Validated design and configuration overview for a common criteria and Federal Information Processing Standards (FIPS) 140-2 public sector configuration. This document was prepared by Citrix Solutions Lab and is intended to aid business decision makers, IT architects and managers and system administrators by providing an overview of the Citrix XenApp 7.6 and XenDesktop 7.6 solution architecture for the public sector. It includes an overview of the key concepts and considerations when implementing hardened OS images, enabling FIPS compliance, and using antivirus software. It also provides a comparison of the scalability effects of having hardening and FIPS crypto enabled or disabled.
When deploying XenApp and XenDesktop within large organizations, particularly in government environments, security standards are an important consideration. Many government bodies specify a preference or requirement for applications to be compliant with Federal Information Processing Standards 140-2 (FIPS 140-2).