[openssl-users] FIPS, continuous tests, and error reporting

jonetsu at teksavvy.com jonetsu at teksavvy.com
Thu Feb 19 10:16:50 UTC 2015


I have some questions regarding table '6b - Conditional Tests' of the
2.0.7 Security Policy.

It is mentioned that there are continuous tests for stuck fault. Is
the meaning of 'continuous' a the matter of frequency ?  Or are these
continuous tests ran each time an algorithm is used ?

The document mentions: "In the event of a DRBG self-test failure the
calling application must..." - how is the result communicated to the
application ?

For that matter and in a general sense, so far I've seen that many
encryption methods do not return any error code.  How does error
reporting generally works ?


More information about the openssl-users mailing list