On Fri, Apr 2, 2010 at 1:42 PM, G. Richard Bellamy <rbell...@pteradigm.com> wrote: > > My understanding of the FIPS Validation process led me to believe that > modifying any of the source would invalidate the claim of using a FIPS > compliant module. Thus, I thought, I must include only those headers used to > compile the library as it was certified. > > If I use the headers from the PKCS #11 website, will the code I write still > be able to claim the use of a FIPS compliant module? Or, conversely, if I > use the headers that ship with NSS am I then not able to make that claim?
You can compile your own code with the PKCS #11 headers from either NSS or the PKCS #11 website. It is your own code, not the NSS FIPS crypto module. Wan-Teh -- dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto
