[Discuss] Good and Bad Crypto
Richard Pieri
richard.pieri at gmail.com
Wed Apr 23 15:25:38 EDT 2014
Mike Small wrote:
> Which part of the world using OpenSSL actually passes 1 as "ONOFF" to
> FIPS_mode_set?
At a minimum that would be everyone communicating with or within US
government agencies using OpenSSL under SBU requirements.
> I would have thought the world doesn't trust OpenSSL much at all at this
> exact moment, though perhaps it trusts that one module, maybe, well
> except the openbsd people not so much:
Yes, well, the Heartbleed stupid isn't in the certified module and it is
one of the most spectacular security failures ever.
--
Rich P.
More information about the Discuss
mailing list