On Fri, May 30, 2008, Mathias Brossard wrote: > Kyle Hamilton wrote: >> The FIPS certification process is a black box. Literally, it will be >> complete when it will be complete, and we can't know until it goes >> into final recommendation phase (which is usually the last step before >> NIST grants the certification). > > I've seen on the OpenSSL files with URLs like > ftp://ftp.openssl.org/snapshot/openssl-0.9.8-fips-test-SNAP-<YYYY><MM><DD>.tar.gz > I was wondering if those are snapshots of the future FIPS 1.2 ? > >
The version currently under test is essentially: ftp://ftp.openssl.org/snapshot/openssl-fips-test-1.2.0.tar.gz Though there are no guarantees it wont change before validation is finalised. The snapshots such as: ftp://ftp.openssl.org/snapshot/openssl-0.9.8-stable-SNAP-20080526.tar.gz are based on more recent versions of OpenSSL 0.9.8. They can be linked against the 1.2 module (when available) in a similar way to 0.9.7 and the 1.1.2 module. Steve. -- Dr Stephen N. Henson. Email, S/MIME and PGP keys: see homepage OpenSSL project core developer and freelance consultant. Homepage: http://www.drh-consultancy.demon.co.uk ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager [EMAIL PROTECTED]
