Re: rsaref/crypto in openssl

Tue, 12 Dec 2000 17:15:17 -0800 

Yeah, get rid of RSAREF.

What I'd really like to see is the ability to compile OpenSSL with RSA's
BSAFE Crypto-C toolkit right out of the box. You can do it with 0.9.5a if
you apply a patch you'll find at http://www.lymeware.com/download_fw.html.

Why not use the ciphers in OpenSSL? Because I live in the US, I work for the
US Govt, and the US Govt says I have to use a FIPS 140-1 compliant
encryption toolkit, and no one has paid the NSA to look over the OpenSSL
toolkit and say, yes, we think it's secure and you can use it. Thankfully
Lymeware has provided a patch for 0.9.5a so I can compile BSAFE into
OpenSSL, and they will hopefully do so for 0.9.6 soon. But still, it'd be
nice if it were a compilation option in OpenSSL.

/s.


----- Original Message -----
From: "Richard Levitte - VMS Whacker" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>; <[EMAIL PROTECTED]>
Sent: Tuesday, December 12, 2000 6:06 PM
Subject: Re: rsaref/crypto in openssl


> From: "Mehmet M.Musa" <[EMAIL PROTECTED]>
>
> mmmusa> Since the RSA patent has expired, we don't have to use rsaref
> mmmusa> anymore within the US. Now is the openssl group gonna merge
> mmmusa> rsaref.a and libcrypto.a?
>
> Merge?  Why?  Isn't tossing RSAref out the closest window a better
> idea?
>
> --
> Richard Levitte   \ Spannvägen 38, II \ [EMAIL PROTECTED]
> Chairman@Stacken   \ S-168 35  BROMMA  \ T: +46-8-26 52 47
> Redakteur@Stacken   \      SWEDEN       \ or +46-709-50 36 10
> Procurator Odiosus Ex Infernis                -- [EMAIL PROTECTED]
> Member of the OpenSSL development team: http://www.openssl.org/
> Software Engineer, Celo Communications: http://www.celocom.com/
>
> Unsolicited commercial email is subject to an archival fee of $400.
> See <http://www.stacken.kth.se/~levitte/mail/> for more info.
>
> ______________________________________________________________________
> OpenSSL Project                                 http://www.openssl.org
> User Support Mailing List                    [EMAIL PROTECTED]
> Automated List Manager                           [EMAIL PROTECTED]

______________________________________________________________________
OpenSSL Project                                 http://www.openssl.org
User Support Mailing List                    [EMAIL PROTECTED]
Automated List Manager                           [EMAIL PROTECTED]

Reply via email to