Re: ECDSA and ECDH

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



> with a host device which will be ported with FIPS compliant OpenSSL library.  Our embedded device will be using ECDSA (FIPS 186-3)  and ECDH (FIPS SP800-56A) by calling APIs of ATECC508A SDK.  Is there any compatibility issue?  

There shouldn't be.  But interop is a hard thing, and a single bug on either side can break compatibility.  You really won't know until you test it.  

> 1. Whether a digest signed using openssl library can be verified in our embedded module and vice-versa .

As I said, it should work.

> 2. We understand that, OpenSSL doesn’t have FIPS 140-2 certification for ECDH. If we use ECDH, whether we can claim our system to be FIPS 140-2 compliant?

You should be careful what you say.  If you claim to be certified, that would be lying ...


> ---Disclaimer------------------------------ This e-mail contains PRIVILEGED AND CONFIDENTIAL INFORMATION

Please get your company policy changed.  Posting a big block disclaimer like this, when writing to a public mailing list, is very obnoxious.

-- 
openssl-users mailing list
To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-users




[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Index of Archives]     [Linux ARM Kernel]     [Linux ARM]     [Linux Omap]     [Fedora ARM]     [IETF Annouce]     [Security]     [Bugtraq]     [Linux]     [Linux OMAP]     [Linux MIPS]     [ECOS]     [Asterisk Internet PBX]     [Linux API]

  Powered by Linux