FIPS module 3.0

From OpenSSLWiki
Jump to navigationJump to search

The 3.0 FIPS module will be conceptually different to the preceeding line of OpenSSL FIPS Object Module cryptographic modules. An extensive reworking of the internals is planned, to address some issues stemming from the historical origins and subsequent ad-hoc evolution of previous modules.

Refer to the OpenSSL FIPS 140-2 blog.


These notes are subject to change going forward.

What we won't do:

1. Any "light" or other versions of the FIPS module (i.e fewer algorithm implementations).

2. Matching set of platforms. The initial validation will only include a very minimal platform set.

3. Any substantial additions or changes to the module once the initial development is substantially complete.