CMMC and MFA Part 2: FIPS 140 and TAA Compliance

CMMC requires MFA and FIPS 140, while TAA compliance is also mandated. Learn how to address these intersecting requirements and take the pain out of CMMC compliance. Join SurePassID for “The Pain and Suffering Series,” where we dive into the pain points involved with the Cybersecurity Maturity Model Certification (CMMC) and its requirement to secure Confidential Unclassified Information (CUI) with multi-factor authentication (MFA). Part 2 is FIPS 140 and TAA. We will address how FIPS-validated cryptography is a requirement for protecting CUI (CMMC SC.3.177), how that brings TAA (Trade Agreements Act) compliance into play, how they in turn intersect with MFA, and how all three impact: • On-prem, cloud, and hybrid deployments • Hardware authenticators (“tokens”) • Downstream audits We will also share examples of how defense contractors are using the SurePassID Universal MFA platform and various authenticators (OATH, FIDO, etc.) to achieve FIPS 140 and TAA compliance. Presenter: Kevin Raineri, VP Business Development, SurePassID Moderator: Odin Soli, VP Marketing, SurePassID