[jira] [Updated] (WSS-711) Introduce a system property "fips.enabled" so that WSS4J can work easier in FIPS mode

Colm O hEigeartaigh (Jira) Fri, 07 Feb 2025 06:03:11 -0800


     [ 
https://issues.apache.org/jira/browse/WSS-711?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]


Colm O hEigeartaigh updated WSS-711:
------------------------------------
    Fix Version/s: 4.0.0

> Introduce a system property "fips.enabled" so that WSS4J can work easier in 
> FIPS mode
> -------------------------------------------------------------------------------------
>
>                 Key: WSS-711
>                 URL: https://issues.apache.org/jira/browse/WSS-711
>             Project: WSS4J
>          Issue Type: New Feature
>            Reporter: Freeman Yue Fang
>            Assignee: Colm O hEigeartaigh
>            Priority: Major
>             Fix For: 4.0.0
>
>
> Currently WSS4J has some default security algo settings which are not 
> applicable on FIPS machine.
> For example AES_CBC, RSA-OAEP and PBEWithMD5AndTripleDES are not FIPS 
> compliant, while  we should use AES_GCM, RSA-1_5 and 
> PBEWithHmacSHA512AndAES_256 on FIPS machine.
> So I propose to introduce a system property "fips.enabled", when this 
> property set as true, the FIPS compliant algos will be used accordingly, and 
> this new introduced system propery won't affect current default behaviour.



--
This message was sent by Atlassian Jira
(v8.20.10#820010)

---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscr...@ws.apache.org
For additional commands, e-mail: dev-h...@ws.apache.org

[jira] [Updated] (WSS-711) Introduce a system property "fips.enabled" so that WSS4J can work easier in FIPS mode

Reply via email to