Remove unused image/logo files.
<div class="entry-content">
<p>
- For a basic introduction and some general
- background see <a
- href="fipsnotes.html">Important Notes About OpenSSL and FIPS 140-2</a>.
- For information about sponsorship and support, see
- <a href="fipsvalidation.html">OpenSSL and FIPS 140-2</a>.
+ For a basic introduction and some general,
+ <a href="#background">see below</a>.
</p>
-
<p>The most recent open source based validation of a cryptographic
- module (Module) compatible with the OpenSSL 1.0.1 and 1.0.2 libraries is v2.0.16,
- FIPS 140-2 certificate <a
+ module (Module) compatible with the OpenSSL 1.0.1 and 1.0.2
+
libraries is v2.0.16, FIPS 140-2 certificate <a
href="http://csrc.nist.gov/groups/STM/cmvp/documents/140-1/140val-all.htm#1747">#1747</a>.
- For convoluted bureaucratic reasons the same module is also available under the validations
- <a
+ This Module is documented in the
+ <a href="fips/UserGuide-2.0.pdf">2.0 User Guide</a>.
+ For convoluted bureaucratic reasons the same module is also
+ available under the validations <a
href="http://csrc.nist.gov/groups/STM/cmvp/documents/140-1/140val-all.htm#2398">#2398</a>
- (revision 2.0.16) and
- <a
+ (revision 2.0.16) and <a
href="http://csrc.nist.gov/groups/STM/cmvp/documents/140-1/140val-all.htm#2473">#2473</a>
(revision 2.0.10).
- This Module is documented in the
- <a href="fips/UserGuide-2.0.pdf">2.0 User Guide</a>.
</p>
- <p>Thanks to multiple platform sponsorships the 2.0 validations
+ <p>Thanks to multiple platform sponsorships, the 2.0 validations
include the largest number of formally tested platforms for any
validated module.</p>
are available.
Here is the complete set of files:</p>
-
<table>
<tr>
<td>KBytes </td>
</table>
<p> </p>
+ <h3><a name="background">Background</a></h3>
+
+ <p>Please please read the <a
+ href="fips/UserGuide.pdf">User Guide</a>.</p>
+
+ <ul>
+
+ <li>OpenSSL itself is not validated. Instead a special
+ carefully defined software component called the OpenSSL FIPS
+ Object Module has been created. This Module was designed for
+ compatibility with OpenSSL so that products using the OpenSSL
+ API can be converted to use validated cryptography with minimal
+ effort.</li>
+
+ <li>The OpenSSL FIPS Object Module validation is "delivered" in
+ source code form, meaning that if you can use it exactly as is
+ and can build it (according to the very specific documented
+ instructions) for your platform, then you can use it as
+ validated cryptography on a "vendor affirmed" basis.</li>
+
+ <li>If even the tiniest source code or build process changes are
+ required for your intended application, you cannot use the open
+ source based validated module directly. You must obtain your
+ own validation.</li>
+
+ </ul>
+
</div>
<footer>
You are here: <a href="/">Home</a>
+++ /dev/null
-<!DOCTYPE html>
-<html lang="en">
-<!--#include virtual="/inc/head.shtml" -->
-<body>
- <!--#include virtual="/inc/banner.shtml" -->
- <div id="main">
- <div id="content">
- <div class="blog-index">
- <article>
- <header><h2>Important Notes about OpenSSL and FIPS 140</h2></header>
- <div class="entry-content">
- <p>Please please read the <a href="fips/UserGuide.pdf">User Guide</a>.</p>
-
- <h3>FIPS What? Where Do I Start?</h3>
-
- <ul>
-
- <li>OpenSSL itself is not validated. Instead
- a special carefully defined software component called the
- OpenSSL FIPS Object Module has been created. This Module was
- designed for compatibility with OpenSSL so that products using
- the OpenSSL API can be converted to use validated cryptography
- with minimal effort.</li>
-
- <li>The OpenSSL FIPS Object Module validation
- is "delivered" in source code form, meaning that if you can use it
- exactly as is and can build it (according to the very specific documented
- instructions) for your platform, then you can use it as
- validated cryptography on a "vendor affirmed" basis.</li>
-
- <li>If even the tiniest source code or build process changes are
- required for your intended application, you cannot use the open
- source based validated module directly. You must obtain your
- own validation.</li>
-
- </ul>
-
- <p>Note that FIPS 140-2 validation is a complicated topic that the
- above summary does not adequately address. You have been
- warned!</p>
-
- <h3>Current Validations</h3>
-
- <p> The most recent open source based validation is the FIPS 140-2
- certificate <a
- href="http://csrc.nist.gov/groups/STM/cmvp/documents/140-1/140val-all.htm#1747">#1747</a>.
- You will need the <a
- href="http://csrc.nist.gov/groups/STM/cmvp/documents/140-1/140sp/140sp1747.pdf">Security Policy</a>
- and <a href="/source/openssl-fips-2.0.tar.gz">source</a>
- at a minimum. And did we mention the
- <a href="fips/UserGuide.pdf">User Guide</a>?</p>
-
- We are not currently taking on any additional validation work
- nor adding new platforms to the existing "1747" validation.
