rachelelise/FIPS
This whole government RFP process was FUBAR, as they too often are. My understanding is that NONE of the TPMs, and NONE of the FDE drives, are FIPS compliant because they depend on a newer and superior method of key storage. There is plenty of evidence that the people at DOD and the NSA understand that the TPM-based solutions are better, and that they will continue to require purchase of TPM-equipped platforms regardless of whether the components are FIPS certified. However, it is also clear that the certification process is not keeping up with the technology, and that problem needs to be addressed.
If the vendors of FIPS compliant software solutions want to come to this board and crow about their ability to market inferior solutions under a poorly drafted RFP, that is their prerogative. However, I think that the government IT guys will eventually all get on the same page.