Azure-sdk-for-java: [QUERY] Does Azure Java SDK support FIPS
Query/Question
I'm looking at client side encryption.
https://docs.microsoft.com/en-us/azure/storage/common/storage-client-side-encryption-java
Is there any documentation on how to setup the Azure SDK to be FIPS compliant?
We use BouncyCastle FIPS - BCFIPS.
Why is this not a Bug or a feature Request?
Documentation to make the client side encryption FIPS compliant.
Setup (please complete the following information if applicable):
- OS: [e.g. iOS] AKS Pod containing Spring Boot app connecting to Azure Storage
- IDE : [e.g. IntelliJ] IntelliJ
- Version of the Library used: latest
Information Checklist
Kindly make sure that you have added all the following information above and checkoff the required fields otherwise we will treat the issuer as an incomplete report
- [ ] Query Added
- [ ] Setup information Added
dkirrane
All 4 comments
@rickle-msft could you please follow up?
joshfree
on 11 Feb 2021
https://docs.microsoft.com/en-us/azure/compliance/offerings/offering-fips-140-2#azure-and-fips-140-2
joshfree
on 11 Feb 2021
@dkirrane My apologies. I discussed this with a teammate and then forgot to post our conclusions. My understanding is that FIPS compliance will depend on which implementations (providers) of the encryption algorithms you use in your environment. The SDK does not have a preference for any particular implementation, so we will use whatever the jdk gives us at runtime for the cipher. Therefore, I will say that as long as you guarantee your implementations are FIPS compliant, Storage's client side encryption should be the same.
Please let me know if your understanding differs or if you have further questions.
rickle-msft
on 17 Feb 2021
Closing this as I believe the question has been answered. @dkirrane Please feel free to reopen if you have further questions.
gapra-msft
on 26 Mar 2021
Related issues
Shabirmean
路
3Comments
alzimmermsft
路
3Comments
marciopd
路
3Comments
buchizo
路
4Comments
algra4
路
4Comments