LLMpediaThe first transparent, open encyclopedia generated by LLMs

FIPS

Generated by GPT-5-mini
Note: This article was automatically generated by a large language model (LLM) from purely parametric knowledge (no retrieval). It may contain inaccuracies or hallucinations. This encyclopedia is part of a research project currently under review.
Article Genealogy
Parent: Red Hat Enterprise Linux Hop 4
Expansion Funnel Raw 89 → Dedup 0 → NER 0 → Enqueued 0
1. Extracted89
2. After dedup0 (None)
3. After NER0 ()
4. Enqueued0 ()
FIPS
NameFIPS
Formation1960s
PurposeStandards for information processing and interoperability
Parent organizationNational Bureau of Standards / National Institute of Standards and Technology
Region servedUnited States

FIPS The Federal Information Processing Standards (FIPS) are a set of United States government standards for information processing, data formats, and interoperability. They were promulgated by the National Bureau of Standards and later by the National Institute of Standards and Technology to coordinate technical specifications across agencies such as the Department of Defense, National Security Agency, Central Intelligence Agency, and Department of Justice. FIPS influenced standards adoption by corporations like IBM, Hewlett-Packard, Microsoft, and Oracle and intersected with international bodies including the International Organization for Standardization, International Electrotechnical Commission, and Internet Engineering Task Force.

Overview

FIPS provided mandatory and recommended standards covering cryptographic algorithms, encoding schemes, data processing, and interoperability requirements used by federal agencies such as the Internal Revenue Service, Social Security Administration, Department of Veterans Affairs, and Federal Bureau of Investigation. Notable FIPS publications addressed topics that touched technologies developed by Bell Labs, Xerox PARC, and manufacturers like Intel, AMD, Cisco Systems, and Sun Microsystems. FIPS influenced certifications referenced by vendors including RSA Security, VeriSign, Symantec, and Entrust and linked to compliance regimes enforced by agencies such as the Office of Management and Budget and standards bodies like the American National Standards Institute.

History

Origins trace to work at the National Bureau of Standards in response to federal needs recognized after projects involving Project MAC, the Advanced Research Projects Agency, and the growing role of computing in agencies like the Department of the Treasury and Department of State. Early FIPS documents paralleled developments at institutions such as MIT, Stanford University, Carnegie Mellon University, and University of California, Berkeley. Major milestones included adoption of data representation standards during the era of mainframes from IBM System/360 and microprocessor advances from Intel 4004 through collaborations with corporations like Digital Equipment Corporation and Microsoft Research. Cryptographic FIPS, such as the adoption of standards influenced by work at the National Security Agency and academics at MIT, Stanford, and Bell Labs, impacted policies during events like the Clipper chip controversy and legislative debates in the United States Congress.

Types and Standards

FIPS encompassed numeric, textual, and cryptographic specifications: numeric codes for geographic areas related to United States Census Bureau data and mapping used by the United States Geological Survey; security standards like cryptographic algorithms paralleling work at RSA Laboratories, IBM Research, and academic teams at University of Cambridge and University of Oxford; and interoperability formats that intersected with World Wide Web Consortium recommendations and IETF RFCs authored by contributors from Bell Labs and MIT. Examples include identification codes akin to systems used by Federal Reserve System and encoding schemes comparable to specifications in products by Apple Inc., Google, Amazon Web Services, and Oracle Corporation. FIPS standards were coordinated with technical committees such as those at the Internet Engineering Task Force, the IEEE, the International Organization for Standardization, and the International Telecommunication Union.

Implementation and Usage

Federal agencies implemented FIPS in procurement and system design for platforms ranging from mainframes produced by IBM and Fujitsu to servers by Dell Technologies and cloud services from Amazon Web Services and Microsoft Azure. Implementations involved software libraries from OpenSSL-related projects, commercial offerings by Thales Group, Entrust Data Systems, and hardware modules developed by firms like Intel and AMD for Trusted Platform Module specifications and cryptographic acceleration. Adoption impacted standards compliance programs run by Office of Personnel Management and auditing bodies like the Government Accountability Office; it also informed security practices at agencies including the Department of Homeland Security and corporations such as General Electric and Boeing.

Security and Criticism

Cryptographic FIPS modules, such as those derived from algorithms vetted by the National Institute of Standards and Technology and influenced by research at RSA Laboratories, provoked debate among academics at Stanford University, Massachusetts Institute of Technology, and civil liberties groups like the Electronic Frontier Foundation. Criticism addressed algorithm selection, export controls mirrored in laws like the Export Administration Regulations, procurement lock-in affecting vendors including Microsoft and Oracle, and interoperability issues noted by practitioners affiliated with IETF and IEEE. Security evaluations involved laboratories certified under programs associated with Common Criteria evaluators and testing facilities used by agencies like the National Security Agency and private testing houses such as NIST's contractor network.

International and Successor Standards

International bodies such as the International Organization for Standardization, International Electrotechnical Commission, and Internet Engineering Task Force developed overlapping or successor standards adopted by entities like the European Union, United Nations, World Bank, and national agencies in countries including United Kingdom, Canada, Australia, and Japan. Successor and complementary frameworks include standards harmonized with ISO/IEC series documents, cryptographic suites referenced in Common Criteria and technology roadmaps from IETF working groups, and compliance programs aligned with directives from institutions like the European Commission and agencies such as the Australian Signals Directorate. Industry consortia including the Trusted Computing Group and the Cloud Security Alliance further shaped the evolution of practices that originated in FIPS-era specifications.

Category:United States federal standards