Update status.

author Dr. Stephen Henson <steve@openssl.org>

Thu, 10 Mar 2011 14:01:34 +0000 (14:01 +0000)

committer Dr. Stephen Henson <steve@openssl.org>

Thu, 10 Mar 2011 14:01:34 +0000 (14:01 +0000)
author Dr. Stephen Henson <steve@openssl.org>
Thu, 10 Mar 2011 14:01:34 +0000 (14:01 +0000)
committer Dr. Stephen Henson <steve@openssl.org>
Thu, 10 Mar 2011 14:01:34 +0000 (14:01 +0000)
diff --git a/README.FIPS b/README.FIPS

index 5e3b5ab79c7c79a8eab65fabdb2463efdf5559ce..5197276740af8cec5c980693b6204b07b2287ca0 100644 (file)
--- a/README.FIPS
+++ b/README.FIPS
@@ -44,10 +44,11 @@ Known issues:
  
  Algorithm tests are pre-2011.
  The fipslagtest.pl script wont auto run new algorithm tests such as DSA2.
-No ECDH.
-No primitives tests for ECDH/DH
+Usage of ECDH/DH needs review and adding appropriate self tests.
  Selftests need updating with larger key sizes in some cases and redundant
  tests pruned.
-No SP800-90 PRNG.
+SP800-90 DRBG needs more work: health checks, continuous PRNG test,
+entropy gathering, security checks in algorithms, add appropriate RAND method
+for use by rest of OpenSSL.
  No CMAC.
  No CCM.
author	Dr. Stephen Henson <steve@openssl.org>
	Thu, 10 Mar 2011 14:01:34 +0000 (14:01 +0000)
committer	Dr. Stephen Henson <steve@openssl.org>
	Thu, 10 Mar 2011 14:01:34 +0000 (14:01 +0000)