Subject: RE: FIPS Support

RE: FIPS Support

From: James Yerge <jyerge_at_tenable.com>
Date: Tue, 22 Mar 2011 08:55:19 -0400

Sorry, should've been more verbose :)

Basically, detect if we're operating in FIPS mode and determine what
functions cannot be called directly. For instance, RSA_public_decrypt()
cannot be called directly when operating in FIPS mode, the EVP_Verify*
functions have to be used instead. I would also assume that determination of
FIPS only algorithms would need to be used when operating in FIPS mode.

The RSA_public_decrypt() is just an example.

-----Original Message-----
From: libssh2-devel-bounces_at_cool.haxx.se
[mailto:libssh2-devel-bounces_at_cool.haxx.se] On Behalf Of Daniel Stenberg
Sent: Tuesday, March 22, 2011 8:38 AM
To: libssh2 development
Subject: Re: FIPS Support

On Tue, 22 Mar 2011, James Yerge wrote:

> Any future plans for this?

What exactly do you mean with "FIPS Support" from us?

-- 
  / daniel.haxx.se
_______________________________________________
libssh2-devel http://cool.haxx.se/cgi-bin/mailman/listinfo/libssh2-devel
_______________________________________________
libssh2-devel http://cool.haxx.se/cgi-bin/mailman/listinfo/libssh2-devel

Received on 2011-03-22

This message: [ Message body ]
Next message: Daniel Stenberg: "RE: FIPS Support"
Previous message: Peter Stuge: "Re: FIPS Support"
In reply to: Daniel Stenberg: "Re: FIPS Support"
Next in thread: Daniel Stenberg: "RE: FIPS Support"
Reply: Daniel Stenberg: "RE: FIPS Support"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]