[openssl-dev] FIPs mode and openssl
Hubert Kario
hkario at redhat.com
Fri May 27 14:31:38 UTC 2016
On Friday 27 May 2016 09:11:26 Mody, Darshan wrote:
> Hi,
>
>
>
> I have a query with regards to FIPS mode and use of Openssl. I have
> put my kernel image n FIPs mode using the documentation
> (https://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Lin
> ux/6/html/Security_Guide/sect-Security_Guide-Federal_Standards_And_Reg
> ulations-Federal_Information_Processing_Standard.html)
>
>
>
> Do I need to put the openssl in FIPs mode using the API
> FIPS_mode_set(1) or will by default the openssl will put itself in
> FIPS mode for my application. There are couple of application on the
> server we use openssl. Do I need to put each of the application
> openssl in FIPS mode or will it put itself in FIPS since the kernel
> is in FIPS mode.
People on this mailing list cannot provide you with authoritative answer
on this question. There are many pieces to the FIPS puzzle, setting the
kernel fips flag is just one item.
Please contact support directly.
--
Regards,
Hubert Kario
Senior Quality Engineer, QE BaseOS Security team
Web: www.cz.redhat.com
Red Hat Czech s.r.o., Purkyňova 99/71, 612 45, Brno, Czech Republic
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 819 bytes
Desc: This is a digitally signed message part.
URL: <http://mta.openssl.org/pipermail/openssl-dev/attachments/20160527/606b3d3c/attachment.sig>
More information about the openssl-dev
mailing list