Diffie Hellman and FIPS

Hi all, For a security policy, based on SP800-132 (page 8) one must state how DH derived keys are used. Currently the secret derived between our FIPS module (level 3) and the Computer is used as is and I state in table 5 of the security profile option 1a of SP800-132. Looking at the latest

[openssl.org #2053] [PATCH] Add new -ext_print option to x509 app to print certificate extensions

No reponse received. Marking as stalled. Steve. -- Dr Stephen N. Henson. OpenSSL project core developer. Commercial tech support now available see: http://www.openssl.org __ OpenSSL Project

Re: [openssl.org #3434] [PATCH] Add support for key wrapping mode with padding - RFC 5649

On 7.7.2014 16:16, Stephen Henson via RT wrote: On Mon Jul 07 10:31:21 2014, pspa...@redhat.com wrote: In the previous e-mail you were talking about integration into EVP. Do I understand correctly that I should fix those low-level patches and you will integrate them to EVP? Yes I'll handle

Re: [openssl.org #3434] [PATCH] Add support for key wrapping mode with padding - RFC 5649

On 7.7.2014 16:16, Stephen Henson via RT wrote: On Mon Jul 07 10:31:21 2014, pspa...@redhat.com wrote: In the previous e-mail you were talking about integration into EVP. Do I understand correctly that I should fix those low-level patches and you will integrate them to EVP? Yes I'll

[openssl.org #3434] [PATCH] Add support for key wrapping mode with padding - RFC 5649

On Fri Jul 18 19:34:46 2014, pspa...@redhat.com wrote: Understood. I will be rework patches as necessary. No need. I've made a few minor changes to address this. It is being reviewed internally before being pushed. Steve. -- Dr Stephen N. Henson. OpenSSL project core developer. Commercial

[openssl.org #3434] [PATCH] Add support for key wrapping mode with padding - RFC 5649

Now applied to master branch. Many thanks for your contribution. Steve. -- Dr Stephen N. Henson. OpenSSL project core developer. Commercial tech support now available see: http://www.openssl.org __ OpenSSL Project

RE: [openssl.org #3459] HeartBleed for HP SMH on Windows 2003

It is HP systems management home page.i am infrastructure guy and not sure what to do though i upgraded smh as recommended by HP. Sent from my Windows Phone From: Rich Salz via RTmailto:r...@openssl.org Sent: ‎17-‎07-‎2014 01:42 To: Pandey,

RSA key generation on ENGINE and use my prime generator

I have implemented one prime generator and want to use it beside RSA key generation inside my engine. It means that i am going to implement an RSA Engine which uses my prime generator. How can i do this? I know that there is RSA_method struct but i dont know how can it tell RSA method to use my

RSA key generation on ENGINE and use my prime generator

hi, I have implemented one prime generator and want to use it beside RSA key generation inside my engine. It means that i am going to implement an RSA Engine which uses my prime generator. How can i do this? I know that there is RSA_method struct but i dont know how can it tell RSA method to use