Hello, Please let me know if this is not the right place to ask about the following...
I am new to NSS and would like to use it in FIPS mode. I do know about OpenSSL and GnuTLS, both of them having explicit calls to enabled FIPS mode. With NSS, so far I have seen that the modutil non-programmatical utility is used to set FIPS mode, as in: % modutil -force -fips true -dbdir <directory> How does an application assures that NSS is in FIPS mode ? Are calls such as sftk_fipsCheck() and sftk_fipsPowerUpSelfTest() in the softtoken module (fipstokn.c) available to applications ? What is the behaviour of NSS if an application tries to use a non-approved algorithm ? Finally, is there any example code out there that uses NSS in FIPS mode ? Any comments, suggestions appreciated, thanks. -- View this message in context: http://mozilla.6506.n7.nabble.com/Using-NSS-in-FIPS-mode-tp350446.html Sent from the Mozilla - Cryptography mailing list archive at Nabble.com. -- dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto
