Folks - I have a basic question relative to the FIPS openSSL lib and US export control law. As I understand it, in order for the openSSL lib to run as a FIPS certified module, it must be configured to be loaded as a dynamically linked library. If that is so, how do you get a export classification of less than RESTRICTED since the library contains strong crypto, and the lib could be used to encrypt user data at rates which exceed the positive list restrictions?
Bob Bell
