Module Name
RSA BSAFE® Crypto-J Software Module
Historical Reason
RNG SP800-131A Revision 1 Transition
Caveat
When operated in FIPS mode
Embodiment
Multi-chip standalone
Description
RSA BSAFE Crypto-J security software is designed to help protect sensitive data as it is stored using strong encryption techniques to provide a persistent level of protection. RSA BSAFE Crypto-J supports a wide range of industry standard encryption algorithms offering Java developers the flexibility to choose the option most appropriate to meet their requirements.
Tested Configuration(s)
- 32-bit Itanium2 w/ HP-UX 11.23 with HP JDK 5.0
- 32-bit PowerPC w/ AIX 5L v5.3 with IBM JDK 1.5
- 32-bit SPARC v8+ w/ Solaris 10 with Sun JDK 1.5 (in single-user mode)
- 32-bit x86 Intel Pentium 4 w/ Red Hat Enterprise Linux AS 4.0 with Sun JDK 1.5
- 32-bit x86 Intel Pentium 4 w/ SUSE Linux Enterprise Server 9.0 with Sun JDK 1.5
- 32-bit x86 Intel Pentium 4 w/ Windows XP SP2 with Sun JDK 1.5
- 64-bit Itanium2 w/ HP-UX 11.23 with HP JDK 5.0
- 64-bit PowerPC w/ AIX 5L v5.3 with IBM JDK 1.5
- 64-bit SPARC v9 w/ Solaris 10 with Sun JDK 1.5
- 64-bit x86_64 AMD Opteron w/ SUSE Linux Enterprise Server 9.0 with Sun JDK 1.5
- 64-bit x86_64 Intel Pentium D w/ Red Hat Enterprise Linux AS 4.0 with Sun JDK 1.5
- 64-bit x86_64 Intel Pentium D w/ Windows XP SP2 with Sun JDK 1.5
Approved Algorithms
| AES |
Cert. #487 |
| DSA |
Cert. #197 |
| HMAC |
Cert. #240 |
| RNG |
Cert. #264 |
| RSA |
Cert. #199 |
| SHS |
Cert. #553 |
| Triple-DES |
Cert. #497 |
Other Algorithms
DES; Diffie-Hellman (key agreement; key establishment methodology provides 112 bits of encryption strength; non-compliant less than 112 bits of encryption strength); DESX; MD2; MD5; RIPEMD 160; RNG (X9.31 and SHA1; non-compliant, MD5); RC2; RC4; RC5; PBE (SHA256, SHA384, SHA512); Raw RSA; RSA Keypair Generation MultiPrime; RSA (key wrapping; key establishment methodology provides between 112 and 150 bits of encryption strength; non-compliant less than 112 bits of encryption strength); HMAC-MD5
