Package org.keycloak.crypto.fips
-
Class Summary Class Description BCFIPSCertificateUtilsProvider The Class CertificateUtils provides utility functions for generation of V1 and V3X509CertificateBCFIPSECDSACryptoProvider BCFIPSOCSPProvider BCFIPSPemUtilsProvider Encodes Key or Certificates to PEM format stringBCFIPSUserIdentityExtractorProvider FIPS1402Provider Integration based on FIPS 140-2Fips1402StrictCryptoProvider AFIPS1402Providerthat forces BC to run in FIPS approve mode by default.FIPSAesKeyWrapAlgorithmProvider Variant oforg.keycloak.jose.jwe.alg.AesKeyWrapAlgorithmProviderbased on FIPSFIPSRsaKeyEncryptionJWEAlgorithmProvider Fips note: Based on https://downloads.bouncycastle.org/fips-java/BC-FJA-UserGuide-1.0.2.pdf, Section 4 There are no direct public/private key ciphers available in approved mode.KeycloakFipsSecurityProvider Security provider to workaround usage of potentially unsecured algorithms by 3rd party dependencies.