-
Type:
Bug
-
Resolution: Fixed
-
Priority:
P3
-
Affects Version/s: 6
-
Component/s: security-libs
-
b63
-
generic
-
generic
Some more tweaks to 6313675 are necessary. In FIPS mode, we should also ensure that:
. we only use the random number generator from the FIPS crypto provider
. crypto operations during certificate verification (in particular signature verification) happen using the FIPS crypto provider
. we only use private keys/certs stored in the crypto provider for authentication.
. we only use the random number generator from the FIPS crypto provider
. crypto operations during certificate verification (in particular signature verification) happen using the FIPS crypto provider
. we only use private keys/certs stored in the crypto provider for authentication.
- relates to
-
-
- Resolved
-