Cryptographic Module Validation Program CMVP

Certificate #1993

Details

Module Name
IBM® Java JCE FIPS 140-2 Cryptographic Module
Standard
FIPS 140-2
Status
Historical
 Historical Reason
186-2 transition
Validation Dates
08/27/2013;05/29/2015;03/15/2016
Overall Level
1
Caveat
When operated in FIPS mode. The module generates cryptographic keys whose strengths are modified by available entropy
Module Type
Software
Embodiment
Multi-chip standalone
Description
The IBM Java JCE (Java Cryptographic Extension) FIPS provider (IBMJCEFIPS) for Multi-platforms is a scalable, multipurpose cryptographic module that supports many FIPS approved cryptographic operations. This gives Java applications access to the FIPS algorithms via the standard JCE framework that is part of all JVM's at the 1.6 level and higher.
Tested Configuration(s)
  • IBM AIX 7.1 on IBM JVM 1.6 running on IBM 9117-570, Windows 7 32-bit on IBM JVM 1.6 running on Dell Optiplex 755, Solaris 11.0 on IBM JVM 1.6 running on Dell Optiplex 755 (single-user mode)
FIPS Algorithms
AES Cert. #2107
DRBG Cert. #228
DSA Cert. #657
ECDSA Cert. #314
HMAC Cert. #1281
RSA Cert. #1081
SHS Cert. #1830
Triple-DES Cert. #1342
Other Algorithms
AES (non-compliant); Auth HMAC (non-compliant); Diffie-Hellman (key agreement; key establishment methodology provides 112 bits of encryption strength; non-compliant less than 112 bits of encryption strength); DSAforSSL (non-compliant); EC Diffie-Hellman (key agreement; key establishment methodology provides between 112 and 256 bits of encryption strength; non-compliant less than 112 bits of encryption strength); MD5; RSA (key wrapping; key establishment methodology provides between 112 and 270 bits of encryption strength; non-compliant less than 112 bits of encryption strength); RSAforSSL (non-compliant); Triple-DES (non-compliant); RNG
Software Versions
1.71

Vendor

IBM® Corporation
11400 Burnet Road
Austin, TX 78758
USA

Tom Benjamin
tbenjami@us.ibm.com
Phone: 512-286-5319
Fax: 512-436-8009

Lab

SAIC
NVLAP Code: 200427-0