Questions tagged [fips]

The term "fips" commonly refers to the Federal Information Processing Standards Publication 140 (FIPS 140), a document published by the National Institute of Standards and Technology (NIST), a U.S. government agency. Cryptographic software and hardware that complies with the standard must use only cryptographic algorithms specified in FIPS 140-2, the latest published revision.

The term FIPS is sometimes used to refer to a specific publication, Security Requirements for Cryptographic Modules FIPS 140. Cryptographic software and hardware that complies with the standard must use only cryptographic algorithms specified in FIPS 140-2, the latest published revision.

However, FIPS 140-2 is one of many publications that describes information technology standards for use by U.S. Government Agencies.

Further information can be found at the FIPS Home Page

432 questions

votes

1 answer

How to build fips compliant sqlcipher to call FIPS_mode_set(1)

I built libcrypto.so.1.0.0 with fips compliant as described here I tried to include libcrypto.so.1.0.0 (by creating symbolic link for the file libcrypto.so in android libs folder) and tried to call FIPS_mode_set(1) where I find error - as undefined…

asked Sep 26 '12 at 07:44

user1699512

votes

0 answers

IIS7 App Pool can't load library with Fixed Base Address

My .NET 4.0 Web services are using libeay32.dll, which is compiled in VS2010 with the /FIXED option in order to be FIPS compliant. This means that libeay32.dll fails to load unless it gets to live in a certain address (0xfb00000). The exception…

openssl iis-7.5 asp.net-4.0 fips

asked Jun 27 '12 at 18:05

pduncan

1,330
2
15
26

votes

3 answers

How to access library jar file at run time in android?

I have create a cryptographic module and export it as jar file. The library need self integrity testing when loaded in order to pass the FIPS validation. The first idea comes up to do so is to read the jar file at run time, make a hash and compare…

android fips

asked Dec 01 '11 at 21:44

Si Luo

votes

1 answer

Third party Fips validated Crypto Algorithm in Fips validated Crypto Module?

I am going for a FIPS 140-2 validation process of my software module. I have studied the relevant material but I am still not clear of one thing that can I use third party FIPS validated approved algorithms in my to be fips validated module? or Do i…

fips

asked Nov 23 '11 at 08:57

awatan

1,182
15
33

votes

1 answer

How will new rules of CA/B Forum's Code Signing Certificates affect UWP Signing process?

We have a UWP that we use to sign with a certificate installed in a CI/CD Pipeline Machine. We use this PowerShell command to get it signed .\signtool.exe sign /fd sha256 /t http://timestamp.digicert.com /n "935B2960-B127-4AAC-8CEF-12B537I6737D"…

uwp code-signing fips

asked Apr 04 '23 at 08:29

Fritjof Berggren

3,178
5
35
57

votes

0 answers

java.lang.IllegalArgumentException: Invalid authentication type: want

I have a web-service method which works fine until enabling FIPS mode in tomcat. The code bellow executes fine if FIPS mode is disable: ((X509TrustManager) tm[0]).checkClientTrusted(clientCert, "want"); But when FIPS get enable on tomcat. Same line…

java jax-ws fips

asked Sep 27 '11 at 06:47

rot

votes

0 answers

Potential issues of using the FIPS and non-FIPS versions of the BouncyCastle library in the same project

I'm working on a project where the BouncyCastle Crypto package (non-FIPS) is a dependency of some other 3rd party library. My task is to integrate the BouncyCastle FIPS library to use in our own code. However, the documentation (BC FIPS in 100…

java cryptography bouncycastle fips

asked Aug 08 '22 at 11:47

FahimH

votes

0 answers

How to make Spring Boot 2 Bouncy Castle FIPS compliant?

I am currently trying to make a Spring Boot 2 application to follow all FIPS 140-2 requirements and use TSL in its connections by making use of Bouncy Castle Provider. So far, I tried looking online what people been doing but it's not…

spring-boot bouncycastle fips

asked Oct 29 '21 at 15:45

thevoyager

votes

1 answer

MD5 algorithm working in java even after disabling it in $JAVA_HOME/lib/security/java.security

I have disabled the MD5 algorithm use adding the following in $JAVA_HOME/lib/security/java.security file. But I still I am able to run the code that use MD5 algorithms. jdk.certpath.disabledAlgorithms=MD2, MD5, SHA1 jdkCA & usage…

java md5 java-security fips

asked Sep 28 '21 at 09:13

Ashutosh gupta

votes

0 answers

PKCS11Exception when creating MAC instance on OpenJDK 11 in fips mode

I’m trying to run the following code on an Oracle Linux Server 8.3, with openjdk 11.0.9 in fips mode. import javax.crypto.Mac; import javax.crypto.spec.SecretKeySpec; import org.apache.commons.codec.binary.Base32; public class TestMAC { public…

java cryptography pkcs#11 fips nss

asked Jul 13 '21 at 18:27

David Harris

votes

1 answer

DER length more than 4 bytes while starting H2 db server

I am trying to make our tomcat-based web application FIPS compliant by doing some JRE level configurations. Following are the steps that I am following - Copied bc-fips-1.0.2.jar to {JRE_HOME}/lib/ext folder. Updated the…

java h2 bouncycastle fips

asked Jun 18 '21 at 12:23

Harsh Raj

votes

1 answer

Paramiko SSH command execution failing with `ValueError: [digital envelope routines: EVP_DigestInit_ex] disabled for FIPS`

Executing a command on remote machine using SSH is failing with the below error: Traceback (most recent call last): File "ssh.py", line 4, in ssh_client.connect(hostname='10.x.x.x', username='admin', password='password') File…

python python-3.x paramiko fips

asked May 16 '21 at 16:36

Bharath M

votes

1 answer

How to make existing Java code FIPS 140-2 compliant?

We have some Java library performing AES and RSA encryptions (using javax.crypto.Cipher). A new requirement came in to make the code FIPS 140-2 compliant. Reading some articles what I understood is that I have to change the followings in the…

java jce fips

asked Apr 27 '21 at 01:20

MNWA

votes

1 answer

How to selectively use approved-only mode with BouncyCastle JSSE provider + FIPS provider?

In a small piece of sample code running on Java 8, I'm trying to follow the advice from the bc-fips-1.0.2.jar user guide, Legion of the Bouncy Castle Inc. BC-FJA 1.0.2 (Bouncy Castle FIPS Java API) User Guide Date: 09/14/19: Note: support for FIPS…

java bouncycastle java-security fips

asked Aug 10 '20 at 07:16

MarnixKlooster ReinstateMonica

9,640
14
54
108

votes

1 answer

Run JPackage on a Windows Machine with FIPS

I am trying to run the new jpackage command that is bundled in Java 14 on a Windows 10 computer which is FIPS enabled. In order for Wix to work it needs the -fips command line option. Is there anyway I can pass that in from jpackage? Or is there any…

java wix fips java-14

asked Jul 08 '20 at 12:45

cstack

Prev 1 2 3

…

28 29 Next