Updated Date: November 15, 2018
F5 maintains an active product certification and evaluation program—aligned with government regulations—for maintaining a secure IT environment.
Federal Information Processing Standard (FIPS) 140-2
F5 offers virtual editions (VEs), Full-Box FIPS platforms, integrated hardware security model (HSM) PCI cards, and external (network HSM) FIPS solutions to meet the most rigorous compliance requirements and architectures. For details, please see the chart below.
For customers who only require a FIPS 140-2 Level 1 solution, the F5 FIPS BIG-IP VE incorporates a NIST-validated, software-based, cryptographic module for x86 platforms.
F5 Full-Box FIPS platforms provide device-level validation at FIPS 140-2 Level 2, including the application of tamper evident stickers.
F5 also offers a select set of BIG-IP platforms, which include a HSM that supports a FIPS 140-2 Level 2 implementation for RSA cryptographic key generation, use, and protection. Keys generated on, or imported into, a BIG-IP integrated HSM are not extractable in plain-text format. BIG-IP hardware devices with integrated HSMs come with a sealed epoxy cover that, if removed, will render the card useless and the keys inaccessible. For additional protection, the BIG-IP 10350v-F supports a FIPS 140-2 Level 3 implementation of the internal HSM. This security rating means that the 10350v-F HSM card includes tamper-resistance, which recognizes physical access attempts, cryptographic module manipulation, and/or tampering, and will destroy the keys and render the card useless.