Applications can be validated independently of any cryptographic
module. In that case, the entire application becomes the
cryptographic module, as opposed to merely the library used.
Read the FIPS certification process documentation for more information.
-Kyle H
On 2/4/06, OpenSSLGRT <[EMAIL PR
Hi --
The problem I have is that the PocketPC port I use (see below) is
OpenSSL 0.9.8a
(so from what you said below only 0.9.7j and 0.9.7 versions above j are
FIPs validated).
But … I know people have been using OpenSSL for getting their
apps FIPs validated for longer than before 0.9.
