Skip to content
Spectralink Logo Spectralink
Discover More

Fortifying Data Protection: Understanding FIPS 140-2 Validation for Enhanced Cyber Security in Enterprise Solutions

Spectralink thumbnail

Cyber security and data protection are constantly a top concern of enterprises, no matter what industry. From safeguarding patient data to keeping customer or guest personal information secure to protecting financial information like credit card numbers or social security numbers, having security measures in place when it comes to technology is critical for protecting sensitive information. In a previous blog post, we touched upon the Android Enterprise Recommended security standards. Now, we take a look into FIPS security standards.

What is FIPS
FIPS stands for Federal Information Processing Standard and refers to a minimum set of security standards put forth by the US federal government that applies to all cryptographic modules in information technology products used in federal government organizations that “collect, store, transfer, share, and disseminate sensitive but unclassified (SBU) information.”1 This also applies to contactors, vendors, and service providers. In simpler terms, FIPS defines the set of strict security standards that help protect the U.S. government’s sensitive digital data. FIPS 140-2 validated solutions are also sometimes used in other types of private sectors that require a higher level of information security. FIPS is not only recognized in the US, but also in Canadian governments as well as the EU.

Spectralink Versity 95 is FIPS 140-2 ValidatedDid you know the Spectralink Versity 95 is FIPS 140-2 Validated?
Cryptographic modules in wireless technologies like mobile communication solutions must have a FIPS validation, like FIPS 140-2, to be approved for use in federal organizations, like VA hospitals.  To support our customers that are part of federal government organizations, Spectralink offers FIPS 140-2 validated Versity 95 smartphones*.  This means the Versity 95 has passed rigorous testing to receive a “FIPS Validated” designation to comply with the struct security standards required for encryption and data protection.

Compliant vs Validated
There are two separate distinctions when it comes to products meeting FIPS standards and being approved for use with federal government entities: FIPS compliant or FIPS validated. “FIPS Compliant” means that a solution meets some but not all the requirements or the solution may not have yet been tested by an NIST lab.  “FIPS Validated” means that the solution meets the written standards, and the hardware and software have both passed all the required tests in an NIST lab.

Many products on the market today that are FIPS validated have received the FIPS 140-2 validation. Recently, NIST (National Institute of Standards and Technology), the entity that creates the FIPS standards, began providing FIPS 140-3 validation for all new products undergoing the FIPS testing. Customers can still be confident in purchasing products with the FIPS 140-2 validation as these products still actively meet the FIPS standard for use in federal government organizations.

Spectralink Versity 95 smartphones are Android Enterprise Recommended, but also FIPS 140-2 validated, meeting organizational requirements and providing peace of mind when it comes to the security of your business’ mobile communication solution.

*It is important to note that FIPS 140-2 validated Versity 95 smartphones must be ordered by a FIPS specific SKU. Please contact your sales rep for more details.

Sources:

1https://www.indeed.com/career-advice/career-development/fips-certified-vs-fips-compliance