FIPS Dependencies and Prebuilt Binaries
Summary
Docker discusses the challenges of enforcing FIPS cryptography in container images, highlighting how prebuilt native binaries can bypass the configured crypto boundary. It provides practical fixes and a checklist for starting a FIPS journey, arguing that FIPS readiness is increasingly a broader supply chain security concern beyond government contracts.