RE: FIPS-140 certification

Thu, 25 Jul 2002 07:25:54 -0700

All,
hhmmm, how best to describe this. a version of OpenSSL has been FIPS 140-1 certified.
go to http://csrc.nist.gov/cryptval/140-1/1401val2001.htm and look for Corsec Security Inc.
They we hired by tne NIST to do this as a reference implementation.
It is thought that NIST may eventually release this for common use, we will have to see.
John

Please respond to [EMAIL PROTECTED]

Sent by: [EMAIL PROTECTED]

To: <[EMAIL PROTECTED]>
cc:
Subject: RE: FIPS-140 certification



Bil,

Sad to say but no it is not FIPS-140 certified. We ran into the
same problem also. Basically someone would need to donate money to get
it certified. However depending on if you need the SSL routines
certified or the actual encryption you can buy RSA's encryption package
and use it within openssl.

-
Andrew T. Finnell
Active Solutions L.L.C
[EMAIL PROTECTED]

> -----Original Message-----
> From: [EMAIL PROTECTED]
> [mailto:[EMAIL PROTECTED]] On Behalf Of Bil Kleb
> Sent: Wednesday, July 24, 2002 11:14 PM
> To: [EMAIL PROTECTED]
> Subject: FIPS-140 certification
>
>
> This may be a blasphemous question due to U.S. patent issues,
> but has anyone figured out if Open-SSL is FIPS-140 certified/
> certifiable?
>
> (We are required to use FIPS-compliant secure web servers for
> sensitive data and I'd rather not pay for an enterprise-level
> server just to do some collaborative, web-based work with a
> few folks at MIT---especially with http://www.openssl.org/'s
> challenge of "Why buy an SLL toolkit as a black-box when you
> can get an open one for free?")
>
> For more information on FIPS see,
>
http://csrc.nist.gov/publications/fips/fips140-2/fips1402.pdf

Thanks,
--
Bil Kleb
NASA Langley Research Center
Hampton, Virginia, USA
______________________________________________________________________
OpenSSL Project                                 http://www.openssl.org
User Support Mailing List                    [EMAIL PROTECTED]
Automated List Manager                           [EMAIL PROTECTED]


______________________________________________________________________
OpenSSL Project                                 http://www.openssl.org
User Support Mailing List                    [EMAIL PROTECTED]
Automated List Manager                           [EMAIL PROTECTED]

Reply via email to