Developers: | Crypto-Pro |
Last Release Date: | 2021/07/29 |
Technology: | Information Security - Encryption Tools |
Content |
Main article: Cryptography
CryptoPro JCP is a cryptographic information protection tool that implements Russian cryptographic standards, developed in accordance with the JCA (Java Cryptography Architecture) specification.
CryptoPro JCP is designed for:
- authorization and ensuring the legal significance of electronic documents when exchanging them between users, by using procedures for the formation and verification of an electronic digital signature (EDS) in accordance with domestic standards GOST R 34.11-94/GOST R 34.11-2012 and GOST R 34.10-2001/GOST R 34.10-2012;
- ensuring confidentiality and integrity control information by means of its enciphering and imitation protection, in accordance with GOST 28147-89;
- Ensuring the authenticity, confidentiality, and imitation of TLS connections
- monitoring of integrity, system and application software to protect it from unauthorized change or from malfunction;
- management of key elements of the system in accordance with the regulations of protective equipment.
2022: Based on PayControl GOST
On December 20, 2022, the company SafeTech announced that Cryptomissile defense it had expanded the capabilities of the flagship solution with the company. PayControl Now the solution works with the use certified CIPF CryptoPro CSP of JCP, which makes it possible to implement the formation and verification of enhanced unqualified electronic signature in accordance state with the standards GOST R 34.11-2012 and GOST R 34.10-2012. More. here
2021
Compatibility of CryptoPro JCP version 2.0 R4 with JaCarta electronic keys
On July 29, 2021, Aladdin R.D. announced that, together with Crypto-PRO, they completed test tests for the compatibility of their products.
Compatibility certificates issued based on the test results confirm the correctness of the electronic keys of the JaCarta line and the cryptographic information protection tool (CIPF) "CryptoPro JCP" version 2.0 R4.
Compatibility and correctness of sharing has been proven for USB tokens and smart cards JaCarta PKI, JaCarta PRO, GOST JaCarta-2, PKI/GOST JaCarta-2, PRO/GOST JaCarta-2 and JaCarta LT. As additional software necessary for correct functioning, the software tool "CIPF Support Library" CryptoPro JCP "version 2.0.1.245 was used. Testing was carried out in the Java Runtime Environment execution environment versions 7, 8.
Testing was performed on Windows 7 (32/64-bit), Windows 8 (32/64-bit), Windows 8.1 (32/64-bit), Windows 10 (32/64-bit), Windows Server 2003 (32/64-bit), Windows Server 2008 R2, Windows Server 2012, Windows 2012 Server R2, Windows Server 2016, Linux distributions meeting the Linux Standard Base ISO/IEC 23360 version 10.Mac/4X 10.14 B.
Liberica JDK was included in the list of allowed operating environments of the CryptoPro version of JCP 2.0 R4
On April 8, 2021, the company, Cryptomissile defense a supplier of funds cryptographic information protection and funds, EDS BellSoft announced that Liberica JDK it was included in the list of permissible operating environments of the updated version of CryptoPro JCP 2.0 R4, which received certificates for FSB OF THE RUSSIAN FEDERATION the cryptographic protection of class KS1 information (certificate 1 and certificate 2). The updated version of CryptoPro to Liberica JDK 8, 10, 11 adds support for releases 12, 13, 14, as well as work in. This OS Windows will optimize the efficiency of developing and using systems legally significant through electronic document management the Java Liberica JDK runtime the Russian environment with technical support.
As explained, Liberica JDK is the legitimate execution environment Java in the updated version of CryptoPro JCP 2.0 R4. According to the results of the examination of the results of case studies of the CryptoPro version of JCP 2.0 R4, the company received a positive opinion from the FSB of the Russian Federation and Liberica JDK was admitted by the FSB for use with certified cryptographic means.
CryptoPro JCP 2.0 R4 implements domestic cryptography algorithms in Liberica JDK, a Java runtime with Russian technical support. CryptoPro CSP/JCP electronic signature tools are installed on more than 10 million servers, workplaces and mobile devices of users. They are used in the systems of electronic document management, execution of state orders, submission of reports, etc. Developed by CryptoPro, means of ensuring the activities of certification centers are used in more than 1000 organizations; including as part of the head certification center of the Ministry of Telecom and Mass Communications of Russia.
