Work with DoD on JBoss FIPS installation (PKCS11) testing
Work with SCQC team on security scan validation
The team completed 29 points this sprint. Release testing was completed including interoperability, regression, new feature testing and installation testing. Couple of issues were uncovered one related to the Regression test with DIrect using XDR and the other one related to Cross Gateway Query Client in WAS application server . The WAS issue will be looked at further next sprint, the Direct/XDR issue was addressed this sprint.
Burndown:
Sprint Themes and related tickets for Sprint 160:
Overview is here. For more information refer to the presentation/slides here
Partner and Community Support:
Security scans review and validation
All Critical, High, Medium Fortify issues are addressed.
All Low Cat1issues are addressed.
Sent required documentation to SCQC team for further review of Security Scan Findings and resolution
DOD - DOD reported problems in configuring FIPS (with store type PKCS11) with CONNECT 4.3.1 on JBOSS EAP 6.3.(CONN-1616)
The Product Team fixed the issue - If the KeyStore type is "PKCS11" then a check is added not to load the file from store location provided in Signature.properties and "TrustStore.properties"
The fix was tested using the validation suite but will need to be further tested by the DoD team in their environment.