Reputation: 13
Snowflake JDBC FIPS driver in non fips mode
We have a requirement to use the JDBC FIPS driver in both FIPS and non-FIPS modes. When using the JDBC FIPS driver, it mandates that the BouncyCastleFipsProvider must always be at the top of Java's security providers list during connection establishment.
However, in non-FIPS mode, we do not want to keep BouncyCastleFipsProvider as the top provider because it causes issues when establishing connections with other databases, such as Oracle.
Our question is:
Is it acceptable to remove the BouncyCastleFipsProvider from the security providers list after the connection has been successfully established and the connection handle is obtained? What is the significance of having BouncyCastleFipsProvider in the providers list when operating in non-FIPS mode? Any insights or best practices on managing this scenario would be greatly appreciated.
Upvotes: 0
Views: 23
Answers (0)
Related Questions
- How to get the insert ID in JDBC?
- Find Oracle JDBC driver in Maven repository
- MySQL JDBC Driver 5.1.33 - Time Zone Issue
- Snowflake JDBC driver internal error: Fail to retrieve row count for first arrow chunk: null -- only occurs on SELECT statements
- Cassandra 4 crashes on startup when FIPS mode enabled using BouncyCasle library
- To prevent a memory leak, the JDBC Driver has been forcibly unregistered
- What is the behavior of isReadOnly JDBC parameter while using PostgreSQL?
- Why does the Informix JDBC driver handle unrelated connection strings?
- Spring Security JDBC driver "no suitable driver" error with GWT