-----Original Message----- From: owner-openssl-us...@openssl.org [mailto:owner-openssl-us...@openssl.org] On Behalf Of Dr. Stephen Henson Sent: 23 January 2009 13:07 To: openssl-users@openssl.org Subject: Re: ECDSA signature verification
> On Fri, Jan 23, 2009, Young, Alistair wrote: > > > ... though I notice that the Security Policy document does not > > explicitly mention ECDSA in the table of FIPS approved algorithms. > > > > It does mention DSA with 1024-bit keys (but has a confusing footnote > > which states that "DSA supports a key size of less than 1024 bits > > except when not in FIPS mode" - is there an extra 'not' in this > > statement?), but that perhaps doesn't cover ECDSA. > > > > That is correct, ECDSA is not an approved algorithm in FIPS mode. > > Steve. Thanks for confirming this for me, Steve. Off the top of your head, are you aware of any ECDSA implementations which have been FIPS validated? Alistair. Please help Logica to respect the environment by not printing this email / Merci d'aider Logica à préserver l'environnement en évitant d'imprimer ce mail / Bitte drucken Sie diese Nachricht nicht aus und helfen Sie so Logica dabei die Umwelt zu schuetzen / Por favor ajude a Logica a respeitar o ambiente não imprimindo este correio electrónico. This e-mail and any attachment is for authorised use by the intended recipient(s) only. It may contain proprietary material, confidential information and/or be subject to legal privilege. It should not be copied, disclosed to, retained or used by, any other party. If you are not an intended recipient then please promptly delete this e-mail and any attachment and all copies and inform the sender. Thank you. ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager majord...@openssl.org
