1 Reply Latest reply on Aug 4, 2010 5:18 AM by jaikiran pai

    Is JBoss AS Going to be Common Criteria Certified? FIPS

    Richard Lok Newbie

      Hi,

       

      JBoss EAP 4.3 is Common Criteria certified but is there a plan for JBoss AS to be Common Criteria certified?

       

      If not, is it known if JBoss AS is FIPS 140-2 compliant. I know JBoss can use OpenSSL for https communication and OpenSSL itself is FIPS 140-2 compliant. Does anyone know what other areas of JBoss would need to be inspected/validated to be FIPS compliant (password storage, external JNDI communication)?

       

      Thanks