Steve, Thanks for the information.
About your last paragraph, I have to ask: The requirements for this product only uses a subset of the algorithms provided by the FIPS Object Module and the DualEC DRBG and RSA1024 etc. is not supported via our API. So SP800-131A does not affect me. My assumption is that because of this we do not have to test them even though they are present in the FIPS Object Module. True? Regards, LJB PS. I know I am in over my head, but does not have a choice. ______________________________________________________________________ OpenSSL Project http://www.openssl.org Development Mailing List openssl-dev@openssl.org Automated List Manager majord...@openssl.org