MIT Kerberos - FIPS Validation
Paul Moore
paul.moore at centrify.com
Fri Nov 20 13:32:06 EST 2009
there are no details there regarding what plans you have for FIPS
compliance.
Can you please state
- exactly what bits you will have certified (if any) (specific
libraries, entire client side package, kdc, entire server side package,
...)
- what changes will be made to those bits in order to be compliant
-----Original Message-----
From: krbdev-bounces at mit.edu [mailto:krbdev-bounces at mit.edu] On Behalf
Of Zhanna Tsitkova
Sent: Wednesday, September 16, 2009 7:57 PM
To: Thomas Harning Jr.; krbdev at mit.edu
Subject: RE: MIT Kerberos - FIPS Validation
It is work in progress. Please, see Crypto Modularity proj @
http://k5wiki.kerberos.org/wiki/Projects/Crypto_modularity
Zhanna
________________________________________
From: krbdev-bounces at MIT.EDU [krbdev-bounces at MIT.EDU] On Behalf Of
Thomas Harning Jr. [thomas.harning at trustbearer.com]
Sent: Wednesday, September 16, 2009 2:47 PM
To: krbdev at mit.edu
Subject: MIT Kerberos - FIPS Validation
Just wondering, has there been any work to make a FIPS-validated MIT
Kerberos client implementation?
I'm guessing that there is some built-in crypto in MIT Kerberos, or do
I have that wrong? If the crypto is not built-into MIT Kerberos
client, is it implemented by OpenSSL or some other cryptography
library?
--
Thomas Harning Jr.
_______________________________________________
krbdev mailing list krbdev at mit.edu
https://mailman.mit.edu/mailman/listinfo/krbdev
_______________________________________________
krbdev mailing list krbdev at mit.edu
https://mailman.mit.edu/mailman/listinfo/krbdev
More information about the krbdev
mailing list