Am Mittwoch, 8. Januar 2014, 08:16:06 schrieb Steve Marquess: Hi Steve,
>> The descriptions of the OpenSSL FIPS security policy (e.g. section >> 4.2.3) hint to using the "regular" OpenSSL library version which can >> be compiled to use the fipsified OpenSSL version as a >> crypto-backend. IIRC this is what the above mentioned configure >> options hint to. > >You mean the FIPS module User Guide, not the Security Policy. I'm not >sure what hint you're getting from section 4.2.3 which states: Thanks for correcting the reference. > >"Once the validated FIPS Object Module has been generated it is usually >combined with an OpenSSL distribution in order to provide the standard >OpenSSL API. Any 1.0.1 release can be used for this purpose." > >I thought that rather specifically excluded 1.0.0 along with all other >releases that aren't 1.0.1. Should that paragraph also state "Releases >other than 1.0.1 cannot be used for this purpose"? I withdraw my comment. You are right that all refers to 1.0.1 only without applying to any other version. > >-Steve M. Ciao Stephan ______________________________________________________________________ OpenSSL Project http://www.openssl.org Development Mailing List [email protected] Automated List Manager [email protected]
