About 6 months ago, someone asked in this group if anyone is
working on seeking FIPS 140-2 certification for the latest crypto
modules. Both the Mozilla and Sun POCs responded that there are
plans for getting NSS 3.9 certified (Mozilla), or that it is under
consideration (Sun response).
NSS 3.2.2 -- the version last certified -- is now 3.5 years old
and several security vulnerabilities and numerous bug fixes and
feature additions have occurred since then. I suspect that with
the Firefox and Thunderbird 1.0 releases, more agencies are starting
to run into this issue.
What is the current status? Thanks.
Greg Ubben
_______________________________________________
mozilla-crypto mailing list
[email protected]
http://mail.mozilla.org/listinfo/mozilla-crypto
