Thor Lancelot Simon wrote: > On Fri, Aug 22, 2003 at 10:00:14AM -0700, Bob Baldwin PlusFive wrote: > >>Tim, >> One issue to consider is whether the system >>that includes the PRNG will ever need a FIPS-140-2 >>rating. For example, people are now working on >>a FIPS-140 validation for OpenSSL. If so, then >>the generator for keys and IVs MUST be a FIPS >>approved algorithm, whether or not there are > > > That's not quite right. > > 1) Various entities have already had various versions of > OpenSSL FIPS-140-2 certified.
The validation is for the source of OpenSSL, and will be rolled into the release, this is what is new. Cheers, Ben. -- http://www.apache-ssl.org/ben.html http://www.thebunker.net/ "There is no limit to what a man can do or how far he can go if he doesn't mind who gets the credit." - Robert Woodruff --------------------------------------------------------------------- The Cryptography Mailing List Unsubscribe by sending "unsubscribe cryptography" to [EMAIL PROTECTED]