Integration of CryptoPro JCP with Java Liberica JDK runtime to launch a crypto provider allows you to perform a number of cryptographic tasks, including:
- Generate private keys
- generate requests for certificates of the ES verification keys (public keys);
- Write key pairs to the key store on different media types
- install and use the manufactured certificates of the display verification keys (public keys), as well as export certificates to files;
- Calculating the Message Authentication Code (MAC) in the Java Cryptography Extension (JCE)
- encrypt memory areas and files;
- generate electronic signatures and verify their authenticity (including XMLdsig, CAdES, XAdES).
The obtained certificates certify that CIPF CryptoPro JCP 2.0 R4 in the package according to the logbook ZhTYaI.00091-04 30 01 meets the requirements for CIPF designed to protect information that does not contain information constituting a state secret of class KS1, Requirements for electronic signatures approved by Order of the FSB of Russia dated December 27, 2011 No. 796 established for class KS1, and can be used for cryptographic protection (creation and management of key information, encryption of files and data contained in RAM, calculation of simulations for files and data contained in RAM, calculation of hash function value for files and data contained in RAM areas, protection of TLS connections, implementation of electronic signature functions in accordance with No. 63-FZ "On electronic signature").
Along with a number of changes, JCP 2.0 R4 added support for Java machines versions 12, 13 and 14 (and support for Windows for Liberica JDK and OpenJDK). The list of calls, the use of which in the development of systems based on CryptoPro JCP 2.0 R4 is possible without additional case studies, added calls that provide the ability to establish a TLS connection with one-way authentication. In addition, it is acceptable to operate JCP 2.0 R4 without conducting impact assessment studies with the web server in Apache Tomcat versions 7.0, 8.5 and 9.0 (subject to the requirements of the documentation for JCP 2.0 R4). Support for the CAdES-A signature format allows you to use CryptoPro CIPF JCP 2.0 R4 to solve the problems of archiving documents.
The inclusion of Liberica JDK in the list of legitimate environments for the updated version of CryptoPro JCP 2.0 R4, an electronic signature certified by the FSB of Russia, expands the use of Liberica JDK in state information systems. In a modern IT environment prone to regular attacks and encroachments, it is very difficult to ensure the authorship, integrity and confidentiality of information without cryptographic means. noted Alexander Belokrylov, CEO of BellSoft |
Liberica JDK is included in the register of Russian software, and now, having received a positive opinion from the FSB on the use of updated versions with our certified crypto provider, it will expand the range of possibilities for users. And first of all, this applies to the possibility of building systems of legally significant electronic document management in the Liberica JDK environment. reported by Yuri Maslov, commercial director of CryptoPro |
2020: Compatibility of CryptoPro JCP versions 2.0 R2 and 2.0 R3 with JaCarta electronic keys
On April 14, 2020, Aladdin R.D., a Russian developer and supplier of information security solutions, announced that, together with Crypto-PRO LLC, a developer of cryptographic information protection tools, they completed test tests for the compatibility of their products.
The signed compatibility certificate confirms the correct operation of the cryptographic information protection tools "CryptoPro JCP" versions 2.0 R2 and 2.0 R3 with electronic keys of the JaCarta line.
For CIPF "CryptoPro JCP" versions 2.0 R2 and 2.0 R3, the correct operation of USB tokens and smart cards JaCarta GOST, JaCarta PKI, JaCarta PRO, JaCarta PKI/GOST, JaCarta PRO/GOST, JaCarta-2 GOST, JaCarta-2 PKI/LT, JaCarta-2 PRO/GOST and Carta Jta. Aladdin R.D. noted that for correct functioning, a token support module for CryptoPro JCP version 2.0 must be installed.
Testing was conducted in OCWindows Vista, Windows 7, Windows 8, Windows 8.1, Windows 10, Windows Server 2003, Windows Server 2008, Windows 2008 Server R2, Windows Server 2012, Windows 2012 Server R2 and Windows Server 2016.