On Fri, 2003-09-05 at 19:59, Ben Laurie wrote:
> Mathias Brossard wrote:
> > - Asymmetric: DSA, RSA, ECDSA
>
> Not my understanding. Anyway, DSS only. RSA can't be, and ECDSA we
> aren't doing.
It's a little disappointing that RSA is not part of the process (it is
much more common than DSA). Looking at the list of validated modules
http://csrc.nist.gov/cryptval/140-1/1401val.htm I see in the field
"FIPS-approved algorithms" the value "RSA (PKCS #1, vendor affirmed)".
Will you as a 'vendor' claim that OpenSSL is compliant with RSA PKCS#1 ?
As a side note it seems that since 09/05/2003, Crypto++ is on the list
"FIPS 140-2 Level 1" with certificate #343.
Sincerely,
--
Mathias Brossard <[EMAIL PROTECTED]>
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
