Which JCE providers are FIPS 140-2 compliant?

java cryptography jce fips
Rob H picture Rob H · Feb 18, 2011 · Viewed 15.9k times · Source

What Java Cryptography Extension (JCE) providers are FIPS 140-2 compliant? More specifically, does the Sun/Oracle provider qualify?

Answer

Stephen C picture Stephen C · Feb 19, 2011

According to this information on this page:

  1. IBM and RSA have FIPS 140-2 validated JCE providers.
  2. BouncyCastle have FIPS 140-2 validated JCE providers for Java 7 & 8. (See The Legion of the Bouncy Castle - FIPS Resources Page. Donations are encouraged!)
  3. Sun's JCE providers are not on the list of FIPS 140-2 validated modules.

However, Oracle do have a validated module called "Oracle Cryptographic Libraries for SSL". The description does not say this is a JCE provider ... but it might be.

Also, Oracle don't appear to have any "modules in progress" for FIPS 140-2 validation.

Related questions

Why java.security.NoSuchProviderException No such provider: BC?

The jar (bcprov-jdk16-145.jar) has been added to the project, Security.addProvider(new org.bouncycastle.jce.provider.BouncyCastleProvider()) has been added to the class, and BouncyCastleProvider.PROVIDER_NAME does return "BC" but AesFileIo.writeFile() still throws java.security.NoSuchProviderException …

Read More
How to convert Byte array to PrivateKey or PublicKey type?

I am using RSA algorithm to generate public and private key final KeyPairGenerator keyGen = KeyPairGenerator.getInstance(ALGORITHM); keyGen.initialize(1024); final KeyPair key = keyGen.generateKeyPair(); final PrivateKey privateKey=key.getPrivate(); final PublicKey publickey=key.getPublic(); after that these keys are encoded …

Read More
Why is a SecretKeySpec needed when deriving a key from a password in Java?

What is difference between SecretKey vs SecretKeySpec classes in Java? The documentation of SecretKeySpec says: it can be used to construct a SecretKey from a byte array In this code, if I print secretKey.getEncoded() or secret.getEncoded(), in hex …

Read More