Hi, Does the latest OpenSSL 1.0.0d distribution have support for FIPS? The User guide for FIPS back from 2009 (last version) states Openssl 1.0.0 is not supported for use with OpenSSL FIPS object module
Quoted below: "The FIPS Object Module provides an API for invocation of FIPS approved cryptographic functions from calling applications, and is designed for use in conjunction with standard OpenSSL 0.9.8 distributions beginning with 0.9.8j. Note: OpenSSL 1.0.0 is not supported for use with the OpenSSL FIPS Object Module. These standard OpenSSL 0.9.8 source distributions support the original nonFIPS API as well as a FIPS mode in which the FIPS approved algorithms are implemented by the FIPS Object Module and nonFIPS approved algorithms other than DH are disabled by default. These nonvalidated algorithms include, but are not limited to, Blowfish, CAST, IDEA, RCfamily, and nonSHA message digest and other algorithms." Is this still the case? -Yogesh ______________________________________________________________________ OpenSSL Project http://www.openssl.org Development Mailing List openssl-dev@openssl.org Automated List Manager majord...@openssl.org
