Hi All,
I am trying to build fips compliant openssl 1.0.1m for SSE (nonSSE2)
architecture . The last time I did this, it was not fips compliant( just built
openssl for SSE ) so it worked.
>From the Developer Command Prompt for VS 2012:
1. Build fips-ecp 2.0.8
Clarifying my intentions with a snippet of example code that I would like
to end up with (omitting some lines as well as error checking for the sake
of brevity):
ctx = EVP_PKEY_CTX_new(local_key, NULL);
EVP_PKEY_derive_init(ctx);
/* Set digest to be used to sha256 */
EVP_PKEY_CTX_c
Hi again,
After digging into the ECDH code a bit more, I (sort of) found an answer
to my question.
My reason to look at using the KDF is to apply a hash to the shared
secret to compute a useable key within the derive function. There is a
control value called EVP_PKEY_CTRL_MD which seems like it c
Hello Steve,
Thank you for the response. The ECDSA_set_default_method() indeed sets
up the functionality as you describe below and that seems to be good
enough for me (for now...).
Best regards,
Reinier
On 6/26/15 4:25 PM, Dr. Stephen Henson wrote:
> On Fri, Jun 26, 2015, Reinier Torenbeek wrote
Hello,
I see a fix for logjam has been provided from 1.0.1 and 1.0.2 versions of
openssl.
https://www.openssl.org/blog/blog/2015/05/20/logjam-freak-upcoming-changes/
Does that imply 0.9.8 is not impacted by logjam? Also, Is it not required
to disable export cipher suites in 0.9.8 version? Thank
