I was looking at the FIPS 140-2 Certificate[1] for the Stonewood's Flagstone product, and it has a clause that says "(When operated in FIPS mode)". What does this clause mean?
I was under the impression that since Flagstone only implement FIPS validated encryption algorithms (128-bit AES CBC/ECB and ANSI X9.31 AES 128 bit RNG) there would no non-FIPS mode. I later found out that, Spyrus, Utimaco, Poinsect, MobileArmor have the same clause. 1. http://csrc.nist.gov/groups/STM/cmvp/documents/140-1/140crt/140crt779.pdf _______________________________________________ FDE mailing list [email protected] http://www.xml-dev.com/mailman/listinfo/fde
