FIPS 140-2 Supported Platforms
Vertica uses a certified OpenSSL FIPS 140-2 cryptographic module to meet the security standards set by the National Institute of Standards and Technology (NIST) for Federal Agencies in the United States or other countries. Vertica links with the version of OpenSSL on the system to perform cryptographic operations at run time. When operating in FIPS mode, Vertica relies on the operating system's FIPS configuration to ensure a FIPS-certified version of OpenSSL is present in the environment.
Vertica has been tested in FIPS mode using OpenSSL 1.1.1g on the following operating systems and versions:
- Red Hat Enterprise Linux 8.1
- SUSE Linux Enterprise Server 15 SP2
Vertica supports FIPS mode on FIPS-compliant operating system versions that are equal to or higher than the tested version. For example, Vertica supports only FIPS-compliant versions of Red Hat Enterprise Linux 8.1 and higher. Vertica does not support FIPS mode with 7.x versions of Red Hat Enterprise Linux or CentOS.
FIPS-enabled Vertica requires the following:
- A user-generated certificate signed by an approved Certificate Authority.
- TLS 1.2 to support the server-client connection for a FIPS-enabled system.
Vertica supports the following client drivers for FIPS-compliance:
FIPS-enablement is not supported in the Management Console.
For more information see Federal Information Processing Standard.