Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

Cryptographic Module Validation Program CMVP

Certificate #4743

Details

Module Name
BC-FJA (Bouncy Castle FIPS Java API)
Standard
FIPS 140-3
Status
Active
Sunset Date
7/28/2029
Overall Level
1
Caveat
When operated in approved mode. No assurance of the minimum strength of generated SSPs (e.g., keys).
Security Level Exceptions
  • Physical security: N/A
  • Non-invasive security: N/A
  • Documentation requirements: N/A
  • Cryptographic module security policy: N/A
Module Type
Software
Embodiment
Multi-Chip Stand Alone
Description
The Bouncy Castle FIPS Java API is a comprehensive suite of FIPS Approved algorithms implemented in pure Java. All key sizes and modes have been implemented to allow flexibility and efficiency, and additional algorithms are available in non-approved operation as well.
Tested Configuration(s)
  • VMware Photon OS 4.0 with Java SE Runtime Environment v8 on VMware ESXi 8.0 running on Dell PowerEdge R650 with Intel Xeon Gold 6330, VMware Photon OS 4.0 with Java SE Runtime Environment v11 on VMware ESXi 8.0 running on Dell PowerEdge R650 with Intel Xeon Gold 6330, VMware Photon OS 4.0 with Java SE Runtime Environment v17 on VMware ESXi 8.0 running on Dell PowerEdge R650 with Intel Xeon Gold 6330, VMware Photon OS 5.0 with Java SE Runtime Environment v21 on VMware ESXi 8.0 running on Dell PowerEdge R650 with Intel Xeon Gold 6330
Approved Algorithms
AES-CBC
AES-CBC-CS1
AES-CBC-CS2
AES-CBC-CS3
AES-CCM
AES-CFB128
AES-CFB8
AES-CMAC
AES-CTR
AES-ECB
AES-FF1
AES-GCM
AES-GMAC
AES-KW
AES-KWP
AES-OFB
Counter DRBG
cSHAKE-128
cSHAKE-256
DSA KeyGen (FIPS186-4)
DSA PQGGen (FIPS186-4)
DSA PQGVer (FIPS186-4)
DSA SigGen (FIPS186-4)
DSA SigVer (FIPS186-4)
ECDSA KeyGen (FIPS186-4)
ECDSA KeyVer (FIPS186-4)
ECDSA SigGen (FIPS186-4)
ECDSA SigVer (FIPS186-4)
Hash DRBG
HMAC DRBG
HMAC-SHA-1
HMAC-SHA2-224
HMAC-SHA2-256
HMAC-SHA2-384
HMAC-SHA2-512
HMAC-SHA2-512/224
HMAC-SHA2-512/256
HMAC-SHA3-224
HMAC-SHA3-256
HMAC-SHA3-384
HMAC-SHA3-512
KAS-ECC Sp800-56Ar3
KAS-FFC Sp800-56Ar3
KAS-IFC
KDA HKDF SP800-56Cr2
KDA OneStep SP800-56Cr2
KDA TwoStep SP800-56Cr2
KDF ANS 9.63
KDF IKEv2
KDF SNMP
KDF SP800-108
KDF SRTP
KDF SSH
KDF TLS
KMAC-128
KMAC-256
KTS-IFC
ParallelHash-128
ParallelHash-256
PBKDF
RSA Decryption Primitive
RSA KeyGen (FIPS186-4)
RSA SigGen (FIPS186-4)
RSA Signature Primitive
RSA SigVer (FIPS186-2)
RSA SigVer (FIPS186-4)
Safe Primes Key Generation
Safe Primes Key Verification
SHA-1
SHA2-224
SHA2-256
SHA2-384
SHA2-512
SHA2-512/224
SHA2-512/256
SHA3-224
SHA3-256
SHA3-384
SHA3-512
SHAKE-128
SHAKE-256
TupleHash-128
TupleHash-256
Allowed Algorithms
N/A (N/A; N/A)
Software Versions
2.0.0

Vendor

Legion of the Bouncy Castle Inc.
85 The Crescent
Ascot Vale, Victoria 3032
Australia

David Hook
dgh@bouncycastle.org
Phone: 61438170390
Jon Eaves
jon@bouncycastle.org
Phone: 61417502969

Validation History

Date Type Lab
7/29/2024 Initial ACUMEN SECURITY, LLC