On Thu, Jul 02, 2009, Peter Lin wrote: > Hi all, > > I noticed that md5 is used as the digest algo in PEM, which is not allowed > for FIPS mode. > > Is there any way change it to a FIPS valid method (e.g. sha1) ? Or is there > any other format to store a RSA private key in OpenSSL FIPS mode? >
PKCS#8 format using SHA1 is transparently used in FIPS mode. Steve. -- Dr Stephen N. Henson. OpenSSL project core developer. Commercial tech support now available see: http://www.openssl.org ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List [email protected] Automated List Manager [email protected]
