Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Need FIPS 140-2 Compliant variant of Talos #9141

Open
JoeHCQ1 opened this issue Aug 9, 2024 · 0 comments
Open

Need FIPS 140-2 Compliant variant of Talos #9141

JoeHCQ1 opened this issue Aug 9, 2024 · 0 comments

Comments

@JoeHCQ1
Copy link

JoeHCQ1 commented Aug 9, 2024
edited
Loading

Feature Request

In order to use Talos in any US Government context, we need all cryptography to be FIPS 140-2 compliant. Without FIPS compliance, we cannot consider using Talos in our production environments, and we would very much like Talos to be a serious contender in this space.

This would also make Talos a viable solution for any other high-security environments which care about FIPS 140-2 compliance.

Description

Provide a variant of the Talos image which contains only FIPS 140-2 authorized cryptography modules. FIPS variants of other opensource offerings exist. For reference:

This was requested previously in #6230 but grew stale. You can search to see if a particular library is FIPS compliant here: https://csrc.nist.gov/projects/cryptographic-module-validation-program/validated-modules/search.
@JoeHCQ1 JoeHCQ1 changed the title Need FIPS-140 Compliant variant of Talos Need FIPS 140-2 Compliant variant of Talos Aug 9, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@JoeHCQ1