clients the highest levels of confidence in the cryptographic modules included with our products,” said Shaun O’Meara, field CTO of Mirantis. “The encryption validation is particularly important in today’s environment of tightening security requirements and helps facilitate the implementation of an effective secure software supply chain and other robust security systems and controls.”
More than $97 billion of government-wide IT spending is budgeted for 2022, all of which is gated by compliance initiatives like FIPS.
Mirantis has partnered with SafeLogic to provide expert guidance and experience as well as ongoing support to ensure that the cryptographic modules included with its products meet the highest standards. The FIPS 140-2 validation was granted after proving conformance with the 11 Derived Test Requirements that must be met. The module’s test report was sent to the Cryptographic Module Validation Program (CMVP), operated by the United States National Institute of Standards and Technology (NIST) and the Canadian Centre for Cyber Security (CCCS), a branch of the Communications Security Establishment (CSE). Their joint office confirmed compliance and issued certificate #3993, available publicly here.
“We are proud to collaborate with Mirantis on FIPS 140-2 validated encryption within their deployments,” said SafeLogic CEO Poga Ahn. “The CMVP’s stringent requirements for cryptography give peace of mind to users, and I’m pleased that Mirantis has embraced this high level of security and assurance.”
By completing the FIPS 140-2 validation process, Mirantis ensures that its products are eligible to be procured by U.S. federal agencies, including the Department of Defense, as well as for use in regulated industries such as utilities, finance, telecommunications, and healthcare. Mirantis has strong expertise in these industry verticals and will be able to continue to provide software and services and expand on future opportunities for growth. While Mirantis Container Runtime was previously FIPS compliant, the new validation also includes Mirantis Kubernetes Engine and K0s to provide broader compliance within the company’s product portfolio.
Mirantis helps organizations ship code faster on public and private clouds. The company provides a public cloud experience on any infrastructure from the data center to the edge. With Lens and Mirantis Container Cloud, Mirantis empowers a new breed of Kubernetes app developers by removing infrastructure and operations complexity and providing one cohesive cloud experience for complete app and DevOps portability, a single pane of glass, and automated full-stack lifecycle management with continuous updates.
Mirantis serves many of the world’s leading enterprises, including Adobe, DocuSign, PayPal, Reliance Jio, Splunk, and STC. Learn more at www.mirantis.com.
SafeLogic provides innovative encryption products for applications in mobile, server, appliance, wearable, and other constrained environments. Our flagship product, CryptoComply™, provides drop-in FIPS 140 compliance with a common API across platforms, while our RapidCert™ process has revolutionized the way that FIPS 140 validation certificates are earned. SafeLogic’s customers include many of the most influential and innovative companies in technology.
SafeLogic is privately held and is headquartered in Palo Alto, California. For more information about SafeLogic, please visit www.SafeLogic.com.