FIPS Compliance in CloudFoundry

Sandy Cash Jr <lhcash@...>


I would like to put forward a proposal to implement FIPS-compliant
encryption in CloudFoundry. The proposal can be found at:

A specific aspect of the proposal which I would like to highlight is that
this would enable FIPS-compliant encryption but not mandate it - the
default configuration would be to use the encryption as implemented today,
while allowing those needing to adhere to FIPS 140-2 to do so in their CF

I have done some basic analysis to identify areas where work needs to be
done, and I've attempted to capture some of this information in the
proposal as well. I would love to hear from the community on this



Sandy Cash
Certified Senior IT Architect/Senior SW Engineer
IBM BlueMix
(919) 543-0209

"I skate to where the puck is going to be, not to where it has been.” -
Wayne Gretzky