Uploaded image for project: 'RHEL'
  1. RHEL
  2. RHEL-5255

NSS FIPS service indicators mark RSA-OAEP as unapproved [rhel-9.6]

Linking RHIVOS CVEs to...Migration: Automation ...SWIFT: POC ConversionSync from "Extern...XMLWordPrintable

    • nss-3.101.0-10.el9_5
    • None
    • Low
    • ZStream
    • 1
    • rhel-security-crypto
    • ssg_security
    • 19
    • 20
    • 1
    • False
    • False
    • Hide

      None

      Show
      None
    • No
    • Crypto24Q4
    • Approved Blocker
    • If docs needed, set a value
    • None
    • 57,005

      Description of problem:
      NSS does not provide any FIPS approved mechanism for RSA-based KEM.

      Version-Release number of selected component (if applicable):
      nss-3.79.0-13.el9_0

      How reproducible:
      always

      Steps to Reproduce:
      1. Perform RSA-OEAP operation
      2. Inspect service indicators
      3.

      Actual results:
      the service indicator marks the operation as FIPS non-approved

      Expected results:
      The operation should be marked as FIPS approved.

      Additional info:

              fkrenzel František Krenželok
              hkario@redhat.com Alicja Kario
              Robert Relyea Robert Relyea
              Alexander Sosedkin Alexander Sosedkin
              Votes:
              0 Vote for this issue
              Watchers:
              9 Start watching this issue

                Created:
                Updated:
                Resolved: