All secret data in the SurePassID Universal MFA platform, including data at rest, is encrypted with AES 256 symmetric encryption keys. By default these symmetric encryption keys are protected by PKI infrastructure.
Alternatively, the SurePassID Universal MFA platform can use a FIPS 140-2 Host Security Module (HSM, identical to a Hardware Security Module).
If required for overseas deployment, an export-grade cipher (i.e. one based on 40-bit cryptography) can be substituted for AES 256.