Stack Overflow
Stack Overflow

Questions tagged [fips]

The term "fips" commonly refers to the Federal Information Processing Standards Publication 140 (FIPS 140), a document published by the National Institute of Standards and Technology (NIST), a U.S. government agency. Cryptographic software and hardware that complies with the standard must use only cryptographic algorithms specified in FIPS 140-2, the latest published revision.

The term FIPS is sometimes used to refer to a specific publication, Security Requirements for Cryptographic Modules FIPS 140. Cryptographic software and hardware that complies with the standard must use only cryptographic algorithms specified in FIPS 140-2, the latest published revision.

However, FIPS 140-2 is one of many publications that describes information technology standards for use by U.S. Government Agencies.

Further information can be found at the FIPS Home Page

432 questions
3
votes
1 answer

Can FIPS compliant solution have non FIPS compliant libraries

I have a FIPS compliant solution which have few libraraies which are non FIPS compliant. These non FIPS compliant libraraies are dead code which are not used. Is this acceptable for FIPS compliant auditing? Do we need to remove non FIPS compliant…
Manish Jain
  • 865
  • 3
  • 13
  • 28
3
votes
1 answer

How do I specify a FIPS endpoint url in a boto3 S3 client configuration?

I am currently attempting to configure my boto3 client to connect using a custom endpoint URL for FIPS. https://aws.amazon.com/compliance/fips/ I have the following code that works with boto3 for EC2. ec2_client.py import boto3 from botocore.config…
Dan Chan
  • 494
  • 4
  • 14
3
votes
1 answer

Using PKIXValidator with BouncyCastleFipsProvider for server certificate validation?

We have an Apache Tomcat-based Java web application running on JDK 1.8 and recently had to strenghten its security-related features to comply with certain regulations, thus we are now using BouncyCastleFipsProvider as our JVM's main security…
skarfiol
  • 131
  • 10
3
votes
1 answer

ASPX pages fail due to FIPS 140 security policy

I am working on a government site and am having some problems with my local security policy interferring with my web application. There is a setting called "System cryptography: Use FIPS 140 compliant cryptographic algorithms, including encryption,…
Slider345
  • 4,558
  • 7
  • 39
  • 47
3
votes
1 answer

How to convert ECPrivateKey into ECPublicKey using FIPS BouncyCastle?

How to convert ECPrivateKey into ECPublicKey using FIPS BouncyCastle? I use the following code (slightly simplified) to convert an ECPrivateKey into an ECPublicKey: public static ECPublicKey getPublicKeyFromPrivateKey(ECPrivateKey privateKey) throws…
Simon Kissane
  • 4,373
  • 3
  • 34
  • 59
3
votes
1 answer

keytool versus FIPS when handling PKCS12 keystores

Background: What Works From time to time we have to use a piece of Java software that reads PKCS#12 keystores. For this particular project, we have to create public/private pairs on an as-needed basis, and we store the keys in PKCS12 files because…
Ti Strga
  • 1,353
  • 18
  • 40
3
votes
1 answer

Bouncy Castle not working on linux machine

I implemented boucnyCastle for fips complaint signature generation and verification, this worked fine on a windows environment but on a linux environment the code is stuck on keypair generation. Following is the code that i have written: public…
Abdul Ahad
  • 188
  • 2
  • 14
3
votes
2 answers

How do I compile fips capable openssl on Windows x64?

I'm currently using the following steps but I'm having trouble compiling: Add 64bit/32bit NASM to path: C:\Program Files\NASM for 64 bit //On 32 bit simply switch to x86 native tool Open native command prompt for VS2015 x64 or run "C:\Program…
Akumaburn
  • 530
  • 1
  • 5
  • 17
3
votes
1 answer

How can Windows OS detect if an algorithm is FIPS compliant?

When Windows setting to force use FIPS Compliant algorithms is turned on and if there is an application that uses non-FIPS compliant algorithm running on that machine, and exception is thrown in that application saying something like it is not part…
sethu
  • 229
  • 1
  • 3
  • 12
3
votes
2 answers

C# MD5 hash in a FIPS enabled server

I have a C# website where I need to create a md5 hash value for a file but my web server has FIPS enabled. Changing to md5 is not an option due to server requirements and for some reason changing the file to FIPS its also out of the table. Can I…
Edgar J. Rodriguez
  • 285
  • 1
  • 2
  • 13
3
votes
0 answers

Need alternate class for SHA512Managed() and HMACSHA512() under FIPS in 2.0, 3.5 .Net framework

I need alternation for SHA512Managed, HMACSHA512 cryptography algorithm under FIPS mode compilation in 2.0, 3.5 framework version. How to achieve this under FIPS compliance m_hashAlgorithm = new SHA512Managed(); m_hmacSha = new HMACSHA512();
user4542724
3
votes
1 answer

Can not connect to sqlserver with Bouncy Castle Fips Provider using to run the JSSE in FIPS mod

I am in Java 8 v102, using sqljdbc42.jar and jtds-1.3.1.jar to connect to SQL Server 2008 in FIPS mode. I configured my Java with https://www.bouncycastle.org/fips/BCUserGuide.pdf, but I am getting the below error. How can I resolve…
Saiket Tewary
  • 99
  • 1
  • 1
  • 3
3
votes
0 answers

Does JBOSS eap-6.3 support FIPS configuration

Can we add FIPS provider for JBOSS EAP 6.3 version-application server on windows ? please help with it steps.
siddhesh shinde
  • 94
  • 6
3
votes
0 answers

error: undefined reference while giving NDK build for application using openssl library

I have followed FIPS Library and Android from the OpenSSL wiki to build the FIPS Object Module. After creating libcrypto.a for both ARM and x86 architecture, I included libcrypto.a in my project's jni/include folder, and then performed an NDK…
Sanjib
  • 119
  • 1
  • 1
  • 15
3
votes
1 answer

How to check if the openssl libraries are using the FIPS validated crytpography

I have open OpenSSL provided binaries from the third party (libeay32.dll and ssleay32.dll). I need to check and verify if those provided run time libraries are using cryptographic algorithms adhering to FIPS 140-2. Is there any way to check this?
Sanjay Phanshikar
  • 143
  • 1
  • 11
1 2 3
28 29