Certificate 2433 - Websense Java Crypto Module
intCertNum 2433
strVendorName Forcepoint
strURL http://www.forcepoint.com
strAddress1 10240 Sorrento Valley Road
strAddress2
strAddress3
strCity San Diego
strStateProv CA
strPostalCode 92121
strCountry 92121
strContact Matt Sturm
strEmail msturm@forcepoint.com
strPhone 858-320-9444
strFax
strContact2 Paul Lee
strEmail2 plee@forcepoint.com
strFax2
strPhone2 858-320-9369
intCertNum 2433
strModuleName Websense Java Crypto Module
strPartNumber Software Version: 2.0.1
memModuleNotes When operated in FIPS mode. The module generates cryptographic keys whose strengths are modified by available entropy. No assurance of the minimum strength of generated keys
str140Version 140-2
_sp_ Security Policy   [pdf][html][txt]
_cert_ Certificate   [pdf]
strPURL
strModuleType Software
strValidationDate 08/19/2015;04/11/2016
intOverallLevel 1
memIndividualLevelNotes -Physical Security: N/A ;-Mitigation of Other Attacks: N/A ;;;-Operational Environment: Tested as meeting Level 1 with Windows Server 2012 with Java Runtime Environment (JRE) v1.7.0_17 running on OEM PowerEdge R420 (single-user mode)
strFIPSAlgorithms AES (Cert. #3192);
DSA (Cert. #914);
ECDSA (Cert. #583);
RSA (Cert. #1622);
HMAC (Cert. #2011);
SHS (Cert. #2637);
DRBG (Cert. #668);
Triple-DES (Cert. #1818)
strOtherAlgorithms Diffie-Hellman (key agreement: key establishment methodology provides between 112 and 219 bits of encryption strength;
non-compliant less than 112 bits of encryption strength);
EC Diffie-Hellman (key agreement: key establishment methodology provides between 112 and 256 bits of encryption strength;
non-compliant less than 112 bits of encryption strength);
AES (non-compliant);
RNG (non-compliant);
Blowfish;
Camellia;
CAST5;
CAST6;
ChaCha;
DES;
Triple-DES (non-compliant);
ElGamal;
GOST28147;
GOST3411;
Grain128;
Grainv1;
HC128;
HC256;
IDEA;
IES;
ISAAC;
MD2;
MD4;
MD5;
Naccache Stern;
Noekeon;
Password-Based-Encryption (PBE);
RC2;
RC2 Key Wrapping;
RC4;
RC532;
RC564;
RC6;
RFC3211 Wrapping;
RFC3394 Wrapping;
Rijndael;
Ripe MD128;
Ripe MD160;
Ripe MD256;
Ripe MD320;
RSA Encryption;
Salsa 20;
SEED;
SEED Wrapping;
Serpent;
Shacal2;
SHA-3 (non-compliant);
SHA-512/t (non-compliant);
Skein-256-*;
Skein-512-*;
Skein-1024-*;
Skipjack;
DRBG (non-compliant);
TEA;
Threefish;
Tiger;
TLS v1.0 KDF (non-compliant);
Twofish;
VMPC;
Whirlpool;
XSalsa20;
XTEAEngine
strConfiguration Multi-chip standalone
memModuleDescription The Websense Java Crypto Module provides cryptographic functions for a variety of security solutions from Forcepoint.
intModuleCount 1
memAdditionalNotes Updated vendor contact info to reflect the vendor's name change and the module description.
strFirstValidtionDate 08/19/15 00:00:00
strLabName InfoGard
strValidationYear 2015