Hi Atsuhiko and All,
I know that Jsch hasn't got FIPS 140-2 certified. I looked into the source code and found that it supports FIPS approved algorithms AES, Triple-DES, DSA, RSA, SHA-1, HMAC-SHA-1. I wonder whether my software that uses Jsch can pass a FIPS 140-2 validation testing by NIST.
Do you get any experience of this?
I look forward to hearing your inputs.
Thanks a lot,
--- On Tue, 6/16/09, Atsuhiko Yamanaka <ymnk@...> wrote:
From: Atsuhiko Yamanaka <ymnk@...>
Subject: Re: [JSch-users] Is Jsch FIPS 140-2 compliant?
Date: Tuesday, June 16, 2009, 8:48 AM
+-From: "Viet H. Phan" <hoangvietphan@...> --
|_Date: Mon, 15 Jun 2009 02:32:28 -0700 (PDT) _____
|We have been using Jsch to do data transfer with a partner.
|Recently we have got a requirement of following FIPS 104-2 standard
|Could anyone tell me if Jsch is FIPS 140-2 compliant?
Unfortunately, it is not.
1-14-20 HONCHO AOBA-KU,
SENDAI, MIYAGI 980-0014 Japan.