N-able FIPS 140-3 Compliant Components Letter
N-able provides this FIPS 140-3 Compliant Components Letter to inform federal government customers which encryption algorithms are used in the N-able Cove Data Protection product. This document follows the instructions outlined in the NIST Cryptographic Module Validation program document and identifies the FIPS-validated cryptographic modules used for backup and restore data across supported platforms, as well as communication between Backup Manager and Cove Cloud services.
N-able Cove Data Protection Backup Manager uses FIPS 140-3 -validated cryptographic library modules to help improve security for Windows, Mac and Linux devices. All versions of Cove Data Protection Backup Manager operate with AES-256 cryptography. To operate in FIPS mode, devices need to be on the 25.10 version of Backup Manager or higher.
Please be aware of the following limitations. Devices will not be FIPS compliant and will operate in a standard mode if:
-
device uses Blowfish as backup encryption
-
device uses Linux operating system with glibc version older than 2.14
-
device uses old operating system we don’t officially support (we cannot guarantee it will work as expected because we don’t test on these versions). List of officially supported operating systems can be found here.
The following table lists the validated module referenced in this implementation:
| Product | Cryptographic module | Algorithm implementation certificate |
|---|---|---|
|
Cove Data Protection |
CryptoComply 140-3 FIPS Provider |
https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/5040 |
For more information, and for the latest version of this document, please contact grc@n-able.com.
Validated assurance for trusted data protection.