[openssl-commits] [web] master update

Rich Salz rsalz at openssl.org
Mon Nov 27 02:45:12 UTC 2017 

The branch master has been updated
       via  967ef227d2be4d8a9f7abde87de335111b261022 (commit)
      from  77b2d58ef676a3ed2fcb3fbd5da51cc944d8d1d0 (commit)


- Log -----------------------------------------------------------------
commit 967ef227d2be4d8a9f7abde87de335111b261022
Author: Rich Salz <rsalz at akamai.com>
Date:   Sun Nov 26 21:45:06 2017 -0500

    Update FIPS status

-----------------------------------------------------------------------

Summary of changes:
 docs/fipsnotes.html | 18 +++---------------
 1 file changed, 3 insertions(+), 15 deletions(-)

diff --git a/docs/fipsnotes.html b/docs/fipsnotes.html
index fdbfd2d..c850f76 100644
--- a/docs/fipsnotes.html
+++ b/docs/fipsnotes.html
@@ -51,21 +51,6 @@
 	    above summary does not adequately address.  You have been
 	    warned!</p>
 
-	    <h2><a name="privatelabel">The "Private Label" Validation</a></h2>
-
-	    <p>We refer to validations based directly on the OpenSSL FIPS
-	    Object Module as "private label" validations.  These are also
-	    sometimes referred to as "cookie cutter" validations.  The usual
-	    reason for such separate validations is the need for small
-	    modifications which forces a complete new validation, but some
-	    vendors, for marketing or risk management reasons, have obtained
-	    private label validations for binaries produced from unmodified
-	    (or only cosmetically modified) source code.</p>
-
-	    <p><strong>Update:</strong> As of 2015 we are no longer performing private label validations. We are still adding new platforms to the <a
-	      href="http://csrc.nist.gov/groups/STM/cmvp/documents/140-1/140val-all.htm#1747">#1747</a>
-	    or related validations.</p>
-
 	    <h3>Current Validations</h3>
 
 	    <p> The most recent open source based validation is the FIPS 140-2
@@ -77,6 +62,9 @@
 	    at a minimum. And did we mention the
 	    <a href="fips/UserGuide.pdf">User Guide</a>?</p>
 
+            We are not currently taking on any additional validation work
+            nor adding new platforms to the existing "1747" validation.
+
 	    <h3>Performance at Startup</h3>
 
 	    <p>We have had many complaints about poor performance of the

More information about the openssl-commits mailing list