Flaws in OpenSSL FIPS Object Module
Paul Hoffman
paul.hoffman at vpnc.org
Mon Dec 3 10:51:47 EST 2007
At 9:58 AM -0500 12/3/07, Perry E. Metzger wrote:
>I don't know if people have been following this, but it is interesting
>from the point of view of studying how the FIPS process does (or does
>not) interact with the underlying goal of producing assured systems.
Another interesting part is that open-source systems are much more
susceptible to being attacked by competitors (that is, having their
validation suspended) than are closed-source systems.
--Paul Hoffman, Director
--VPN Consortium
---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo at metzdowd.com
More information about the cryptography
mailing list