Reference Guide

The Cryptographic Module 5

RSA BSAFE Crypto-J JSAFE and JCE Software Module 6.2.5 Security Policy Level 1

The following table lists the certification levels sought for the JCM for each section of

the FIPS 140-2 specification.

The JCM is packaged in a Java Archive (JAR) file containing all the code for the

module.

The JCM API of the module is provided in the

jcmFIPS-6.2.5.jar and

jcmandroidfips-6.2.5.jar files.

1.2.1 Laboratory Validated Operating Environments

For FIPS 140-2 validation, the JCM is tested by an accredited FIPS 140-2 testing

laboratory on the following operating environments:

• Google

ART™ on Google Android™ 8.0 ARM

v8 (64-bit) running on

Samsung S9™ with a Qualcomm

Snapdragon™ processor

• Oracle

JRE 8.0 on Microsoft

Windows

Server 2016 (64-bit) running on

Dell™ PowerEdge™ T130 with an Intel

Xeon™ E3 processor

• OpenJDK 8.0 on CentOS 7.6 (64-bit) running on Dell PowerEdge with an Intel

Xeon processor.

Table 1 Certification Levels

Section of the FIPS 140-2 Specification Level

Cryptographic Module Specification 1

Cryptographic Module Ports and Interfaces 1

Roles, Services, and Authentication 1

Finite State Model 1

Physical Security N/A

Operational Environment 1

Cryptographic Key Management 1

EMI/EMC 1

Self-Tests 1

Design Assurance 3

Mitigation of Other Attacks 1

Overall 1