Hi,
I'm using openssl (*openssl-0.9.8r.tar.gz *) in a project, and now we want
certificate the software with FIPS certification, my question is if we must
have *openssl-fips-1.2.3.tar.gz* to use OpenSSL FIPS Object Module? In *
openssl-0.9.8r.tar.gz* project we already some fips files. What is
Hi,
I'm using openssl (openssl-0.9.8r.tar.gz ) in a project, and now we want
certificate the software with FIPS certification, my question is if we must
have openssl-fips-1.2.3.tar.gz to use OpenSSL FIPS Object Module? In
openssl-0.9.8r.tar.gz project we already some fips files. What is the
On Sat, Jul 16, 2011, Damien Miller wrote:
Hi,
I'm a bit concerned about the protection afforded by the PEM format to
private keys against offline brute-force attacks. PEM seems to use a
decent KDF, but uses a fixed iteration count of 1. Am I correct in my
understanding that this cannot be
Hi,
I'm using openssl (*openssl-0.9.8r.tar.gz *) in a project, and now we
want certificate the software with FIPS certification, my question is
if we must have *openssl-fips-1.2.3.tar.gz* to use OpenSSL FIPS
Object Module? In * openssl-0.9.8r.tar.gz* project we already some
fips files. What
Hi Steve,
I want my software be FIPS 140-2 validated, not just experiment with
source. The Security Policy document point me to
use openssl-fips-1.2.3.tar.gz. Should I remove openssl-0.9.8r.tar.gz?
Regards,
Tatiana
2011/7/15 Steve Marquess marqu...@opensslfoundation.com
**
Hi,
I'm
Hi,
I am using OpenSSL-1.0.0d (release) + all cumulative bug fixes +
DTLS Heartbeat feature patch on Windows.
A DTLS server (non-blocking) using DTLSv1_Listen having a UDP socket
with SO_REUSEADDR is unable to accept a second client connection when
it is already accepted a client connection
On 7/15/2011 6:48 PM, Tatiana Evers wrote:
Hi Steve,
I want my software be FIPS 140-2 validated, not just experiment with source.
The Security
Policy document point me to use openssl-fips-1.2.3.tar.gz. Should I
remove openssl-0.9.8r.tar.gz?
You cannot build the FIPS canister from
