Federal, State and Local agencies and any other security conscious company that is considering a XML Gateway deployment should weigh the consequences of proceeding with a solution that has not been fully FIPS 140-2 certified. While some XML Gateway vendors claim FIPS certification, this applies only to the Hardware Security Module (HSM) card itself, not the architecture and product surrounding it. Thus, these vendors that insert an HSM into an appliance and claim FIPS certification peddle a false sense of security.
In this paper you will learn why FIPS 140-2 validation is necessary for XML Gateways used in building secure, robust, and scalable Service Oriented Architecture (SOA). This paper also discusses how only a FIPS 140-2 certified XML Gateway can prevent key-finding threats and how Non-FIPS XML Gateway products - ones that haven't been subjected to a rigorous analysis in their entirety - provide a false sense of security and are exposed to key-finding threats.
Read this paper to learn why fully FIPS 140-2 certified solutions are crucial for XML Gateways.
