Crypto-J Cryptographic Toolkit
17
RSA BSAFE Crypto-J 4.1 Security Policy
2.7 Self-tests
Crypto-J performs power-up and conditional self-tests to ensure proper operation. If
the power-up self-test fails, the toolkit is disabled and throws a
SecurityException. The toolkit can only leave the disabled state by restarting the
JVM. If the conditional self-test fails, the toolkit throws a SecurityException and
aborts the operation. A conditional self test failure does NOT disable the toolkit.
2.7.1 Power-up Self-tests
The following FIPS-140 required power-up self-tests are implemented in Crypto-J:
·
FIPS186 PRNG KAT
·
AES KAT
·
TDES KAT
·
SHA-1 KAT
·
SHA-224 KAT
·
SHA-256 KAT
·
SHA-384 KAT
·
SHA-512 KAT
·
HMAC SHA-1 KAT
·
HMAC SHA-224 KAT
·
HMAC SHA-256 KAT
·
HMAC SHA-384 KAT
·
HMAC SHA-512 KAT
·
HMAC DRBG Self-Test
·
ECDRBG Self-Test
·
ECDSA KAT
·
Software/firmware integrity check
·
DSA KAT
·
DSA, RSA, EC pair-wise consistency test
·
RSA (signature) KAT.
The following non-FIPS-140 power-up self-tests are implemented in Crypto-J:
·
MD5 KAT
·
HMAC MD5 KAT
·
ECIES KAT
·
ECAES KAT