When FIPS mode is enabled, certain features are limited with regard to compliance under the NIST standards.

  • The DES3 cipher is not supported in FIPS mode.

  • The ABL compiler does not allow compilation of encrypted source code. The XCODE utility fails with an error if executed. This limitation affects the Data Administration dump/load utilities because they use XCODE.

  • The Encrypted Compiler Mode (-rx) startup parameter will fail when attempting to compile encrypted source code.

  • Operating System or 3rd-party products loaded and called from an ABL application
  • Interoperability among non-OpenEdge products
    • For example, if a non-FIPS compliant client tries to communicate with a FIPS mode enabled AVM then it should fail to connect and use appropriate error-handling. Both the parties must be FIPS mode enabled.
  • ESAM operates using cryptographic implementations that meet NIST algorithm requirements. Alignment with CMVP-certified execution for ESAM is not available in this release.