Hello,
Sorry if this is a bit beside OpenSSL per se, the idea behind this post is to
perhaps have some information form the OpenSSL experience with FIPS validation.
There was so much effort put into FIPS compliance that it would not be
far-fetched to consider that there is also knowledge
On 10/21/2015 12:02 PM, jonetsu wrote:
>
> Hello,
>
>
> Sorry if this is a bit beside OpenSSL per se, the idea behind this
> post is to perhaps have some information form the OpenSSL experience
> with FIPS validation. There was so much effort put into FIPS
> compliance that it would not be
> From: "Steve Marquess"
> Date: 10/21/15 14:18
> See Appendix B of the OpenSSL FIPS User Guide:
> https://openssl.org/docs/fips/UserGuide-2.0.pdf
Thanks.
> The specific algorithm tests have changed quite a bit since then
> (constant change is part of the fun), but
I my experience of getting CAVP certification on my own (non openssl)
designs it is like this:
1) Pay few ten thousands of dollars to a certification company.
2) They send you a questionnaire about the algorithms you have in the
implementation.
3) You fill that in and return it to them with