RSA Secure.
RSA.com/secure provides RSA customers and partners with real-time information on our system performance, security advisories, and other information.
Detailed Security Information
Certification & Compliance.
RSA is certified to comply with industry standards and regulations governing product security, reliability, and availability. We share these certifications as part of our commitment to earning customer trust and delivering proven performance.
SOC2 Type 2
RSA meets AICPA SOC guidelines requiring CPA issuance of a SOC 2 Type 2 report on controls relevant to security, availability and confidentiality.
Status not applicable to FedRAMP environments.
CSA STAR
RSA cloud services have been listed in the Cloud Security Alliance STAR registry since 2017.
See current status
FIPS140-2 compliance
RSA uses FIPS 140-2 validated cryptographic modules for managing data at rest and in motion across mobile apps, cloud and on-premises.
Link to certificates
FedRAMP
FedRAMP Moderate Authorization designation through JAB P-ATO process, making it available for US government agencies and Federal System Integrators to take their journey to the cloud.
See FedRAMP marketplace
ISO9001:2015
The quality management system is certified to the ISO 9001:2015 standard in the fulfillment of RSA hardware authenticators.
View certificate
FCC Rules & Regulations for Title 47
RSA hardware authenticators meet FCC guidelines for radiated and conducted emissions in Title 47, part 15 of the CFR.
See test description
CE Marking
RSA hardware authenticators meet EU guidelines conforming to directives 93/68/EC: 2004/108/EC: 2006/95/EC: on specifications EN550022 Class A, EN61000-4-2:2008, EN6100-4-3:2006 Class A and RoHS2: EN 50581:2012.
See EU declaration
See EC declaration
Specifications and Standards.
GDPR, CCPA
RSA provides information about some of the applicable aspects described in GDPR and CCPA related to the processing of personal data.
ACR
Product accessibility information is provided in the Access Conformance Report (ACR), which is a filled Voluntary Product Accessibility Template (VPAT) for given products. This is intended to help clients assess the availability of features that support accessibility.
MIL-STD 810F
Ruggedized testing of RSA hardware authenticators for structural integrity has been conducted in accordance with MIL-STD 810F guidelines.
ISO 13491-1, ISO DIS 13491-2
RSA hardware authenticators comply with ISO 13491-1 and ISO DIS 13491-2 (A2.1.2; A1, A2, A4) standards for being tamper-evident.
Method RS101, MIL-STD-461E
RSA hardware authenticators tested for radiated susceptibility comply with test method RS101, MIL-STD-461E.
UL 913-6th edition (US)
RSA hardware authenticators are designed and tested to the UL 913 standard for safety for use in hazardous locations.
CSA-C22.2 No. 157-92
RSA hardware authenticators are designed and tested to CAN/CSA-C22.2 No. 157-92 standard for safety for use in hazardous locations.
RSA Subprocessors
Information about the Subprocessors that RSA has engaged in accordance with the Data Processing Addendum (DPA).
