8 12:02 AM
To: Mitch Parker
Cc: Ryan McBride; misc@openbsd.org
Subject: Re: FIPS 140-2
> What good is an OpenBSD system running with a FIPS 140-2 certified
> cryptographic component handling SSL and SSH (using AES-256) if the
> interfacing systems aren't also well-protected, and you
> What good is an OpenBSD system running with a FIPS 140-2 certified
> cryptographic component handling SSL and SSH (using AES-256) if the
> interfacing systems aren't also well-protected, and your applications
> running on the system don't have safeguards against malicious usage?
You're right --
, March 12, 2008 10:04 PM
To: misc@openbsd.org
Subject: Re: FIPS 140-2
On Thu, Mar 13, 2008 at 12:29:47PM +1100, Damien Miller wrote:
> On Wed, 12 Mar 2008, Ed Ahlsen-Girard wrote:
>
> > Does OpenBSD's OpenSSL use the FIPS 140-2 certified bits where
> > applicable?
>
>
On Thu, Mar 13, 2008 at 12:29:47PM +1100, Damien Miller wrote:
> On Wed, 12 Mar 2008, Ed Ahlsen-Girard wrote:
>
> > Does OpenBSD's OpenSSL use the FIPS 140-2 certified bits where
> > applicable?
>
> No. Furthermore, there are no "FIPS 140-2 certified bits" - it is an
> entire package that is cert
On Wed, 12 Mar 2008, Ed Ahlsen-Girard wrote:
> Does OpenBSD's OpenSSL use the FIPS 140-2 certified bits where
> applicable?
No. Furthermore, there are no "FIPS 140-2 certified bits" - it is an
entire package that is certified, you don't get to pick and choose.
-d
5 matches
Mail list logo
