JDK-6323647 : FIPS mode tweaks
- Type: Bug
- Component: security-libs
- Sub-Component: javax.net.ssl
- Affected Version: 6
- Priority: P3
- Status: Resolved
- Resolution: Fixed
- OS: generic
- CPU: generic
- Submitted: 2005-09-14
- Updated: 2010-04-02
- Resolved: 2005-12-03
The Version table provides details related to the release that this issue/RFE will be addressed.
Unresolved : Release in which this issue/RFE will be addressed.
Resolved: Release in which this issue/RFE has been resolved.
Fixed : Release in which this issue/RFE has been fixed. The release containing this fix may be available for download as an Early Access Release or a General Availability Release.
To download the current JDK release, click here.
Unresolved : Release in which this issue/RFE will be addressed.
Resolved: Release in which this issue/RFE has been resolved.
Fixed : Release in which this issue/RFE has been fixed. The release containing this fix may be available for download as an Early Access Release or a General Availability Release.
To download the current JDK release, click here.
| JDK 6 |
|---|
6 b63Fixed  |
Related Reports
|
Relates :
|
Description
Some more tweaks to 6313675 are necessary. In FIPS mode, we should also ensure that: . we only use the random number generator from the FIPS crypto provider . crypto operations during certificate verification (in particular signature verification) happen using the FIPS crypto provider . we only use private keys/certs stored in the crypto provider for authentication.
Comments
|