A couple more questions about FIPS mode: 1. In the OpenSSL FIPS FAQ (<http://oss-institute.org/fips-faq.html>), it says "Note that it is not compliant with the security policy of FIPS validated OpenSSL to use shared libraries." What exactly does this mean? Does it mean that your app cannot use shared libraries at all, or that the OpenSSL code can't be included in a shared library, or that the OpenSSL code can't be in a shared library by itself, or something else?
2. Where exactly is the security policy document? The FAQ contains a link (<http://csrc.nist.gov/cryptval/140-1/1401val2003.htm>), but this lists a bunch of documents, none of which appears to be the correct one. Thanks Graeme Perrow Sr. Software Developer iAnywhere Solutions, Inc. [EMAIL PROTECTED] ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
