Discuss this help topic in SecureBlackbox Forum

Enable FIPS-compliant mode

FIPS-compliant mode ensures that all cryptographic modules used during negotiation are certified in accordance with FIPS 140-2. This task is accomplished by leveraging all cryptographic tasks to Windows CryptoAPI modules which carry appropriate certifications. Note that as CryptoAPI supports a limited set of cryptographic algorithms, your SSH connectivity may be affected. For example, DH key exchange algorithms will not be used, as there's no certified DH module available in CryptoAPI.

You can enable FIPS mode by assigning a dedicated FIPS-compliant cryptoprovider manager to your SSH class:


	client.CryptoProviderManager = SBCryptoProvManager.Unit.FIPSCompliantCryptoProviderManager();

How To articles about SFTP client

Discuss this help topic in SecureBlackbox Forum