Module Name
VMware Java JCE (Java Cryptographic Extension) Module
Historical Reason
Moved to historical list due to sunsetting
Caveat
When installed, initialized and configured as specified in the Security Policy Section 3 and operated in FIPS mode. The module generates cryptographic keys whose strengths are modified by available entropy. No assurance of the minimum strength of generated keys
Security Level Exceptions
- Physical Security: N/A
- Mitigation of Other Attacks: N/A
Embodiment
Multi-chip standalone
Description
The VMware Java JCE (Java Cryptographic Extension) module is a versatile software library that implements FIPS-140-2 approved cryptographic services for VMware products and platforms.
Tested Configuration(s)
- VMware vCloud Networking and Security 5.5.0a vShield Manager OS with Sun JRE 6.0 on VMware vSphere Hypervisor (ESXi) 5.5 running on HP ProLiant DL380e Gen8 Server (single-user mode)
Approved Algorithms
| AES |
Cert. #2704 |
| DRBG |
Cert. #446 |
| DSA |
Cert. #825 |
| HMAC |
Cert. #1685 |
| KTS |
AES Cert. #2704 and HMAC Cert. #1685; key establishment methodology provides between 128 and 256 bits of encryption strength |
| KTS |
Triple-DES Cert. #1623 and HMAC Cert. #1685; key establishment methodology provides 112 bits of encryption strength |
| RSA |
Cert. #1402 |
| SHS |
Cert. #2271 |
| Triple-DES |
Cert. #1623 |
Other Algorithms
AES (Cert. #2704, key unwrapping; key establishment methodology provides between 128 and 256 bits of encryption strength); RSA (key wrapping; key establishment methodology provides between 112 and 128 bits of encryption strength; non-compliant less then 112 bits of encryption strength); Triple-DES (Cert. #1623, key unwrapping; key establishment methodology provides 112 bits of encryption strength)
