OpenSSL in FIPS mode, does FIPS mode provide any extra set of ciphersuites?
Salz, Rich
rsalz at akamai.com
Thu May 28 14:46:16 UTC 2020
Are you asking about the current (outdated) 2.0 module or the 3.0 module that is still being developed?
In 2.0, once you enter FIPS mode you cannot leave it. In 3.0 you can switch among FIPS and non-FIPS as you need to. See https://www.openssl.org/docs/OpenSSL300Design.html for a description of 3.0
FIPS ciphers are a subset of the ciphers that OpenSSL supports.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://mta.openssl.org/pipermail/openssl-users/attachments/20200528/e55928c2/attachment.html>
More information about the openssl-users
mailing list