On 4/2/2010 2:00 PM, Wan-Teh Chang wrote:
On Fri, Apr 2, 2010 at 1:42 PM, G. Richard Bellamy
<rbell...@pteradigm.com> wrote:
My understanding of the FIPS Validation process led me to believe that
modifying any of the source would invalidate the claim of using a FIPS
compliant module. Thus, I thought, I must include only those headers used to
compile the library as it was certified.
If I use the headers from the PKCS #11 website, will the code I write still
be able to claim the use of a FIPS compliant module? Or, conversely, if I
use the headers that ship with NSS am I then not able to make that claim?
You can compile your own code with the PKCS #11 headers from either
NSS or the PKCS #11 website. It is your own code, not the NSS FIPS
crypto module.
Wan-Teh
I was thinking that perhaps there are inline functions... I should have
checked the source first.
Thanks again.
-rb
--
dev-tech-crypto mailing list
dev-tech-crypto@lists.mozilla.org
https://lists.mozilla.org/listinfo/dev-tech-crypto
