Gatfield, Geoffrey wrote:
Hello,
We use OpenSSL for encryption within our application. I am now
enhancing our application to become FIPS compliant. The OpenSSL FIPS
Security Policy lists RSA key wrapping and key establishment as
non-approved. But the policy states that it is included when
This helps a lot. Thanks for the clarification.
-Geoff
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Steve Marquess
Sent: Thursday, April 19, 2007 4:48 PM
To: openssl-users@openssl.org
Subject: Re: RSA Key exchange and FIPS compliance
Gatfield
We use OpenSSL for encryption within our application.
I am now enhancing our application to become FIPS compliant.
The OpenSSL FIPS Security Policy lists RSA key wrapping and
key establishment as non-approved. But the policy states that
it is included when 80 to 150 bits of encryption