FIPS 140-2 Certified Modules for Ubuntu 16.04 LTS

Chris Johnston

Chris Johnston

on 13 December 2017

We are pleased to announce that officially certified FIPS 140-2 level 1 cryptographic packages are now available for Ubuntu 16.04 LTS for Ubuntu Advantage Advanced customers and as a separate, stand-alone product.

In 2016 Canonical began the process of completing the Cryptographic Module Validation Program to obtain FIPS 140-2 validation for Ubuntu 16.04 LTS. This has been successfully completed and Canonical now offers key components of Ubuntu 16.04 LTS compliant with the FIPS 140-2 level 1 standard. The FIPS compliant modules are available to Ubuntu Advantage Advanced subscribers in the Ubuntu Advantage private archive.

We currently use Ubuntu Linux because of its superior development environment and frequent LTS releases. As a business that develops software, one of our customer’s requirements is to utilize FIPS 140-2 validated software. We have been able to start rolling out the Ubuntu FIPS modules without needing to reinstall the operating system. This keeps our developers happy and productive as Ubuntu is their preferred environment and minimizes transition cost. The FIPS modules also include a VPN solution which we look forward to implementing to allow our developers to work remotely but still meet our customer’s requirements.

-Alex Stuart, North Point Defense


Users interested in FIPS 140-2 compliant modules on Ubuntu 16.04 can purchase Ubuntu Advantage at or by contacting the Canonical Sales Team.

For further information please visit



What is FIPS?

FIPS stands for Federal Information Processing Standards which is a set of publications developed and maintained by the National Institute of Standards and Technology (NIST), a United States federal agency. These publications define the security criteria required for government computers and telecommunication systems.

What is the FIPS 140-2 standard?

According to NIST, FIPS 140-2 “specifies the security requirements that will be satisfied by a cryptographic module used within a security system protecting sensitive but unclassified information.”

Why should I use the FIPS 140-2 modules?

Government, defence, healthcare, and finance organizations worldwide operate in highly regulated industries and are required to meet the security requirements defined in the FIPS 140-2 standard. This includes the United States, Canadian, and United Kingdom governments as well as government contractors.

Where can I find out more about FIPS?

General information about the Federal Information Processing Standards can be found on the NIST website. More detailed information about FIPS 140-2 itself can be found in the Federal Information Processing Standards Publication 140-2 document.

Which modules are included?

What versions of Ubuntu have FIPS certified modules?

Currently only Ubuntu 16.04 LTS has FIPS certified modules.

How Can I Find Out More?

Click here to make an inquiry, and somebody from our team will get back to you!

Ubuntu Server

The leading platform for scale-out computing, Ubuntu Server delivers the best value scale-out performance available.

Sign up for email updates

Choose the topics you're interested in


Related posts

Storage Made Easy adds Charm to Canonical’s Juju ecosystem

Storage Made Easy (SME) today announced the availability of the Storage Made Easy™ Enterprise File Fabric™ charm through Canonical’s Juju charm store. The store provides access to a wide range of best practice solutions which…

NTT TechnoCross becomes Canonical Certified Support Partner in Japan

NTT TechnoCross Corporation has signed a partnership agreement with Canonical to provide strengthened OSS support to its customers in Japan including OpenStack deployments. NTT TechnoCross will provide Japanese support for domestic…

Meltdown, Spectre and Ubuntu: What you need to know

As details of the Meltdown and Spectre vulnerabilities1 have become clearer a number of statements have been published by the multiple vendors affected; Canonical has issued advisories and updates on fixes and mitigations, the latest of…