Applies to SUSE Linux Enterprise Server 15 SP3
Part IV Regulations and Compliance #
- 27 Common Criteria
- 28 Enabling compliance with FIPS 140-2
If your organization does any work for the United States federal government, it is likely that your cryptography applications (such as openSSL, GnuTLS, and OpenJDK) will be required to be in compliance with Federal Information Processing Standards (FIPS) 140-2. FIPS 140-2 is a security accreditation program for validating cryptographic modules produced by private companies. If your organization is not required by compliance rules to run SUSE Linux Enterprise in FIPS mode, it is most likely best to not do it. This chapter provides guidance on enabling FIPS mode, and links to resources with detailed information.
- 29 Payment Card Industry Data Security Standard (PCI DSS)
- 30 Hardening SUSE Linux Enterprise with STIG