Language Selection

English French German Italian Portuguese Spanish

OpenSSL loses FIPS certification

Filed under
Software

The National Institute of Standards and Technology has revoked certification of the open-source encryption tool OpenSSL under the Federal Information Processing Standard.

OpenSSL in January became one of the first open-source software products to be validated under NIST’s Computer Module Validation Program for FIPS-140-2. The certificate apparently was suspended in June when questions were raised about the validated module’s interaction with outside software elements.

The revocation caught the Open Source Software Institute, which shepherded the module through the validation process, by surprise.

“I am discouraged with what appears to be another change after certification has been awarded,” said executive director John Weathersby. “It is disheartening after three-and-a-half years of work to have the certification pulled twice for reasons not clear to us.”

Full Story.

More in Tux Machines

Leftovers: Gaming

Leftovers: Screenshots

Android Leftovers

There Are Now More than 1,000 Apps and Scopes for Ubuntu Touch

The Ubuntu Touch platform is still young and it's only available "officially" on a single phone, that was made available only sporadically through flash sales, but the number of apps in the store has been increasing on a constant basis, so much so that there are now more than a 1,000 apps available. Read more