Skip to main content
448 questions
Newest Active Bountied Unanswered
Filter by
Sorted by
Tagged with
0 votes
0 answers
30 views

I need to verify that my Tomcat 9 server for my Java application is running in FIPS mode, according to this STIG: Tomcat must use FIPS-validated ciphers on secured connectors. Connectors are how ...
2007wiiremote's user avatar
  • 1
0 votes
0 answers
287 views

I'm building a docker container based on Ubuntu, and manually downloading / building / installing OpenSSL 3.1.2. I'm using the enable-fips congfig option, installing, then running openssl fipsinstall, ...
jd3's user avatar
  • 1
0 votes
0 answers
173 views

I'm trying to make my Spring Boot microservices FIPS 10-3 compliant, which led me to Bouncycastle as the security providers. I have a basic Spring Boot application created with Spring initializr which ...
lopushen's user avatar
  • 1,147
1 vote
1 answer
245 views

I have a simple java test program, that opens an SSL connection to a server. This is on a redhat linux system, actually a UBI 9.5 container. The container is running on a RHEL 9.5 system, with ...
Marvin's user avatar
  • 3,177
0 votes
0 answers
55 views

We are currently using the Snowflake JDBC FIPS driver in a non-FIPS environment. The reason for this choice is to simplify maintenance, as managing different drivers for various environments can be ...
rakesh singh's user avatar
  • 161
1 vote
0 answers
103 views

We have a requirement to use the JDBC FIPS driver in both FIPS and non-FIPS modes. When using the JDBC FIPS driver, it mandates that the BouncyCastleFipsProvider must always be at the top of Java's ...
Divya Pai's user avatar
  • 23
0 votes
1 answer
402 views

I want to understand the behavior when OpenSSL 1.0.2 is integrated with FIPS module 2.0.16. OpenSSL 1.0.2 has inbuild FIPS module, however we are building OpenSSL 1.0.2 with FIPS 2.0.16. could you ...
Priyanka Chauhan's user avatar
  • 73
1 vote
1 answer
652 views

I am running into the following problem when building NodeJS app on a FIPS-enabled RHEL8 server. The command is CI=false npm run build Error: error:060800C8:digital envelope routines:EVP_DigestInit_ex:...
Egor's user avatar
  • 11
1 vote
2 answers
2k views

I am learning how to use Post quantum cryptography with Java. The vendor implementation is provided by BouncyCastle version 1.78.1. In short, I'm using a BouncyCastlePQCProvider to obtain a Key Pair ...
user25753955's user avatar
  • 11
4 votes
1 answer
368 views

I am building OpenSSL 3.0.8 with FIPS for an iOS device. This is my first time undertaking such a task. Here are the steps I have followed so far: Downloaded the OpenSSL 3.0.8 source code and ...
Abhishek Sharma's user avatar
  • 41
1 vote
1 answer
134 views

For testing I want to configure any .Net AES algorithm to produce the results given in the FIPS 197 publication (Appendix B). I tried different parameters (block size = key size = feedback size = 128, ...
Torsten's user avatar
  • 15
2 votes
1 answer
570 views

I've identified the crypto libraries(direct/indirect dependencies) being used in the application developed using the React Framework(JavaScript). I need to know if there's a way to identify if each of ...
Sushan's user avatar
  • 87
1 vote
0 answers
2k views

I've read through several topics related to this issue but none so far have helped. We're running RHEL9 with OpenJDK 11.0.22 and OpenSSL 3.0.7, with FIPS mode enabled (disabling FIPS is not an option)....
noctred's user avatar
  • 11
0 votes
0 answers
211 views

I'm attempting to build an iOS OpenSSL library with FIPS (Federal Information Processing Standards) compliance enabled. I've modified the build script from the krzyzanowskim/OpenSSL repository (https:/...
Swapna's user avatar
  • 1
0 votes
1 answer
95 views

Jose4j up to and including version 0.9.4 throws a ClassCastException on the toJson method when running the following code on a FIPS enabled host. If you disable FIPS on the host, this same code does ...
Dmil Team's user avatar
  • 1
1 vote
1 answer
504 views

Spring Security 6 uses OpenSAML 4.1.1 which has a dependency on the standard (non-FIPS) distribution of BouncyCastle. Has anyone devised a workaround to make Spring Security 6 FIPS-compliant? I haven'...
peterdolannola's user avatar
  • 11
1 vote
0 answers
296 views

run on docker with rhel 8 on openshift without root user this is the information about the OS that the docker is running NAME="Red Hat Enterprise Linux" VERSION="8.8 (Ootpa)" ID=&...
Omry Atia's user avatar
  • 83
1 vote
1 answer
914 views

I have been trying to build FIPS version of Python 3.9.2. on debian. I have gathered that FIPS certified version of OpenSSL is required and chose 3.0.8 as OpenSSL 1 has reached EOL. I have updated ...
David's user avatar
  • 13
0 votes
1 answer
665 views

I am trying to upgrade to Keycloak 22.0.0 from version 20.0.0 using the Quay.io image and I get the following error: Exception in thread "main" java.lang.reflect.InvocationTargetException......
MJ95's user avatar
  • 479
0 votes
1 answer
571 views

Good afternoon, I have a java application that is failing to deploy on FIPS enabled Kubernetes node. I get the following error on startup: org.springframework.beans.factory.BeanCreationException: ...
IT_User's user avatar
  • 778
0 votes
0 answers
358 views

I need to use "SunJGSS" as one of the security providers in a FIPS environment. Is there a FIPS version of the "SunJGSS" Provider or if the underlying JCE/JCA is a FIPS provider ...
Kedarnath's user avatar
  • 280
1 vote
0 answers
2k views

I had an application written in Python3.9 packaged as executable file using PyInstaller in a CentOs7 docker image. Able to install the app successfully in linux machines where FIPS is disabled. If I ...
user1919581's user avatar
  • 511
0 votes
1 answer
5k views

I want to use openssl with fips 140-2 to encrypt and decrypt files. Source OS: ubuntu 18.04. I have followed below steps: I have uninstalled the existing openssl version. Downloaded openssl-3.1.0.tar....
rahuls_'s user avatar
  • 43
7 votes
1 answer
827 views

We have a UWP that we use to sign with a certificate installed in a CI/CD Pipeline Machine. We use this PowerShell command to get it signed .\signtool.exe sign /fd sha256 /t http://timestamp.digicert....
Fernando's user avatar
  • 3,644
0 votes
1 answer
420 views

Python: 3.9.16 OpenSSL: 3.0.8 fips_ccode.c #include <stdio.h> #include <stdlib.h> #include <openssl/provider.h> #include "openssl/md5.h" int main(void) { ...
dev's user avatar
  • 23

1
2 3 4 5
9