// ß--THIS FAILS
syslog(LOG_NOTICE, "%s %s", phase, desc);
return 0;
}
ret = 1;
err:
return ret;
}
Thanks,
Ashish
*From:* openssl-users *On Behalf
Of *Dr Paul Dale
*Sent:* Tuesday, February 8, 2022 1:35 PM
*To:* openssl-us
s *On Behalf
Of *Dr Paul Dale
*Sent:* Tuesday, February 8, 2022 1:35 PM
*To:* openssl-users@openssl.org
*Subject:* [EXTERNAL] Re: Not able to perform FIPS self-tests
Have you considered using the provided for this:
OSSL_PROVIDER_self_test()?
https://www.openssl.org/docs/man3.0/man3/OSSL_PROVID
lt;THIS FAILS
syslog(LOG_NOTICE, "%s %s", phase, desc);
return 0;
}
ret = 1;
err:
return ret;
}
Thanks,
Ashish
From: openssl-users On Behalf Of Dr Paul
Dale
Sent: Tuesday, February 8, 2022 1:35 PM
To: openssl-users@openssl.org
Subject:
Have you considered using the provided for this: OSSL_PROVIDER_self_test()?
https://www.openssl.org/docs/man3.0/man3/OSSL_PROVIDER.html
Pauli
On 8/2/22 17:41, Gahlot, Ashish Kumar wrote:
Hello All,
I’m trying to execute self-tests that FIPS runs after installation
manually by calling the API
Hello All,
I'm trying to execute self-tests that FIPS runs after installation manually by
calling the APIs. I'm using code from
https://github.com/openssl/openssl/blob/7cce994d3e57345ba729388b9321d9bf8b661b4f/providers/fips/self_test_kats.c
but I'm getting NULL when I'm trying to fetch the encr
On 01/20/2016 02:00 AM, cloud force wrote:
> Hi everyone,
>
> From the openssl tips doc it said the power-on self-tests need to be run
> when the system comes up.
>
> If I have multiple applications which uses the openssl crypto functions
> (under fips mode), does each of this application need to
Hi everyone,
>From the openssl tips doc it said the power-on self-tests need to be run
when the system comes up.
If I have multiple applications which uses the openssl crypto functions
(under fips mode), does each of this application need to run the power-on
self-tests?
Also if the openssl fips
On Mon December 22 2008, Steve Marquess wrote:
> a_l t wrote:
> > If I want to validate a stripped down module (let's say
> > for simplicity just without the unwanted self tests), is there a fast
> > way to do it, or I should expect a 6 months process?
>
> Six months would be fast. For uncompli
a_l t wrote:
I understand the requirements of FIPS validation. The product is
designed for Federal market so it must has FIPS validation.
The code uses only PRNG and AES, it doesn't use any of the other
algorithms, that were my question came from.
My problem is really not at the start up of the
I understand the requirements of FIPS validation. The product is designed
for Federal market so it must has FIPS validation.The code uses only PRNG
and AES, it doesn't use any of the other algorithms, that were my question
came from.
My problem is really not at the start up of the system, there I c
a_l t wrote:
If I want to validate a stripped down module (let's say
for simplicity just without the unwanted self tests), is there a fast
way to do it, or I should expect a 6 months process?
Six months would be fast. For uncomplicated validations I tell my
clients to hope for nine months bu
FIPS 140-2 validation is mandated for encryption modules used by the
US federal government when dealing with sensitive-confidential (but
not classified) information. I believe it's also mandated for the
Canada federal government, as well.
This mandate means that even if it takes 10 minutes to ini
If I want to validate a stripped down module (let's say for simplicity just
without the unwanted self tests), is there a fast way to do it, or I should
expect a 6 months process?I also didn't quite understood what you meant in
the last sentence: "Where FIPS validation is mandated operations
conside
a_l t wrote:
I'm running it on TI DSP (C6455) and it takes around 1 minute.
On Sun, Dec 21, 2008 at 10:28 PM, Victor Duchovni
mailto:victor.ducho...@morganstanley.com>> wrote:
On Sun, Dec 21, 2008 at 05:28:14PM +0200, a_l t wrote:
> I'm using the FIPS approved OpenSSL. In the initializatio
I'm running it on TI DSP (C6455) and it takes around 1 minute.
On Sun, Dec 21, 2008 at 10:28 PM, Victor Duchovni <
victor.ducho...@morganstanley.com> wrote:
> On Sun, Dec 21, 2008 at 05:28:14PM +0200, a_l t wrote:
>
> > I'm using the FIPS approved OpenSSL.
> > In the initialization it runs severa
On Sun, Dec 21, 2008 at 05:28:14PM +0200, a_l t wrote:
> I'm using the FIPS approved OpenSSL.
> In the initialization it runs several self tests which take quite a long
> time.
> I use only several algorithms from the OpenSSL, is there a way to remove the
> self tests of the algorithms that I don'
a_l t wrote:
Hi,
I'm using the FIPS approved OpenSSL. In the initialization it runs
several self tests which take quite a long time. I use only several
algorithms from the OpenSSL, is there a way to remove the self tests
of the algorithms that I don't use (like DSA) without losing the FIPS
Hi,
I'm using the FIPS approved OpenSSL.
In the initialization it runs several self tests which take quite a long
time.
I use only several algorithms from the OpenSSL, is there a way to remove the
self tests of the algorithms that I don't use (like DSA) without losing the
FIPS certification.
Thank
18 matches
Mail list logo
