BLU Discuss list archive
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[Discuss] Good and Bad Crypto
- Subject: [Discuss] Good and Bad Crypto
- From: richard.pieri at gmail.com (Richard Pieri)
- Date: Wed, 23 Apr 2014 15:25:38 -0400
- In-reply-to: <li6zjjbyi3c.fsf@panix5.panix.com>
- References: <20140423174046.GP3247@dragontoe.org> <53580798.6040309@gmail.com> <li6zjjbyi3c.fsf@panix5.panix.com>
Mike Small wrote: > Which part of the world using OpenSSL actually passes 1 as "ONOFF" to > FIPS_mode_set? At a minimum that would be everyone communicating with or within US government agencies using OpenSSL under SBU requirements. > I would have thought the world doesn't trust OpenSSL much at all at this > exact moment, though perhaps it trusts that one module, maybe, well > except the openbsd people not so much: Yes, well, the Heartbleed stupid isn't in the certified module and it is one of the most spectacular security failures ever. -- Rich P.
- Follow-Ups:
- [Discuss] Good and Bad Crypto
- From: smallm at panix.com (Mike Small)
- [Discuss] Good and Bad Crypto
- References:
- [Discuss] Good and Bad Crypto
- From: invalid at pizzashack.org (Derek Martin)
- [Discuss] Good and Bad Crypto
- From: richard.pieri at gmail.com (Richard Pieri)
- [Discuss] Good and Bad Crypto
- From: smallm at panix.com (Mike Small)
- [Discuss] Good and Bad Crypto
- Prev by Date: [Discuss] Good and Bad Crypto
- Next by Date: [Discuss] Good and Bad Crypto
- Previous by thread: [Discuss] Good and Bad Crypto
- Next by thread: [Discuss] Good and Bad Crypto
- Index(es):