Hi folks!
I need help with cert validation.
On my SUSE server are already these packages:
openssl-1_0_0-1.0.2p-3.90.1.x86_64.rpm
openssl-1_1-1.1.1d-2.104.1.x86_64.rpm
openssl-1_0_0-1.0.2p-3.90.1.x86_64.rpm
And regarding this cert Cryptographic Module Validation Program | CSRC
next packages were validated with this cert:
libopenssl1_0_0-1.0.2p-3.36.1.x86_64.rpm
libopenssl1_0_0-hmac-1.0.2p-3.36.1.x86_64.rpm
The main question is →
Can already installed version 3.90 count as certified 3.36?
FIPS 140-2 Non-Proprietary Security Policy (nist.gov)
CGupta
2
To clarify further , here is the query.
We are building FIPS complaint OpenSSL library. We have 2 questions.
- Are the following OpenSSL packages FIPS 140-2 compliant? We are planning to use Certificate #4070. Our OS is : SLES12 SP5
openssl-1_0_0-1.0.2p-3.90.1.x86_64.rpm
openssl-1_1-1.1.1d-2.104.1.x86_64.rpm
openssl-1_0_0-1.0.2p-3.90.1.x86_64.rpm
- To build a FIPS compliant OpenSSL library on Linux Kernel , is it required for Linux Kernel to be in FIPS mode?
Kindly confirm.