As long as you compile the linked openssl with a fipscanister that's
created in accordance with the Security Policy, yes.
Remember, FIPS was developed around non-software crypto. You're
creating and delivering a black box piece of code for delivery to the
customer.
-Kyle H
On 7/18/2014 8:48 AM,
On 01/29/2014 07:16 PM, Nath, Satyajit wrote:
> Hi,
>
> While building the fips object module on our OS (FreeBSD 7.1 based)
> according to the instructions in
> http://www.openssl.org/docs/fips/UserGuide-2.0.pdf, we ran into a
> bug. We have things mostly working starting with
> http://www.ope
On 02/05/2013 03:11 PM, Jeffrey Walton wrote:
> Hi All,
>
> This relates to 'OpenSSL Security Advisory [05 Feb 2013]' and the
> accompanying CVEs. The bulletin did not address combinations of FIPS
> Object Module and FIPS Capable Library Combinations.
>
> Please forgive my ignorance. I don't like
On 02/17/2012 12:54 PM, Alex Chen wrote:
> Thanks for the information Jakob. I cannot find such module from OpenSSL
> source download page.
See
ftp://ftp.openssl.org/snapshot/openssl-fips-2.0-test-20120217.tar.gz
or
http://opensslfoundation.com/testing/validation-2.0/source/open
Thanks for the information Jakob. I cannot find such module from OpenSSL
source download page.
Alex
On Feb 17, 2012, at 2:19 AM, Jakob Bohm wrote:
> On 2/16/2012 10:28 PM, Alex Chen wrote:
> > From what I saw in OpenSSL site and the user guide, the
> > FIPS object module is only compatible wit
On 2/16/2012 10:28 PM, Alex Chen wrote:
> From what I saw in OpenSSL site and the user guide, the
> FIPS object module is only compatible with OpenSSL 0.9.8,
> not 1.0. Is that still valid? Does that mean if I
> cannot use that module to work with OpenSSL 1.0?
No, that is the old FIPS module, w
