FIPS 140-2 Compliant Backup

The Federal Information Processing Standards (FIPS) define U.S. and Canadian Government security and interoperability requirements for computer systems. The FIPS 140-2 standard specifies the security requirements for cryptographic modules. It describes the approved security functions for symmetric and asymmetric key encryption, message authentication, and hashing.

For more information about the FIPS 140-2 standard and its validation program, see the National Institute of Standards and Technology (NIST) and the Communications Security Establishment Canada (CSEC) Cryptographic Module Validation Program website at https://csrc.nist.gov/projects/cryptographic-module-validation-program.

Level 1 FIPS 140-2 Compliance

Syncrify uses two encryption mechanisms:

• SSL/TLS encryption during transit
• Strong 128-bit AES encryption for data at-rest

The use of 128-bit AES encryption at rest makes Syncrify Level-1 compliant with FIPS 140-2 guidelines.

Level 2 And Higher

Higher levels of FIPS compliance are related to hardware security. Since Syncrify is a 100% private solution, companies can achieve higher levels of FIPS compliance by hardening their network environment.

100% Private

Syncrify is a 100% private file synchronization solution. This means:

• Private data belonging to your organization will stay inside your company. No third party, including Synametrics Technologies, Inc., will ever get your data. This includes data in transit as well as at rest.
• No third party, including Synametrics Technologies, Inc., will have knowledge about users involved in data synchronization.
• No third party, including Synametrics Technologies, Inc., will have access to the metadata, such as file types, their size, or knowledge about the software that uses these files.