fips - Run Linux in FIPS mode

In Federal Information Processing Standard (FIPS) mode, the kernel enforces FIPS 140-2 security standards. For example, in FIPS mode only FIPS 140-2 approved encryption algorithms can be used.

Note: Enabling FIPS mode is not sufficient to make your kernel certified according to FIPS 140-2.

FIPS 140-2 certification is specific to a particular hardware platform and kernel build. Typically, running in FIPS mode is required, but not sufficient to be FIPS 140-2 certified. Check with your distributor to find out whether your kernel is certified according to FIPS 140-2.

For more information about FIPS 140-2, go to csrc.nist.gov/publications/detail/fips/140/2/final.

Format

fips syntax


1! fips=0
1 fips=1

1 enables the FIPS mode. 0, the default, disables the FIPS mode.

Example

      fips=1