FIPS 140-2 Federal Security Standard – FileCloud Compliance

FIPS 140-2 Certified Encryption Protects Files at Rest and in Transit

Security Standards

FileCloud FIPS 140-2 encryption starts with AES 256-bit for data at rest and TLS 1.3 for data in transit. Additional security features include two-factor authentication, SSO (single sign-on), automatic anti-virus scanning, unlimited file versioning, file locking, endpoint device protection, comprehensive audit trail, and data residency options.

FileCloud Compliance

In addition to FIPS 140-2 encryption, FileCloud offers the necessary compliance standards to help you meet your security requirements such as ITAR, NIST 800-171, and CMMC 2.0. The FileCloud Compliance Center provides specialized configurations for ITAR, GDPR, and HIPAA to connect requirements with file share, sync, and endpoint backup tools.

FIPS 140-2 Encryption Module

FIPS 140-2 is a US and Canadian government standard that specifies security requirements for cryptographic modules that protect sensitive information. FileCloud offers a FIPS 140-2 license, which complies with NIST encryption requirements to secure data at rest and in transit.

Read the FileCloud Compliance Guide for NIST 800-171

FileCloud has received the Gartner Peer Insights Customers’ Choice Distinction for the fifth consecutive time!

92% of our customers would recommend us to a friend.

Rating Stars Image

4.6

FIPS 140-2 Encryption with FileCloud

FileCloud meets the necessary security requirements for cryptographic modules that are formalized by the Federal Information Processing Standard (FIPS) security publication 140-2), validated by the US National Institute of Standards and Technology (NIST 800-171) and Canadian Communication Security Establishment (CSE). NIST and CSE form a collaborative government program, the Cryptographic Module Validation Program (CMVP). The CMVP publishes FIPS requirements and validates FIPS certification.

A FIPS-compliant encryption module is required for US federal organizations, as well as government contractors that work for them. FileCloud can be run in FIPS mode, with a special FIPS 140-2 license. This license ensures that FileCloud is run on a FIPS-enabled operating system with FIPS-certified cryptographic modules and libraries. Specifically this FIPS mode enforces 256-bit AES encryption for data at rest and a TLS 1.3 certificate for data in transit.

FileCloud offers an in-depth FIPS 140-2 white paper that outlines what FIPS is, the difference between FIPS compliance and FIPS validation, and how FileCloud’s EFSS FIPS-certified solution can help meet federal requirements. FileCloud’s step-by-step process explains how to configure the FileCloud-FIPS license to implement the solution within your infrastructure.

NIST 800-171 Compliance

The U.S. government requires federal contractors to comply with the NIST 800-171 security standard to ensure the security of controlled unclassified information (CUI) in organizations. FileCloud is a comprehensive EFSS for government agencies that supports NIST compliance.

FIPS 140-2 Encryption

FileCloud can be run in FIPS mode to enforce encryption standards that comply with the FIPS 140-2 standard encryption module. FileCloud’s encryption is FIPS-compliant, running cryptographic libraries validated by the CMVP (certificate #3338).

ITAR Compliance

FileCloud is an enterprise-grade file sharing and sync platform that supports ITAR compliance through the Compliance Center. The ITAR tab in the Compliance Center streamlines FileCloud tools and settings to meet requirements, such as IP-address login restrictions and FIPS-certified encryption.

Content Search

FileCloud’s content search indexes all the files and its content. Users can not only search using a name or partial name of a file, but they can also use keywords to search within the content of the file. Data remains visible for authorized users at federal agencies, public sector organizations, and contractors.

Quick Access to Data

FileCloud provides multiple options for remote access to data via web browser, mobile apps, or desktop clients. When requested by regulatory organizations, customers can grant any of these access methods to regulators.

Prevent File Deletion

FileCloud can secure file records and prevent accidental deletion with the recycle bin feature. Admins can enable the recycle bin for users, set storage or file versioning limits to manage space, and set up file deletion notifications. Any deleted files can be easily restored.

Report and Audit

All file changes are kept with a comprehensive audit log that contains information about who changed the file and when (timestamp). The log also includes how the data was accessed and the IP address. Audit logs can be searched based on keywords, and admins can also set up custom reporting to monitor specific types of activity.

Data Retention and Archiving

FileCloud features the most robust data storing, archiving, and retrieving settings in the industry, enabling customers or solution providers to create a compliant-ready enterprise file access and sharing solution. Retention policies include Admin Hold, Legal Hold, Retention, Recycle Bin, and Archival.

High Availability Architecture

FileCloud’s High Availability (HA) architecture helps customers build redundancy across all layers of its infrastructure and reduces latency, ensuring strong access to records and platform performance.

CAC Authentication

FileCloud supports Common Access Card or CAC authentication for federal users who need remote access to their data. This authentication is provided by combining Active Directory Federation Services and SAML Single Sign-On (SSO).

Free Trial

Retain Control Over Data

With granular access permissions, admins and users can control which files are shared and how recipients interact with shared files (read, write, share, download, delete). Users can access data remotely using any device, create public or private share links with password-protection or expiration dates, preview and edit documents using Microsoft 365, and directly interface with FileCloud through Outlook.

Data Loss Prevention

Admins can also enable data loss prevention features to monitor, prevent, and fix data leakage ensuring confidential and sensitive data is protected at all times. The Smart DLP feature makes it easy for admins to create DLP rules based on metadata and automatically block sharing or notify admins of attempted shares.

Admin Controls

Admins can control and monitor user access to files with smart notifications, audit logs, and custom reports. Authentication security can also be achieved through a variety of methods, including active directory (AD) and SSO integration. These features, among many others, make FileCloud the best government file sharing solution.

FileCloud File Sharing Features

Hyper-Secure File Sharing

FileCloud is designed for hyper-secure file sharing that makes it easy to maintain complete control over data. Whether you are sharing sensitive CUI, federal purchase orders and invoices, government contract requirements, or other large files, FileCloud offers
a simple yet robust solution for storing, managing and securely sharing files with authorized teams.

Secure Client Portal

FileCloud’s hyper-security can even be extended to external collaborators, including government contractors, vendors, and subject matter experts with unlimited external accounts. These external users can login through a secure client portal to access files and collaborate on projects. Setting up these accounts is easy and fast, and the portal can be customized with branding assets, including the agency logo, login screen image, and a custom URL.

NIST 800-171 Compliance

The U.S. government requires federal contractors to comply with the NIST 800-171 security standard to ensure the security of Controlled Unclassified Information (CUI) in organizations.

Read our NIST 800-171 Compliance Guide to learn more about this cybersecurity standard and how FileCloud can support compliance.

FileCloud Hyper-Security

FileCloud security features:

256-bit AES encryption for data at rest
TLS 1.3 protocols for data in transit
Active Directory integration
Two-factor authentication
SSO (single sign-on)
Granular user and file sharing permissions
Client application security policies
Automatic anti-virus scanning of files
Unlimited file versioning
File locking
Endpoint device protection
Comprehensive audit trail
Data residency
FIPS 140-2 encryption certification

Worldwide

FileCloud

CodeLathe Technologies Inc.
dba FileCloud
125 Park Avenue FL 25
New York, NY 10017-5550

Fax: +1 (866) 824-9584

Europe

FileCloud Technologies Limited

Ducart Suite,
Castletroy Park Commercial Centre, Castletroy,
Limerick, Ireland

Copyright © FileCloud. All Rights Reserved.

Please select your country

SUBMIT