-
- </div>
- <footer>
- You are here: <a href="/">Home</a>
- : <a href=".">Docs</a>
- : <a href="">Important Notes about OpenSSL and FIPS-140</a>
- <br/><a href="/sitemap.txt">Sitemap</a>
- </footer>
- </article>
- </div>
- <!--#include virtual="sidebar.shtml" -->
- </div>
- </div>
-<!--#include virtual="/inc/footer.shtml" -->
-</body>
-</html>
+++ /dev/null
-<!DOCTYPE html>
-<html lang="en">
-<!--#include virtual="/inc/head.shtml" -->
-<body>
- <!--#include virtual="/inc/banner.shtml" -->
- <div id="main">
- <div id="content">
- <div class="blog-index">
- <article>
- <header><h2>OpenSSL and FIPS 140-2</h2></header>
-
- <div class="entry-content">
- <p>The most recent open source based validation of a cryptographic
- module (Module) compatible with the OpenSSL libraries is v2.0.9,
- FIPS 140-2 certificate <a
- href="http://csrc.nist.gov/groups/STM/cmvp/documents/140-1/140val-all.htm#1747">#1747</a>.
- This Module is documented in the
- <a href="fips/UserGuide-2.0.pdf">2.0 User Guide</a>. It substantially
- updates and improves the earlier v1.2 module, FIPS 140-2
- certificate
- <a
- href="http://csrc.nist.gov/groups/STM/cmvp/documents/140-1/140val-all.htm#1051">#1051</a>,
- which is documented in the
- <a href="fips/UserGuide-1.2.pdf">1.2 User Guide</a>.</p>
-
- <h3>Sponsors</h3>
- <p>The OpenSSL FIPS Object Module validations receive support
- from multiple sources for each validation effort; however only
- those sponsors who have elected to be recognised for their
- contribution to OpenSSL are listed below.</p>
-
- <hr>
- <a href="http://www.darpa.mil/Our_Work/I2O/Programs/Transformative_Apps.aspx">Defense Advanced Research Projects Agency (DARPA) Transformative Apps Program</a>,
- original primary sponsor of the overall validation with several Android on ARMv7 platforms.
-
- <hr>
- <a href="http://www.securenetterm.com/">Intersoft International, Inc.</a>,
- platform sponsor (VC++ Win32/x86 asm optimisation)
-
- <hr>
- <img src="/img/opengear-logo-med.jpg">
- <a href="http://www.opengear.com/">Opengear, Inc.</a>, platform sponsor
- (uCLinux ARMv4 asm optimisation)
-
- <hr>
- <img src="/img/quintessence-logo-med.jpg">
- <a href="http://www.quintessencelabs.com/">QuintessenceLabs Pty Ltd</a>,
- platform sponsor (Fedora 14 x86-64 asm optimisation)
-
- <hr>
- <img src="/img/pkware-logo-med.jpg">
- <a href="https://www.pkware.com/">PKWARE, Inc.</a>, platform sponsor
- (HPUX 11i on Itanium 32, 64 bit with asm optimisation)
-
- <hr>
- <img src="/img/cerberus-logo-med.jpg">
- <a href="https://www.cerberusftp.com/">Cerberus, LLC</a>, general sponsor
- <hr>
- <img src="/img/DHS-logo-med.jpg">
- <a href="http://www.cyber.st.dhs.gov/host.html">DHS Science and Technology Directorate-sponsored Homeland Open Security Technology (HOST) program</a>,
- algorithm sponsor (CMAC, AES-CCM)
-
- <hr>
- <img src="/img/innominate-logo-med.jpg">
- <a href="https://www.innominate.com/">Innominate Security Technologies AG</a>,
- platform sponsor (Linux on Freescale MPC8313)
-
- <hr>
- <img src="/img/psw-logo-med.jpg">
- <a href="http://www.psw.net/">PSW GROUP</a>,
- general sponsor
-
- <hr>
- <img src="/img/citrix-logo-med.jpg">
- <a href="https://www.citrix.com/">Citrix Systems, Inc.</a>,
- platform sponsor (multiple platforms)
-
- <hr>
-
- <p>If you have an interest in sponsoring any changes or additions
- to this validation please contact us via an email to <a
- href="mailto:osf-contact@opensl.org">osf-contact@openssl.org</a>.</p>
-
- </div>
- <footer>
- You are here: <a href="/">Home</a>
- : <a href=".">Documentation</a>
- : <a href="">OpenSSL and FIPS 140-2</a>
- <br/><a href="/sitemap.txt">Sitemap</a>
- </footer>
- </article>
- </div>
- <!--#include virtual="sidebar.shtml" -->
- </div>
- </div>
-<!--#include virtual="/inc/footer.shtml" -->
-</body>
-</html>
projects / openssl-web.git / commitdiff
