You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
FIPS 140-2 is a set of cryptography requirements which are mandated if you wish to run an application in certain regulatory environments.
ensuring they are using FIPS compliant versions of BouncyCastle, not utilizing any non-FIPS approved algorithms, reviewing / applying the same changes to any dependencies, and some documentation. Example: keycloak fips docs.
In the pom.xml, I see references to the non-FIPS version of BouncyCastle, which would indicate the app is using bundled crypto, and would not utilise whatever crypto we configure on the host (i.e such as JRE with bcfips). Additionally, this project looks to have dependencies on other applications, namely:
Guava
Jetty
Curator
Commons Codec
Log4j
Hadoop
Kafka
Zookeeper
Any dependencies would also need to be FIPS compliant. Appreciate any guidance on the above, and whether FIPS is on the roadmap for druid
The text was updated successfully, but these errors were encountered:
FIPS 140-2 is a set of cryptography requirements which are mandated if you wish to run an application in certain regulatory environments.
ensuring they are using FIPS compliant versions of BouncyCastle, not utilizing any non-FIPS approved algorithms, reviewing / applying the same changes to any dependencies, and some documentation. Example: keycloak fips docs.
In the pom.xml, I see references to the non-FIPS version of BouncyCastle, which would indicate the app is using bundled crypto, and would not utilise whatever crypto we configure on the host (i.e such as JRE with bcfips). Additionally, this project looks to have dependencies on other applications, namely:
Any dependencies would also need to be FIPS compliant. Appreciate any guidance on the above, and whether FIPS is on the roadmap for druid
The text was updated successfully, but these errors were encountered: