Mike Small wrote:
Which part of the world using OpenSSL actually passes 1 as "ONOFF" to FIPS_mode_set?
At a minimum that would be everyone communicating with or within US government agencies using OpenSSL under SBU requirements.
I would have thought the world doesn't trust OpenSSL much at all at this exact moment, though perhaps it trusts that one module, maybe, well except the openbsd people not so much:
Yes, well, the Heartbleed stupid isn't in the certified module and it is one of the most spectacular security failures ever.
-- Rich P. _______________________________________________ Discuss mailing list Discuss@blu.org http://lists.blu.org/mailman/listinfo/discuss
