Fedora Crypto Consolidation Project

Alexander Boström abo at kth.se
Sat Sep 1 05:14:10 UTC 2007

On Wed, 2007-08-22 at 08:32 -0400, Steve Grubb wrote:
> If the crypto boundary was completely contained within the library and the 
> library has been FIPS 140-2 certified, many applications will gain the cert 
> just by linking to it. Its that simple. 

I assume that for an app to get the implicit certification, all the
crypto libraries it links to needs to be certified. Let's see... These
might contain crypto code:

MIT Kerberos
IcedTea (Free Sun Java)

Wrong? Anything else? (I'm sure there's plenty of it in the distro...)


More information about the fedora-devel-list mailing list