Nathan Bardsley wrote:
Hello everyone!
I work for a company that uses OpenSSH/OpenSSL to remotely support
systems we've sold. Since some of our clients are US Dept. of Defense
hospitals, our access to these servers needs to comply with a whole
range of requirements and standards. At
On Fri, 27 Sep 2002, Nathan Bardsley wrote:
Ben Lindstrom wrote:
Where are theses 'DIPS 140-2' requirements? If they are anything like the
other military requirements they are impratical and insane (yes I've had
some time in the area. Not my idea of fun =).
This:
Greetings.
The first SSL connection in my application was taking some 10 to 16
seconds to return. Thereafter, subsequent SSL connections would
complete and return immediately.
I eventually traced the culprit to RAND_poll() in rand_win.c.
Specifically, it was the part of RAND_poll() that walks
Suggestion. Do not wait until you establish your first connection to
call RAND_poll(). Initializae the PRNG as part of the startup of your
app or in a background thread.
Greetings.
The first SSL connection in my application was taking some 10 to 16
seconds to return. Thereafter,
On Fri, Sep 27, 2002 at 07:10:18PM -0500, Ben Lindstrom wrote:
FIPS 140 is linked to C2 security from the looks of it. And from my
skimming it looks like OpenSSL would need to get NIST approval for their
general crypto, their digital signatures, and more than likely thier MAC
code.
FIPS