Federal Information Processing Standards (FIPS) is a cryptographic security standard.

If your enterprise requires FIPS compliance, your administrator must provide you with the FIPS version of Avaya Workplace Client for Windows. Otherwise, Avaya Workplace Client for Windows is installed as a non-FIPS version by default.

FIPS 201 is a United States federal government standard that specifies Personal Identity Verification (PIV) requirements for federal employees and contractors. FIPS 201 specifies that an identity credential must be stored on a smart card. Avaya Workplace Client provides smart card support with both FIPS and non-FIPS clients.

FIPS installation is only supported for new installations. You can download and install the FIPS and non-FIPS versions of Avaya Workplace Client from https://support.avaya.com/downloads/. You cannot upgrade any version of a non-FIPS client to a FIPS client.

To enable FIPS on a non-FIPS version or disable FIPS on a FIPS version, uninstall Avaya Workplace Client first and then install the FIPS or non-FIPS version of Avaya Workplace Client. Avaya Workplace Client works in the FIPS version, where the OpenSSL API and OpenSSL FIPS Object Module are used.

The following are the approved FIPS-compliant cryptography algorithms:

• RSA

• DSA

• 3DES in CBC, (CFB1), CFB8, CFB64, ECB, OFB mode

• DH

• AES in CBC, (CFB1), CFB8, CFB128, ECB, OFB mode with 128/192/256 bit keys

• SHA-1, SHA-2

• HMAC