The FIDO2 Component can be configured to use a FIPS 140-2 compliant cryptographic module.
To enable FIPS Approved mode you can use the IFidoBuilder
extension method EnableFIPSApprovedMode
. The feature is intended for use by US Federal agencies and other markets that require a FIPS 140-2 validated Cryptographic Library. As per FIPS 140-2 Implementation Guidance G.5, the cryptographic module will remain compliant with the FIPS 140-2 validation when operating on any general purpose computer.
FIPS Configuration
services.AddFido(options =>
{
options.Licensee = //...
options.LicenseKey = //...
})
.EnableFIPSApprovedMode()