FIPS Compliance for RDP sessions
My organization is requiring FIPS compliant algorithms on RDP connections and therefor attempting to disallow this product. Seeing the KB article on FIPS it appears that there is, or was, no FIPS compliance. Is there any plan to enable FIPS compliance for Remote Desktop Manager Enterprise or Free editions?
All Comments (5)
Hello,
The security team is finalizing some research at the moment and will respond to you shortly.
Best Regards,
Maurice
Hi,
By default, RDP connection encryption is handled by the operating system and not the software. Therefore, those connections should comply with your system configuration and organization requirements.
Regards,
Martin Lemay
Hi,
By default, RDP connection encryption is handled by the operating system and not the software. Therefore, those connections should comply with your system configuration and organization requirements.
Regards,
Martin,
You are quite correct, the cryptographic modules are maintained within the OS. I should have been more clear. I am just looking for FIPS 140 compliance. Which may only be a public statement somewhere on the site. Whether achieving that compliance requires additional work, I do not know. I am not a FIPS expert. I only know that Remote Desktop Manager does not currently list compliance and am wondering if that is on the radar for the company.
Hello,
RDM is not FIPS compliant unfortunately.
Regards
David Hervieux
I take this to mean that there is currently no plan to make the product FIPS compliant.
Thank you all.