Richard Levitte - VMS Whacker wrote: > In message <[EMAIL PROTECTED]> on Wed, 10 Sep 2003 09:45:29 +0100, Ben Laurie > <[EMAIL PROTECTED]> said: > > ben> Richard Levitte - VMS Whacker wrote: > ben> > In message <[EMAIL PROTECTED]> on Tue, 09 Sep 2003 13:55:43 -0600, "Verdon > Walker" <[EMAIL PROTECTED]> said: > ben> > > ben> > VWalker> 3) Once I have the FIPS crypto built, how do I use OpenSSL so > ben> > VWalker> that all SSL crypto work is done using that FIPS crypto? > ben> > > ben> > You have to specify a crypto suite that only contains DSA, DES (and > ben> > variants thereof, like DES3), AES and SHA1. Those and RAND are all > ben> > that are currently implemented as FIPS modules. > ben> > ben> Actually, you can use RSA for signatures, too, but I forgot about it as > ben> there's no validation suite. I'll be adding it soon. > > Along with fips/aes/fips_aes_data/list, I presume?
Actually, we should get rid of that directory. The tests should run on the fips/testvectors data, and we should have the response files in there to check against. Cheers, Ben. -- http://www.apache-ssl.org/ben.html http://www.thebunker.net/ "There is no limit to what a man can do or how far he can go if he doesn't mind who gets the credit." - Robert Woodruff ______________________________________________________________________ OpenSSL Project http://www.openssl.org Development Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
