Configuration Guide › FIPS 140-2 Compliance › Encrypted Information

Encrypted Information

The following CA IdentityMinder information is encrypted:

• Passwords in the datasource configuration for Jboss
• Forgotten password recovery information
• Provisioning Server callback secret
• Workflow session information
• Policy Server connection information

CA IdentityMinder uses JSafe libraries to encrypt and decrypt data. To ensure that the libraries are not tampered with, CA IdentityMinder uses CryptoJ self-test code during startup.

After the self-tests run, CryptoJ messages, which report the status of the test, appear in the application server log. The log contains one of the following messages:

[ims.default] * CryptoJ was initialized properly.

[ims.default] !!! CryptoJ was not initialized properly. !!!