Open jldodds opened 9 years ago
OpenSSL's built in DRBG test harness does not understand the 3-Key Triple-DES form of DRBG; the same is true for SHA-512/224 and SHA-512/256. In fact, here is the list of algorithms for which OpenSSL's FIPS module is certified:
Hash_Based DRBG: [ Prediction Resistance Tested: Enabled and Not Enabled ( SHA-1 , SHA-224 , SHA-256 , SHA-384 , SHA-512 ) ( SHS Val#2465 ) ] HMAC_Based DRBG: [ Prediction Resistance Tested: Enabled and Not Enabled ( SHA-1 , SHA-224 , SHA-256 , SHA-384 , SHA-512 ) ( HMAC Val#1856 ) ] CTR_DRBG: [ Prediction Resistance Tested: Enabled and Not Enabled; BlockCipher_Use_df: ( AES-128 , AES-192 , AES-256 ) ( AES Val#2929 ) ] BlockCipher_No_df: ( AES-128 , AES-192 , AES-256 ) ( AES Val#2929 ) ]
It's not quite clear to me what this means for us - do we need to certify the variants that the OpenSSL people did not?
OpenSSL's built in DRBG test harness does not understand the 3-Key Triple-DES form of DRBG; the same is true for SHA-512/224 and SHA-512/256. In fact, here is the list of algorithms for which OpenSSL's FIPS module is certified:
Hash_Based DRBG: [ Prediction Resistance Tested: Enabled and Not Enabled ( SHA-1 , SHA-224 , SHA-256 , SHA-384 , SHA-512 ) ( SHS Val#2465 ) ] HMAC_Based DRBG: [ Prediction Resistance Tested: Enabled and Not Enabled ( SHA-1 , SHA-224 , SHA-256 , SHA-384 , SHA-512 ) ( HMAC Val#1856 ) ] CTR_DRBG: [ Prediction Resistance Tested: Enabled and Not Enabled; BlockCipher_Use_df: ( AES-128 , AES-192 , AES-256 ) ( AES Val#2929 ) ] BlockCipher_No_df: ( AES-128 , AES-192 , AES-256 ) ( AES Val#2929 ) ]
It's not quite clear to me what this means for us - do we need to certify the variants that the OpenSSL people did not?