Description. steigerwalda. opened on Nov 14, 2019. All current distributions of ibmjcefips. jar should be version 1.8. See https:/ IBM JCE FIPS 140-2 Cryptographic Module Security Policy

A flaw was discovered where a specific algorithm (HASHDRBG) wasn't "re-seeding" properly, which could have compromised security. This required a quick patch to remain compliant with NIST rules.

Like any long-running piece of software, its history was marked by technical hurdles that kept system administrators busy.

The story of is a long-standing saga of digital security, federal mandates, and the slow march of technological evolution within the IBM ecosystem.

For years, developers on GitHub pleaded for version 1.8 to be made widely available, as many distributions were stuck on version 1.71 from 2018. 🌅 The Sunset and the "Plus" Era

It wasn't just for IBM's own servers; developers even found ways to use it within the Oracle JDK to bring FIPS security to non-IBM environments. 🛠️ Challenges and Bugs