Module Name
RSA BSAFE® Crypto-J JSAFE and JCE Software Module 6.2.4
Historical Reason
Moved to historical list due to sunsetting
Transitional Note
Pending SP 800-56Arev3 transition revalidation
Caveat
When operated in FIPS mode
Security Level Exceptions
- Physical Security: N/A
- Design Assurance: Level 3
Embodiment
Multi-Chip Stand Alone
Description
RSA BSAFE Crypto-J security software is designed to help protect sensitive data as it is stored using strong encryption techniques to provide a persistent level of protection. It supports a wide range of industry standard encryption algorithms offering Java developers the flexibility to choose the option most appropriate to meet their requirements.
Tested Configuration(s)
- Google(TM) ART(TM) JRE 8.0 on Google Android(TM) 7.1.2 ARMv8 (64 bit) running on Google Nexus(TM) 5X
- OpenJDK 8.0 on CentOS 7.3 (64-bit) running on Dell PowerEdge (single-user mode)
- Oracle(R) JRE 8.0 on Microsoft(R) Windows(R) 10 (64-bit) running on Dell(TM) Optiplex(TM)
Approved Algorithms
AES |
Cert. #5026 |
CVL |
Certs. #1570, #1571 and #1572 |
DRBG |
Cert. #1841 |
DSA |
Cert. #1321 |
ECDSA |
Cert. #1283 |
HMAC |
Cert. #3340 |
KAS |
Cert. #156 |
KTS |
AES Cert. #5026; key establishment methodology provides between 128 and 256 bits of encryption strength |
KTS |
vendor affirmed |
PBKDF |
vendor affirmed |
RSA |
Cert. #2711 |
SHS |
Cert. #4085 |
Triple-DES |
Cert. #2591 |
Allowed Algorithms
Diffie-Hellman (key agreement; key establishment methodology provides 112 bits or 128 bits of encryption strength); EC Diffie-Hellman (CVL Cert. #1570, key agreement; key establishment methodology provides between 112 bits and 256 bits of encryption strength); MD5; RSA (key wrapping; key establishment methodology provides 112 or 128 bits of encryption strength)