Wan-Teh Chang wrote:
Rob Crittenden wrote:
A fair bit of work has been done to mod_nss, an SSL module for Apache
that uses NSS instead of OpenSSL, since it was released last September.
Changes since then include use the NSS OCSP client, addition of a FIPS
mode (similar to modutil -fips true
David Stutzman wrote:
From the PDF (CMVP = Cryptographic Module Validation Program for those
that don't know. http://csrc.nist.gov/cryptval/ or
http://www.csrc.nist.gov/pki/PKITesting.html):
"The CMVP allows user porting of a validated software cryptographic
module on an OS(s) and/or GPC(
Rob Crittenden wrote:
A fair bit of work has been done to mod_nss, an SSL module for Apache
that uses NSS instead of OpenSSL, since it was released last September.
Changes since then include use the NSS OCSP client, addition of a FIPS
mode (similar to modutil -fips true -dbdir /path/to/databas
Rob Crittenden wrote:
> A fair bit of work has been done to mod_nss, an SSL module for Apache
> that uses NSS instead of OpenSSL, since it was released last September.
>
> Changes since then include use the NSS OCSP client, addition of a FIPS
> mode (similar to modutil -fips true -dbdir /path/to/d
A fair bit of work has been done to mod_nss, an SSL module for Apache
that uses NSS instead of OpenSSL, since it was released last September.
Changes since then include use the NSS OCSP client, addition of a FIPS
mode (similar to modutil -fips true -dbdir /path/to/database), options
to seed th
Wan-Teh Chang wrote:
Note that NIST already allows a crypto module vendor or user
to recompile the source code, without modification, for another
platform and *maintain the validation status*, with the caveat
that NIST makes no statement about the correct operation of
the crypto module on platfo
David Stutzman wrote:
I just read an interesting article about the FIPS certification of
OpenSSL which was brought on by the Defense Department’s Defense Medical
Logistics Standard Support program. It says that they had the source
verified instead of the binary and "Because the source code was
David Stutzman wrote:
I just noticed on the FIPS page what might be an error...
http://wiki.mozilla.org/FIPS_Validation
The HMAC row of the table has the following in the Modes column:
KeySize < BlockSize,
KeySize = BlockSize,
KeySize < BlockSize
Should one of those < be a >?
Yes, the second
I just noticed on the FIPS page what might be an error...
http://wiki.mozilla.org/FIPS_Validation
The HMAC row of the table has the following in the Modes column:
KeySize < BlockSize,
KeySize = BlockSize,
KeySize < BlockSize
Should one of those < be a >?
Let me know if there's someone/where el
I just read an interesting article about the FIPS certification of
OpenSSL which was brought on by the Defense Department’s Defense Medical
Logistics Standard Support program. It says that they had the source
verified instead of the binary and "Because the source code was
validated, it could b
Forwarding this on at Wan-Teh's request for comment by all. I was just
looking to help out with keeping the publicly available info current and
relevant.
Dave
Original Message
Subject:Re: NSS Wiki / Developer Wiki
Date: Wed, 17 May 2006 10:57:51 -0700
From: Wan-T
Peter Djalaliev wrote:
So there is patch for including the Hello extension? Where can I find it?
Is it in some kind of a nightly build or in the CVS directory?
You probably should read the following to see more precisely what it's
all about :
https://bugzilla.mozilla.org/show_bug.cgi?id=2262
12 matches
Mail list logo
