openssl-fips-2.0.16 : RSA key generation !!
Dr Paul Dale
paul.dale at oracle.com
Thu Jan 2 07:32:51 UTC 2020
There are transitions ahead to remove FIPS 186-2 as a standard. At the moment all is good, later in this year some things will disappear and be invalid.
The OpenSSL project is aware of the situation but has not yet made a decision about the path to follow. One thing we can say is that the old FOM will not be revalidated.
Pauli
--
Dr Paul Dale | Distinguished Architect | Cryptographic Foundations
Phone +61 7 3031 7217
Oracle Australia
> On 2 Jan 2020, at 3:11 pm, Hareesh D <hareesh.sai at gmail.com> wrote:
>
> Hi,
>
> In the openssl-fips-2.0.16 version, I see that some validations are missing (generating probable primes P, Q as part of RSA key generation) which are mentioned in NIST.FIPS.186-4.pdf.
>
> B.3.3 -> Process : Points 4.4, 4.7, 5.4, 5.5 and 5.8.
>
> Can someone please confirm this behaviour.
>
> Thanks !!
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mta.openssl.org/pipermail/openssl-users/attachments/20200102/eed64773/attachment.html>
More information about the openssl-users
mailing list