We've definitely talked about this and there isn't a clear programmatic means to achieve this. Of course, we do log which specific version of the libraries that we build and test against in our certification report. So, those could be used to compare a running system against the certification report.
Yes, I also understand that sometimes the desire is to be able to show that CentOS or Fedora is NOT FIPS certified verses RHEL. Of course, that assumes that the RHEL you are running on IS actually certified. On Mon, Oct 29, 2018 at 3:39 PM Gabe Alford <[email protected]> wrote: > Outside of going to > https://csrc.nist.gov/projects/cryptographic-module-validation-program/validated-modules/search > and clicking `search` with empty search parameters, don't know of anything. > > On Mon, Oct 29, 2018 at 1:33 PM Trevor Vaughan <[email protected]> > wrote: > >> Hi All, >> >> Does anyone know of a project that can correlate the running operating >> system with the latest information on the FIPS 140 approved products list. >> >> Basically, I'm looking for a command where I can run something like >> `fipscertified` and get back a `0` or `1` based on the result of the >> latest/updated data. >> >> Bonus points, I'd love to be able to point it at apps and have it tell >> me, but that's a long shot given the statically compiled wonderland we all >> seem to be living in these days. >> >> Thanks, >> >> Trevor >> >> -- >> Trevor Vaughan >> Vice President, Onyx Point, Inc >> (410) 541-6699 x788 >> >> -- This account not approved for unencrypted proprietary information -- >> _______________________________________________ >> scap-security-guide mailing list -- >> [email protected] >> To unsubscribe send an email to >> [email protected] >> Fedora Code of Conduct: https://getfedora.org/code-of-conduct.html >> List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines >> List Archives: >> https://lists.fedorahosted.org/archives/list/[email protected] >> > _______________________________________________ > scap-security-guide mailing list -- > [email protected] > To unsubscribe send an email to > [email protected] > Fedora Code of Conduct: https://getfedora.org/code-of-conduct.html > List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines > List Archives: > https://lists.fedorahosted.org/archives/list/[email protected] > -- Mark Thacker Principal Technical Product Manager, Security, Red Hat Enterprise Linux Email: [email protected] IRC / Freenode : mthacker Mobile: +1-214-636-7004
_______________________________________________ scap-security-guide mailing list -- [email protected] To unsubscribe send an email to [email protected] Fedora Code of Conduct: https://getfedora.org/code-of-conduct.html List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedorahosted.org/archives/list/[email protected]
