When using the DigestAuthenticationScheme authentication scheme in a station’s WebService, Javascript libraries supply client-side cryptography rather than the JCA security providers—whether the station is running in FIPS mode or not.