Federal requirements
If you are using Maximo® Application Suite as part of a federal program, you need to comply with various government regulations, including the Federal Information Security Modernization Act (FISMA).
Starting in Maximo Application Suite 8.11, features are provided that can be used in preparation for US Federal compliance assessments, including FISMA moderate level compliance.
- Federal Information Processing Standard (FIPS) 140
-
Note: Starting in Maximo Application Suite 8.11, support for FIPS is applicable only to Maximo Application Suite core and the IBM® Maximo Manage application.Cryptographic modules, data in motion, and data at rest that are used in the following applications, dependencies, and industry solutions support the Federal Information Processing Standard (FIPS) 140:
- Maximo Application Suite core and its dependencies such as IBM Suite License Service 3.7.0.
- Maximo Manage including add-ons, industry solutions, and connectors.
- Audit logging
- You can forward all logging from Red Hat OpenShift into an external system so that logs can be aggregated and securely stored. The Maximo Application Suite logs can be aggregated from a Red Hat OpenShift cluster to third-party systems. For more information, see Audit logging in Maximo Application Suite
- Internet Protocol version 6
- Starting in Maximo Application Suite
8.11.6
and IBM Maximo Manage 8.7.4, Internet Protocol version 6 (IPv6) is supported in
Maximo Application Suite core and the Maximo Manage application.
For more information about supported versions, see Software Product Compatibility Reports (SPCR).
- Section 508 accessibility
- IBM is committed to accessibility. Accessibility Compliance Reports contain details on accessibility compliance with standards, including the Worldwide Consortium Web Content Accessibility Guidelines, European Standard EN 301 349, and US Section 508.
- Software Bill of Materials (SBOM)
- To request a Software Bill of Materials (SBOM) for Maximo Application Suite, contact your IBM representative.
- Secure Software Development Framework (SSDF)
- Maximo Application Suite follows the SPbD@IBM discipline. For more information, see IBM Security and Privacy by Design (SPbD@IBM).
- FISMA controls documentation
-
Further information about the use of Maximo Application Suite in Federal Information Security Management Act (FISMA) certified environments is available on request. Contact your IBM representative.