The NSS team just completed its 5th FIPS validation with NSS 3.12.4. NSS again has been validated up to Level-2 on Solaris (#1279, sparc and x86), Level-2 on RHEL5 (#1280, 64 and 32 bit), and Level-1 on Mac and Windows (#1278). In 1997, NSS was the first software module to get FIPS Level-2 validation, as well as only the 7th module overall. NSS has since been revalidated in 1999 (#45, #47) , in 2002 (#247,#248) when NSS became the first open source toolkit to be validated at Level-2 (second overall), and in 2007 (#815, #814) when the NSS validation was first sponsored by more than one company.
The new validation certification was sponsored by Sun Inc., Red Hat Inc., and Mozilla Foundation. 3.12.4 adds Shared Database and a new PRNG using NIST SP 800-90 Hash_DRBG over the previous 3.11.4 validation. NSS 3.12.4 also adds support for the non-FIPS algorithms: Camellia and SEED, though not when operating in FIPS mode. NSS 3.12.4 is used in a number of products, including Mozilla Corporation's Firefox browser, Sun/Oracle servers, and Red Hat's RHEL and Fedora operating systems. Certificates for the validation are here: http://csrc.nist.gov/groups/STM/cmvp/documents/140-1/140val-all.htm#1280 Release notes for 3.12.4 are here: https://developer.mozilla.org/NSS_3.12.4_release_notes
-- dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto
