I've gone through the FIPS User Guide and have built OpenSSL 1.0.1c with the
FIPS module 2.0.2. From a practical perspective I'm trying to sort out in my
mind the following:
- What is functionally different between the standard OpenSSL and OpenSSL
compiled with FIPS and _not_ in FIPS mode
On 1/17/13, Memmott, Lester lester.memm...@landesk.com wrote:
I've gone through the FIPS User Guide and have built OpenSSL 1.0.1c with the
FIPS module 2.0.2. From a practical perspective I'm trying to sort out in
my mind the following:
Be careful - its a bit dated and some information is not
On 01/17/2013 10:05 AM, Jeffrey Walton wrote:
...
- Why isn't the FIPS module simply built right into OpenSSL and for those
who don't want to run in FIPS mode they simply don't call FIPS_mode_set(1)?
It is if you configure the FIPS Capable Library (openssl-1.0.1c.tar.gz) with:
`config