[DOCS] Clarifies FIPS cipher suites #53138

lcawl · 2020-03-04T21:26:29Z

Related to #51017 (comment)

This PR clarifies the list of supported cipher suites with FIPS.

elasticmachine · 2020-03-04T21:26:31Z

Pinging @elastic/es-docs (>docs)

elasticmachine · 2020-03-04T21:26:33Z

Pinging @elastic/es-security (:Security/Security)

jkakavas · 2020-03-05T07:53:54Z

x-pack/docs/en/security/fips-140-compliance.asciidoc

+The use of TLS ciphers is mainly governed by the relevant crypto module
+(the FIPS Approved Security Provider that your JVM uses). In general, the
+ciphers that are configured by default in {es} are FIPS 140-2 compliant and can
+be used in a FIPS 140-2 JVM. If you use JDK 11, however, the following ciphers


This is only true when users configure their JVM in FIPS 140 mode with the help of BouncyCastle crypto and JSSE providers so I don't think that we want to make a blanket statement about the list of supported ciphers

[DOCS] Clarifies FIPS cipher suites

39065a2

lcawl added >docs General docs changes :Security/Security Security issues without another label v8.0.0 labels Mar 4, 2020

lcawl mentioned this pull request Mar 4, 2020

[DOCS] Adds common definitions for security settings #51017

Merged

jkakavas reviewed Mar 5, 2020

View reviewed changes

lcawl closed this Mar 5, 2020

lcawl deleted the fips-ciphers branch March 5, 2020 15:44

jakelandis added v8.0.0-alpha1 and removed v8.0.0 labels Jul 26, 2021

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

[DOCS] Clarifies FIPS cipher suites #53138

[DOCS] Clarifies FIPS cipher suites #53138

lcawl commented Mar 4, 2020

elasticmachine commented Mar 4, 2020

elasticmachine commented Mar 4, 2020

jkakavas Mar 5, 2020

[DOCS] Clarifies FIPS cipher suites #53138

[DOCS] Clarifies FIPS cipher suites #53138

Conversation

lcawl commented Mar 4, 2020

elasticmachine commented Mar 4, 2020

elasticmachine commented Mar 4, 2020

jkakavas Mar 5, 2020

Choose a reason for hiding this comment