Re: xmlsec / ECDSA problem

On Sat, Feb 18, 2017 at 8:59 AM, Jeremy Rowley wrote: > It's still permitted in the policy. > > https://www.mozilla.org/en-US/about/governance/policies/security-group/certs > /policy/#inclusion Yes, well... The policy says P-512, which doesn't actually exist. The

RE: xmlsec / ECDSA problem

It's still permitted in the policy. https://www.mozilla.org/en-US/about/governance/policies/security-group/certs /policy/#inclusion Section 8. -Original Message- From: dev-tech-crypto [mailto:dev-tech-crypto-bounces+jeremy.rowley=digicert@lists.mozilla.org ] On Behalf Of Martin

Re: Are NSS bug fix releases still FIPS 140-2 certified?

Red Hat validated their NSS cryptographic module again at the end of 2016, using NSS v3.16.2.3-13.el7_1. See cert# 2711 in the NIST validated modules list: http://csrc.nist.gov/groups/STM/cmvp/documents/140-1/1401val2016.htm -- dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org

[ANNOUNCE] NSS 3.28.3 Release

The NSS team has released Network Security Services (NSS) 3.28.3 No new functionality is introduced in this release. This is a patch release to fix binary compatibility issues. NSS version 3.28, 3.28.1 and 3.28.2 contained changes that were in violation with the NSS compatibility promise.

[ANNOUNCE] NSS 3.29.1 Release

The NSS team has released Network Security Services (NSS) 3.29.1 No new functionality is introduced in this release. This is a patch release to fix binary compatibility issues. NSS version 3.28, 3.28.1, 3.28.2 and 3.29 contained changes that were in violation with the NSS compatibility promise.