Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

Cryptographic Module Validation Program CMVP

Certificate #3673

Details

Module Name
VMware's BC-FJA (Bouncy Castle FIPS Java API)
Standard
FIPS 140-2
Status
Active
Sunset Date
8/22/2024
Overall Level
1
Caveat
When installed, initialized and configured as specified in the Security Policy Section 3 and operated in FIPS mode. The module generates cryptographic keys whose strengths are modified by available entropy.
Security Level Exceptions
  • Physical Security: N/A
Module Type
Software
Embodiment
Multi-Chip Stand Alone
Description
VMware’s BC-FJA (Bouncy Castle FIPS Java API) is a software cryptographic module that provides cryptographic functions and services to various VMware applications via a well-defined Java-language application programming interface (API).
Tested Configuration(s)
  • CentOS 8 with JDK 11 on VMware ESXi 7.0 running on Dell PowerEdge R740 with Intel Xeon Gold 6126
  • Photon OS 3.0 with JDK 8 on VMware ESXi 8.0 running on Dell PowerEdge R650 with Intel Xeon Gold 6330
  • Photon OS 4.0 with JDK 11 on VMware ESXi 8.0 running on Dell PowerEdge R650 with Intel Xeon Gold 6330 (single user mode)
  • SUSE Linux Enterprise Server 15 with JDK 11 on VMware ESXi 7.0 running on Dell PowerEdge R740 with Intel Xeon Gold 6126
  • Ubuntu 16.04 with JDK 11 on VMware ESXi 7.0 running on Dell PowerEdge R740 with Intel Xeon Gold 6126
  • Ubuntu 16.04 with JDK 8 on VMware ESXi 7.0 running on Dell PowerEdge R740 with Intel Xeon Gold 6126
  • Ubuntu 18.04 with JDK 11 on VMware ESXi 7.0 running on Dell PowerEdge R740 with Intel Xeon Gold 6126
  • Ubuntu 18.04 with JDK 11 running on Dell Latitude E7470 with Intel Core i5
  • Ubuntu 18.04 with JDK 8 on VMware ESXi 7.0 running on Dell PowerEdge R740 with Intel Xeon Gold 6126
  • VMware Photon OS 2.0 with JDK 11 on VMware ESXi 7.0 running on Dell PowerEdge R740 with Intel Xeon Gold 6126
  • VMware Photon OS 2.0 with JDK 8 on VMware ESXi 7.0 running on Dell PowerEdge R740 with Intel Xeon Gold 6126
  • VMware Photon OS 3.0 with JDK 11 on VMware ESXi 7.0 running on Dell PowerEdge R740 with Intel Xeon Gold 6126
  • VMware Photon OS 3.0 with JDK 8 on VMware ESXi 7.0 running on Dell PowerEdge R740 with Intel Xeon Gold 6126
  • Windows 10 with JDK 11 running on Dell Latitude E7470 with Intel Core i5
  • Windows Server 2016 with JDK 11 on VMware ESXi 7.0 running on Dell PowerEdge R740 with Intel Xeon Gold 6126
  • Windows Server 2016 with JDK 8 on VMware ESXi 7.0 running on Dell PowerEdge R740 with Intel Xeon Gold 6126
  • Windows Server 2019 with JDK 11 on VMware ESXi 7.0 running on Dell PowerEdge R740 with Intel Xeon Gold 6126
Approved Algorithms
AES Certs. #A2054, #A2841 and #C2205
CKG vendor affirmed
CVL Certs. #A2054, #A2841 and #C2205
DRBG Certs. #A2054, #A2841 and #C2205
DSA Certs. #A2054, #A2841 and #C2205
ECDSA Certs. #A2054, #A2841 and #C2205
HMAC Certs. #A2054, #A2841 and #C2205
KAS-SSC vendor affirmed
KBKDF Certs. #A2054, #A2841 and #C2205
KTS AES Certs. #A2054, #A2841 and #C2205; key establishment methodology provides between 128 and 256 bits of encryption strength
KTS vendor affirmed
KTS Triple-DES Certs. #A2054, #A2841 and #C2205; key establishment methodology provides 112 bits of encryption strength
PBKDF vendor affirmed
RSA Certs. #A2054, #A2841 and #C2205
SHA-3 Certs. #A2054, #A2841 and #C2205
SHS Certs. #A2054, #A2841 and #C2205
TDES Certs. #A2054, #A2841 and #C2205
Allowed Algorithms
NDRNG; MD5; RSA (CVL Cert. #C2205, key wrapping; key establishment methodology provides between 150 and 256 bits of encryption strength)
Software Versions
1.0.2.1, 1.0.2.2, 1.0.2.3

Vendor

VMware, Inc.
3401 Hillview Ave.
Palo Alto, CA 94304
USA

Manoj Maskara
mmaskara@vmware.com
Phone: 650-427-1000
Fax: 650-475-5001

Validation History

Date Type Lab
6/22/2020 Initial ACUMEN SECURITY, LLC
5/14/2021 Update ACUMEN SECURITY, LLC
3/7/2024 Update ACUMEN SECURITY, LLC