Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

    Projects Cryptographic Module Validation Program Validated Modules Search

Cryptographic Module Validation Program CMVP

Certificate #4986

Details

Module Name
VMware's BC-FJA (Bouncy Castle FIPS Java API)
Standard
FIPS 140-3
Status
Active
Sunset Date
7/28/2029
Overall Level
1
Caveat
When operated in approved mode. No assurance of the minimum strength of generated SSPs (e.g., keys).
Security Level Exceptions
  • Physical security: N/A
  • Non-invasive security: N/A
Module Type
Software
Embodiment
Multi-Chip Stand Alone
Description
VMware's BC-FJA is a comprehensive suite of FIPS Approved algorithms implemented in pure Java. All key sizes and modes have been implemented to allow flexibility and efficiency, and additional algorithms are available in non-approved operation as well.
Tested Configuration(s)
  • Java SE Runtime Environment v11 with Photon OS 3.0 on VMWare ESXi 8.0 running on Dell PowerEdge R650 with Intel Xeon Gold 6330
  • Java SE Runtime Environment v11 with Photon OS 5.0 on VMWare ESXi 8.0 running on Dell PowerEdge R650 with Intel Xeon Gold 6330
  • Java SE Runtime Environment v11 with Ubuntu 22.04 on VMWare ESXi 8.0 running on Dell PowerEdge R650 with Intel Xeon Gold 6330
  • Java SE Runtime Environment v17 with Amazon Linux 2023 on VMWare ESXi 8.0 running on Dell PowerEdge R650 with Intel Xeon Gold 6330
  • Java SE Runtime Environment v17 with CentOS 9.0 on VMWare ESXi 8.0 running on Dell PowerEdge R650 with Intel Xeon Gold 6330
  • Java SE Runtime Environment v17 with Photon OS 5.0 on VMWare ESXi 8.0 running on Dell PowerEdge R650 with Intel Xeon Gold 6330
  • Java SE Runtime Environment v17 with Red Hat Enterprise Linux 9.3 on VMWare ESXi 8.0 running on Dell PowerEdge R650 with Intel Xeon Gold 6330
  • Java SE Runtime Environment v21 with Photon OS 4.0 on VMWare ESXi 8.0 running on Dell PowerEdge R650 with Intel Xeon Gold 6330
  • VMware Photon OS 4.0 with Java SE Runtime Environment v11 on VMware ESXi 8.0 running on Dell PowerEdge R650 with Intel Xeon Gold 6330
  • VMware Photon OS 4.0 with Java SE Runtime Environment v17 on VMware ESXi 8.0 running on Dell PowerEdge R650 with Intel Xeon Gold 6330
  • VMware Photon OS 4.0 with Java SE Runtime Environment v8 on VMware ESXi 8.0 running on Dell PowerEdge R650 with Intel Xeon Gold 6330
  • VMware Photon OS 5.0 with Java SE Runtime Environment v21 on VMware ESXi 8.0 running on Dell PowerEdge R650 with Intel Xeon Gold 6330
Approved Algorithms
AES-CBC
A4399
AES-CBC
A5205
AES-CBC-CS1
A4399
AES-CBC-CS1
A5205
AES-CBC-CS2
A4399
AES-CBC-CS2
A5205
AES-CBC-CS3
A4399
AES-CBC-CS3
A5205
AES-CCM
A4399
AES-CCM
A5205
AES-CFB128
A4399
AES-CFB128
A5205
AES-CFB8
A4399
AES-CFB8
A5205
AES-CMAC
A4399
AES-CMAC
A5205
AES-CTR
A4399
AES-CTR
A5205
AES-ECB
A4399
AES-ECB
A5205
AES-FF1
A4399
AES-FF1
A5205
AES-GCM
A4399
AES-GCM
A5205
AES-GMAC
A4399
AES-GMAC
A5205
AES-KW
A4399
AES-KW
A5205
AES-KWP
A4399
AES-KWP
A5205
AES-OFB
A4399
AES-OFB
A5205
Counter DRBG
A4399
Counter DRBG
A5205
cSHAKE-128
A4399
cSHAKE-128
A5205
cSHAKE-256
A4399
cSHAKE-256
A5205
