Security policy pdf documents for OpenSSL 3.1, 1.1, 1.0 and etc?

Jun Aruga jun.aruga at gmail.com
Thu Jul 20 11:34:41 UTC 2023


On Mon, Jul 17, 2023 at 9:30 PM Tomas Mraz <tomas at openssl.org> wrote:
>
> Security policy documents are applicable and available only for FIPS
> module versions that are or were officially FIPS validated. These are
> currently only the two versions linked. There were also historic
> OpenSSL FIPS object modules but they are no longer current.
>
> You can download the security policies of historic OpenSSL modules
> here:
>
> https://csrc.nist.gov/projects/cryptographic-module-validation-program/validated-modules/search?SearchMode=Advanced&Vendor=openssl&CertificateStatus=Historical&ValidationYear=0
>
> Tomas Mraz, OpenSSL

Thanks for explaining the context. And I can see the security policy
link from each Certificate Number link => Related Files => Security
Policy link.

Jun


More information about the openssl-users mailing list