Federal Information Processing Standards (FIPS) are standards and guidelines issued by the United States National Institute of Standards and Technology (NIST) for federal government computer systems. FIPS can be enabled for WebSphere® Application Server.
FIPS are developed when there are compelling federal government requirements for standards, such as for security and interoperability, but acceptable industry standards or solutions do not exist. Government agencies and financial institutions use these standards to ensure that the products conform to specified security requirements. For more information on these standards, see the National Institute of Standards and Technology.
WebSphere Application Server integrates cryptographic modules including Java Secure Socket Extension (JSSE) and Java Cryptography Extension (JCE), which have undergone FIPS 140-2 certification. In the WebSphere Application Server documentation, the IBM® JSSE and JCE modules that have undergone FIPS certification are referred to as IBMJSSEFIPS and IBMJCEFIPS.
To enable FIPS for WebSphere Application Server, see Configuring Federal Information Processing Standard Java Secure Socket Extension files.
See Secure transports with JSSE and JCE programming interfaces for more information on the impact the Federal Information Processing Standard has on WebSphere Application Server.
You can find more information about the Federal Information processing Standards (FIPS) on the Support website including recommended updates for WebSphere Application Server.