Flaws in OpenSSL FIPS Object Module

Paul Hoffman paul.hoffman at vpnc.org
Mon Dec 3 10:51:47 EST 2007

At 9:58 AM -0500 12/3/07, Perry E. Metzger wrote:
>I don't know if people have been following this, but it is interesting
>from the point of view of studying how the FIPS process does (or does
>not) interact with the underlying goal of producing assured systems.

Another interesting part is that open-source systems are much more 
susceptible to being attacked by competitors (that is, having their 
validation suspended) than are closed-source systems.

--Paul Hoffman, Director
--VPN Consortium

The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo at metzdowd.com

More information about the cryptography mailing list