The following properties configure FIPS-compliant encryption:
Specifies if CA GovernanceMinder uses FIPS-compliant encryption algorithms.
Default: False
True—Use FIPS-compliant encryption.
False—Use non-compliant encryption.
Defines the FIPS-compliant algorithms provider. Leave this property blank to use the RSA JSafeJCE algorithms that CA provides. If you specify another provider, copy that algorithm set to all computers running the CA GovernanceMinder server.
Defines the Java class that iretrieves the encryption key.
Specify one of the previous options by setting the passphrase.getter.class parameter when you configure FIPS encryption.
Default: com.eurekify.security.SimplePassPhraseGetter
The CSM Password Tool enables you to use a FIPS key in an external file generated by the tool for encryption.
|
Copyright © 2014 CA.
All rights reserved.
|
|