Results 1 to 2 of 2

Thread: Information needed on FIPS certified OpenSSL 1.1.1

  1. #1
    Join Date
    Feb 2018
    Beans
    3

    Information needed on FIPS certified OpenSSL 1.1.1

    Hi All,

    I am seeing the below information on ubuntu website.

    Canonical has achieved its own FIPS validation, however, by porting FIPS patches to the OpenSSL-1.1.1 version shipped by Ubuntu. By using Canonical’s validated OpenSSL-1.1.1, customers benefit from an actively-maintained code base which addresses CVEs as well as non-security related issues. https://ubuntu.com/blog/fips-certifi...untu-18-04-lts

    I wanted to know is the FIPS changes are ported to OpenSSL 1.1.1 and OpenSSL 1.1.1 crypto itself is FIPS certified?

    Regards,
    Jayalakshmi

  2. #2
    Join Date
    Sep 2014
    Location
    United States
    Beans
    362
    Distro
    Ubuntu 18.04 Bionic Beaver

    Re: Information needed on FIPS certified OpenSSL 1.1.1

    I wanted to know is the FIPS changes are ported to OpenSSL 1.1.1 and OpenSSL 1.1.1 crypto itself is FIPS certified?

    It appears to only be the case with pro public cloud. Or Ubuntu advantage enabled hardware.

    https://ubuntu.com/support?utm_sourc...z000001WXjhAAG

    On public clouds, Ubuntu Pro for AWS​ and ​Ubuntu Pro for Azure​ include subscriptions to Canonical’s FIPS 140-2 repositories, alongside expanded security and hardening.

    I'm the Sisyphus in security engineering.

    Read about 14.04 ESM and Puppet inside of Docker Containers.

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •