Description
The Bouncy Castle FIPS Key Store (BCFKS) format supports storage of certificates and private keys using AES-CCM and PBKDF2 algorithms, providing greater security than the standard JKS and PKCS12 implementations. Support for BCFKS can be implemented using Bouncy Castle security provider libraries that are already leveraged throughout the system.
Initial support should include the ability to specify BCFKS as the key store and trust store type in standard properties files.
Attachments
Issue Links
- links to