After reviewing the email archives for both the developer and user groups, I have a lot of questions:
- What platforms are being FIPS certified? - Is it FIPS 140-2? - What version of OpenSSL does it correspond to? 0.9.7b? - Are both the static libraries and dynamic libraries to be certified? If not, which? - What is the strategy for introducing bug fixes into the FIPS OpenSSL? - etc. Basically, I would like to know a lot more about what has happened so far, where the certification process is, etc. The threads in the email archives basically show that doing the work was discussed, but not really settled. Then suddenly a note that the code has been moved to its own branch and now this message saying it's almost too late to have any input. What happened to the discussion about the ongoing work? Verdon Walker (801) 861-2633 [EMAIL PROTECTED] Novell, Inc., the leading provider of information solutions http://www.novell.com >>> [EMAIL PROTECTED] 9/4/2003 5:11:23 AM >>> I'm coming close to the end of the work to get OpenSSL FIPS-140ed. So, if people have comments/changes/concerns, they'd better get a move on and clue me in, because once its done we can't change it. Cheers, Ben. -- http://www.apache-ssl.org/ben.html http://www.thebunker.net/ "There is no limit to what a man can do or how far he can go if he doesn't mind who gets the credit." - Robert Woodruff ______________________________________________________________________ OpenSSL Project http://www.openssl.org Development Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED] ______________________________________________________________________ OpenSSL Project http://www.openssl.org Development Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
