Dell BSAFE™ Crypto-J 6.3.1 Release Advisory
Summary: Dell BSAFE Crypto-J 6.3.1 is now generally available, integrating Dell BSAFE Java Crypto Module 6.3 FIPS 140-2 provider.
This article applies to
This article does not apply to
This article is not tied to any specific product.
Not all product versions are identified in this article.
Instructions
Initially announced on May 15, 2025
Announcement
The Dell BSAFE Product Team announces the release and general availability of Dell BSAFE Crypto-J 6.3.1. This release embeds the Dell BSAFE Java Crypto Module 6.3 as its underlying FIPS 140-2 provider.
Crypto-J 6.3.1 is a service release that includes, but is not limited to, the following changes:
- Addresses a Medium security vulnerability. For more information, see DSA-2025-100: Dell BSAFE™ Crypto-J Security Update
- Addresses an issue with Extended Master Secret Extension when the SunJSSE provider is used.
- Certificates with explicit curve parameters are rejected by default.
- Added support for DES and DESede AlgorithmParameters.
Only customers with active BSAFE Crypto-J maintenance contracts can receive details about the vulnerability. Public disclosure of the vulnerability details will be shared later.
For additional documentation, downloads, and more, see How To Request a Dell BSAFE product download
Reminders:
- Crypto-J 6.3.1 reaches End Of Life / End Of Service Life in February 2026, as per the Dell BSAFE™ Product Version Lifecycle
-
Crypto-J 6.3 FIPS JCM FIPS 140-2 certificate sunset date is February 16, 2026, and will be moved to CMVP's Historical list.
Affected Products
BSAFE Crypto-JArticle Properties
Article Number: 000321644
Article Type: How To
Last Modified: 15 May 2025
Version: 1
Find answers to your questions from other Dell users
Support Services
Check if your device is covered by Support Services.