DSA KeyGen (FIPS186-4)
A4399
DSA KeyGen (FIPS186-4)
A5205
DSA PQGGen (FIPS186-4)
A4399
DSA PQGGen (FIPS186-4)
A5205
DSA PQGVer (FIPS186-4)
A4399
DSA PQGVer (FIPS186-4)
A5205
DSA SigGen (FIPS186-4)
A4399
DSA SigGen (FIPS186-4)
A5205
DSA SigVer (FIPS186-4)
A4399
DSA SigVer (FIPS186-4)
A5205
ECDSA KeyGen (FIPS186-4)
A4399
ECDSA KeyGen (FIPS186-4)
A5205
ECDSA KeyVer (FIPS186-4)
A4399
ECDSA KeyVer (FIPS186-4)
A5205
ECDSA SigGen (FIPS186-4)
A4399
ECDSA SigGen (FIPS186-4)
A5205
ECDSA SigVer (FIPS186-4)
A4399
ECDSA SigVer (FIPS186-4)
A5205
Hash DRBG
A4399
Hash DRBG
A5205
HMAC DRBG
A4399
HMAC DRBG
A5205
HMAC-SHA-1
A4399
HMAC-SHA-1
A5205
HMAC-SHA2-224
A4399
HMAC-SHA2-224
A5205
HMAC-SHA2-256
A4399
HMAC-SHA2-256
A5205
HMAC-SHA2-384
A4399
HMAC-SHA2-384
A5205
HMAC-SHA2-512
A4399
HMAC-SHA2-512
A5205
HMAC-SHA2-512/224
A4399
HMAC-SHA2-512/224
A5205
HMAC-SHA2-512/256
A4399
HMAC-SHA2-512/256
A5205
HMAC-SHA3-224
A4399
HMAC-SHA3-224
A5205
HMAC-SHA3-256
A4399
HMAC-SHA3-256
A5205
HMAC-SHA3-384
A4399
HMAC-SHA3-384
A5205
HMAC-SHA3-512
A4399
HMAC-SHA3-512
A5205
KAS-ECC Sp800-56Ar3
A4399
KAS-ECC Sp800-56Ar3
A5205
KAS-FFC Sp800-56Ar3
A4399
KAS-FFC Sp800-56Ar3
A5205
KAS-IFC
A4399
KAS-IFC
A5205
KDA HKDF SP800-56Cr2
A4399
KDA HKDF SP800-56Cr2
A5205
KDA OneStep SP800-56Cr2
A4399
KDA OneStep SP800-56Cr2
A5205
KDA TwoStep SP800-56Cr2
A4399
KDA TwoStep SP800-56Cr2
A5205
KDF ANS 9.63
A4399
KDF ANS 9.63
A5205
KDF IKEv2
A4399
KDF IKEv2
A5205
KDF SNMP
A4399
KDF SNMP
A5205
KDF SP800-108
A4399
KDF SP800-108
A5205
KDF SRTP
A4399
KDF SRTP
A5205
KDF SSH
A4399
KDF SSH
A5205
KDF TLS
A4399
KDF TLS
A5205
KMAC-128
A4399
KMAC-128
A5205
KMAC-256
A4399
KMAC-256
A5205
KTS-IFC
A4399
KTS-IFC
A5205
ParallelHash-128
A4399
ParallelHash-128
A5205
ParallelHash-256
A4399
ParallelHash-256
A5205
PBKDF
A4399
PBKDF
A5205
RSA Decryption Primitive
A4399
RSA Decryption Primitive
A5205
RSA KeyGen (FIPS186-4)
A4399
RSA KeyGen (FIPS186-4)
A5205
RSA SigGen (FIPS186-4)
A4399
RSA SigGen (FIPS186-4)
A5205
RSA Signature Primitive
A4399
RSA Signature Primitive
A5205
RSA SigVer (FIPS186-2)
A4399
RSA SigVer (FIPS186-2)
A5205
RSA SigVer (FIPS186-4)
A4399
RSA SigVer (FIPS186-4)
A5205
Safe Primes Key Generation
A4399
Safe Primes Key Generation
A5205
Safe Primes Key Verification
A4399
Safe Primes Key Verification
A5205
SHA-1
A4399
SHA-1
A5205
SHA2-224
A4399
SHA2-224
A5205
SHA2-256
A4399
SHA2-256
A5205
SHA2-384
A4399
SHA2-384
A5205
SHA2-512
A4399
SHA2-512
A5205
SHA2-512/224
A4399
SHA2-512/224
A5205
SHA2-512/256
A4399
SHA2-512/256
A5205
SHA3-224
A4399
SHA3-224
A5205
SHA3-256
A4399
SHA3-256
A5205
SHA3-384
A4399
SHA3-384
A5205
SHA3-512
A4399
SHA3-512
A5205
SHAKE-128
A4399
SHAKE-128
A5205
SHAKE-256
A4399
SHAKE-256
A5205
TupleHash-128
A4399
TupleHash-128
A5205
TupleHash-256
A4399
TupleHash-256
A5205
Allowed Algorithms
N/A (N/A; N/A)
Software Versions
2.0.0

Vendor

Broadcom Inc.
3401 Hillview Avenue
Palo Alto, CA 94304
USA

VCF Trust and Assurance Engineering
[email protected]
Phone: 877-486-9273

Related Files

Security Policy

Validation History

Date Type Lab
3/14/2025 Initial Lightship Security, Inc.
6/23/2025 Update Lightship Security, Inc.