[openssl-users] How to enable FIPS mode system-wide for the FIPS capable OpenSSL?
Steve Marquess
marquess at openssl.com
Fri Jan 29 14:31:00 UTC 2016
On 01/28/2016 07:11 PM, security veteran wrote:
> Hi All:
>
> Is there a way to enable FIPS mode globally, instead of having to
> explicitly invoke the FIPS_mode_set() API from each application, for
> enabling the FIPS mode?
>
> ...
Kinda-sorta, via OPENSSL_config() and openssl.conf. See the FIPS user
guide, https://openssl.org/docs/fips/UserGuide-2.0.pdf, section 5.2.
-Steve M.
--
Steve Marquess
OpenSSL Software Foundation
1829 Mount Ephraim Road
Adamstown, MD 21710
USA
+1 877 673 6775 s/b
+1 301 874 2571 direct
marquess at openssl.com
gpg/pgp key: http://openssl.com/docs/0x6D1892F5.asc
More information about the openssl-users
mailing list