openssl 1.0.1 and FIPS 140-2

2012-04-02 Thread Roger No-Spam
Hi, I would like to have a look at the new FIPS 140-2 module. From what I've been able to find out, it is targeting openssl-1.0.1. I've downloaded openssl-1.0.1 and a fips snapshot (openssl-fips-2.0-test-20120331.tar.gz). Is there a how-to or similar description of how to configure and build t

Re: OpenSSL 1.0.1 and FIPS Object Module v1.2

2012-03-17 Thread Dr. Stephen Henson
On Fri, Mar 16, 2012, Alex Chen wrote: > I have downloaded the OpenSSL 1.0.1 and FIPS object module v1.2. Both will > build a libcrypto.a library. I have some questions and hope someone can > clarify them for me. This FIPS thing is totally new so please if forgive me > if the quest

OpenSSL 1.0.1 and FIPS Object Module v 2.0

2012-03-17 Thread Alex Chen
My mistake in the subject line in previous mail. What I have actually downloaded is FIPS 2.0. The questions below are still valid. Alex On Mar 16, 2012, at 6:48 PM, Alex Chen wrote: > I have downloaded the OpenSSL 1.0.1 and FIPS object module v2.0. Both will > build a libcrypto.a l

Re: OpenSSL 1.0.1 and FIPS Object Module v1.2

2012-03-17 Thread Dr. Stephen Henson
On Fri, Mar 16, 2012, Alex Chen wrote: > I have downloaded the OpenSSL 1.0.1 and FIPS object module v1.2. > Don't. OpenSSL 1.0.1 works with the (currently) unvalidated 2.0 module. If you want to use the 1.2.x module use OpenSSL 0.9.8. Steve. -- Dr Stephen N. Henson. OpenSSL p

OpenSSL 1.0.1 and FIPS Object Module v1.2

2012-03-16 Thread Alex Chen
I have downloaded the OpenSSL 1.0.1 and FIPS object module v1.2. Both will build a libcrypto.a library. I have some questions and hope someone can clarify them for me. This FIPS thing is totally new so please if forgive me if the questions are off the target. 1. Is the crypto code in FIPS a

Re: Final release of Openssl-1.0.1 and FIPS-2.0

2012-02-29 Thread Steve Marquess
On 02/28/2012 08:33 PM, Alex Chen wrote: > When can we expect the final release of OpenSSL 1.0.1? Soon. From last week: "The third beta is now released. This is expected to be the final beta depending on the number of bugs reported." > Does FIPS 2.0 only work with OpenSSL 1.0.1 but not 1.0.0?

Final release of Openssl-1.0.1 and FIPS-2.0

2012-02-28 Thread Alex Chen
When can we expect the final release of OpenSSL 1.0.1? Does FIPS 2.0 only work with OpenSSL 1.0.1 but not 1.0.0? There is a document, http://csrc.nist.gov/groups/STM/cmvp/documents/140-1/140InProcess.pdf, of pending FIPS certificate and OpenSSL object module is there. Is that for FIPS 2.0? When

Re: openssl 1.0.1 and FIPS

2011-05-13 Thread The Doctor
On Fri, May 13, 2011 at 12:24:25PM -0400, Steve Marquess wrote: > > What is happening? > > > > No Fips in the Openssl 1.0.1 STABLe. > > > > > > Correct, and you won't be seeing the "FIPS capable" support there for > some time. We're concentrating on the validation of the module (OpenSSL > FIPS Ob

Re: openssl 1.0.1 and FIPS

2011-05-13 Thread Steve Marquess
> What is happening? > > No Fips in the Openssl 1.0.1 STABLe. > > Correct, and you won't be seeing the "FIPS capable" support there for some time. We're concentrating on the validation of the module (OpenSSL FIPS Object Module 2.0) now. -Steve M. -- Steve Marquess OpenSSL Software Foundation,

openssl 1.0.1 and FIPS

2011-05-13 Thread The Doctor
What is happening? No Fips in the Openssl 1.0.1 STABLe. -- Member - Liberal International This is doc...@nl2k.ab.ca Ici doc...@nl2k.ab.ca God, Queen and country! Never Satan President Republic! Beware AntiChrist rising! http://twitter.com/rootnl2k http://www.facebook.com/dyadallee Stop Steph