Whoops, I really should have sent this here rather than openssl-dev.
According to the Security Policy v1.1.1: Secret or private keys that are input to or output from an application must be input or output in encrypted form using a FIPS Approved algorithm. Note that keys exchanged between the application and the FIPS Object Module may not be encrypted. Is there a FIPS legitimate to set up a web server using OpenSSL that can read the server key at boot? How would one normally go about loading things like server keys if those have to be encrypted as well? TIA
______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager [EMAIL PROTECTED]
