I my experience of getting CAVP certification on my own (non openssl)
designs it is like this:
1) Pay few ten thousands of dollars to a certification company.
2) They send you a questionnaire about the algorithms you have in the
implementation.
3) You fill that in and return it to them with design
> From: "Steve Marquess"
> Date: 10/21/15 14:18
> See Appendix B of the OpenSSL FIPS User Guide:
> https://openssl.org/docs/fips/UserGuide-2.0.pdf
Thanks.
> The specific algorithm tests have changed quite a bit since then
> (constant change is part of the fun), but the general concept is th
On 10/21/2015 12:02 PM, jonetsu wrote:
>
> Hello,
>
>
> Sorry if this is a bit beside OpenSSL per se, the idea behind this
> post is to perhaps have some information form the OpenSSL experience
> with FIPS validation. There was so much effort put into FIPS
> compliance that it would not be far-
> From: openssl-users [mailto:openssl-users-boun...@openssl.org] On Behalf
> Of Paul Lucas
> Sent: Tuesday, October 20, 2015 19:08
>
> I'm writing my own callback function in C for SSL_CTX_set_verify() to perform
> additional certificate checks (when the preverify_ok parameter is 1).
> However, I
Hello,
Sorry if this is a bit beside OpenSSL per se, the idea behind this post is to
perhaps have some information form the OpenSSL experience with FIPS validation.
There was so much effort put into FIPS compliance that it would not be
far-fetched to consider that there is also knowledge abo
