RSA Security's Crypto-J Receives FIPS 140-1 Certification

RSA Security announced that its Crypto-J software has attained Federal Information Processing Standards (FIPS) 140-1 certification. Crypto-J is part of RSA Security's BSAFE product line. BSAFE also includes implementations of Secure Sockets Layer (SSL), S/MIME, Wireless Transport Layer Security (WTLS), IP Security (IPSec) and Public Key Cryptography Standards (PKCS).

Victor Chang, vice president of RSA Security's Developer Solutions division, said, "The FIPS 140-1 validation is an important step for RSA BSAFE Crypto-J software because it provides a standard for federal organizations using security systems that provide protection for sensitive or valuable data designed for the Java environment ... Our encryption software is designed to provide all developers, including Java developers, with unmatched levels of quality and performance for their business applications." The certification is awarded to cryptographic modules that meet stringent requirements, and the certification is required before the federal government can use a vendor's encryption technology.

A spokesperson for RSA Security said, "With the FIPS validation, RSA BSAFE Crypto-J 3.3.3 licensees may use its FIPS-approved standard public-key encryption algorithms, symmetric encryption algorithms, message digest algorithms, and other important security components to obtain FIPS 140-1 validation for their own."

RSA Security also said that by using the Crypto-J module, developers could avoid the FIPS 140-1 application process for their own products and sell them directly to US and Canadian government departments and agencies.