4 This release of OpenSSL includes a cryptographic module that can be
5 FIPS validated. The module is implemented as an OpenSSL provider.
6 A provider is essentially a dynamically loadable module which implements
10 A cryptographic module is only FIPS validated after it has gone through the complex
13 If you need a FIPS validated module then you must ONLY generate a FIPS provider
72 - Runs the FIPS module self tests
73 - Generates the so-called FIPS module configuration file containing information
74   about the module such as the module checksum (and for OpenSSL 3.0 the
77 The FIPS module must have the self tests run, and the FIPS module config file
79 you must not copy the FIPS module config file output data from one machine to another.
83 …$ openssl fipsinstall -out /usr/local/ssl/fipsmodule.cnf -module /usr/local/lib/ossl-modules/fips.…
165 Documentation about using the FIPS module is available on the [fips_module(7)]
183  [CMVP]: https://csrc.nist.gov/projects/cryptographic-module-validation-program
184  [ESV]: https://csrc.nist.gov/Projects/cryptographic-module-validation-program/entropy-validations

Last Index update Mon Nov 25 14:07:27 UTC 2024

Dedicated to & Maintained by Room-11