Chris
Reputation: 743
Detecting if FIPS is being enforced via .NET C#
Is there a way to determine from the .NET framework whether or not the FIPS policy is being enforced on the windows computer?
Upvotes: 6
Views: 2084
Answers (2)
blueharoon
Reputation: 127
It has already been answered by @ta-speot-is in the comments, adding it as an answer if someone overlooks that comment.
To know if FIPS is enabled we can simply check the boolean flag CryptoConfig.AllowOnlyFipsAlgorithms available in .Net Framework 4.0 and higher versions.
Upvotes: 5
Gaurav
Reputation: 902
You can use this code to check whether FIPS is enabled or not:
public static object getKey(string Name)
{
RegistryKey uac = Registry.LocalMachine.OpenSubKey(@"System\CurrentControlSet\Control\Lsa\FIPSAlgorithmPolicy", true);
if (uac == null)
{
uac = Registry.LocalMachine.CreateSubKey(@"System\CurrentControlSet\Control\Lsa\FIPSAlgorithmPolicy");
}
return uac.GetValue(Name);
}
Just pass "Enabled" key into it and it will return 1 or 0 based on the enabled or disabled.
Upvotes: 1
Related Questions
- How to check that an Asp.NET application is FIPS-ready
- How to disable fips in asp .net
- How do I check for FIPS compliance at compile time?
- How to check that CNG Windows API returns algorithm implementation which is FIPS compliant
- Can I enable FIPS momentarily in a .net application?
- How to enforce FIPS in asp.net code (This implementation is not part of the Windows Platform FIPS validated cryptographic algorithms.)
- How can Windows OS detect if an algorithm is FIPS compliant?
- How to enable FIPS on windows 7
- Disable FIPS with command line
- Enabling FIPS during application execution?