Good news for developers and vendors of software for the U.S. and Canadian government market where FIPS 140-2 validated cryptography is required.
The "OpenSSL FIPS Object Module", a software component compatible with the OpenSSL API, has been FIPS 140-2 validated (see certificate #1051 and Security Policy document at http://csrc.nist.gov/groups/STM/cmvp/documents/140-1/1401val2008.htm). The source distribution that generates this validated module is at http://www.openssl.org/source/openssl-fips-1.2.tar.gz. This validation means that the referenced source distribution can be used to create a binary module on a wide range of platforms, in a form compatible with OpenSSL 0.9.8, for enabling FIPS 140-2 validated cryptography in applications. Please see the Security Policy document for details on how to create a validated module for your platform and application. Other supporting information will be made available at http://www.openssl.org/docs/fips/ ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager [EMAIL PROTECTED]
