Re: [Fed-Talk] FIPS SSL
Re: [Fed-Talk] FIPS SSL
- Subject: Re: [Fed-Talk] FIPS SSL
- From: "Shawn A. Geddis" <email@hidden>
- Date: Tue, 27 Oct 2009 12:40:52 -0700
Mark,
As you know, Apache uses OpenSSL and a version was validated by their
team which you might be able to wedge. If Apache were to use Apple's
Crypto, you and others would then be reliant on Apple's FIPS Validation.
—————————————
Shawn Geddis
Security Consulting Engineer
Enterprise (Commercial & Government)
Apple Inc.
On Oct 27, 2009, at 12:11 PM, Mark <email@hidden> wrote:
What are folks doing for FIPS compliance ssl for their public facing
Mac web servers? We are thinking of putting a reverse proxy with
apache custom compiled for FIPS in front of our servers.
What is Apple's stance?
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Fed-talk mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Fed-talk mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden