West Wind .NET Tools and Demos
FIPS security compliance and wwDotNetBridge
Gravatar is a globally recognized avatar based on your email address. FIPS security compliance and wwDotNetBridge
  Michael Hogan (Ideate Hosting)
  All
  Jan 13, 2022 @ 09:30am

In response to a security scan, we enabled FIPS security for compliance:

Local Computer Policy>Computer Configuration>Windows Settings>Security Settings>Local Policies>Security Options>

After that, we got the following error in a webconnect project using wwDotNetBridge:

I'm not yet sure if the dll version is 6.15.0.0 or 7.8.4.0

Gravatar is a globally recognized avatar based on your email address. re: FIPS security compliance and wwDotNetBridge
  Rick Strahl
  Michael Hogan (Ideate Hosting)
  Jan 13, 2022 @ 11:45pm

Guessing that if some code is using MD5 hashing via wwEncrytion?

I think you'll need to dig a little deeper to find the error. If this is from wwDotnetBridge.prg it's something that uses wwEncyrption I'd guess.

Web Connection internally doesn't use wwEncryption except for wwUserSecurity.GetPasswordHash() which would be used for user logins if password hashing is enabled.

+++ Rick ---

© 1996-2022