Replies: 1 comment
-
I've answered this elsewhere, but the two providers cannot be used together (and yes it's a requirement...) The OpenSAML API relies on some parts of the BC low level API which is not available in the BC FIPS API, there are equivalent classes in BCFIPS, but that section of the code would need to be rewritten to support the FIPS API. |
Beta Was this translation helpful? Give feedback.
0 replies
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
-
Hello Team,
I'm currently using spring security 6.2 which internally uses OpenSAML 4.3 Java library to handle the SAML assertion received from the IDP. However, I've encountered an issue where OpenSAML relies on the bcprov-jdk18on library, which is not compliant with FIPS standards. To align with my project's requirements for FIPS-compliant libraries, I integrated bc-fips version 1.0.2.4. However, this change has led to numerous "class not found" errors, and the system is not functioning correctly. Could you advise on how to effectively use bc-fips with OpenSAML? Additionally, is it possible for bcprov and bc-fips to coexist within the same JVM environment?
Does bc-fips have all implementation of bcprov ? In what case we can assume bc-fips work as a replacement of bcprov?
Beta Was this translation helpful? Give feedback.
All reactions