Back to list
Open SSH and FIPS 140-2
Nov 10 2010 04:32PM
Hrolenok, Paul (phrolenok intelligent net)
I have an application where I have to implement SFTP file transfers with FIPS 140-2 certified encryption.
I've been trying to find out if I can use Open SSH for this or if I have to buy a commercial solution.
Essentially I have two questions.
1) Can I compile Open SSH from source using the Open SSL Fips sources and "inherit" the Fips certification?
2) Has anybody compiled Open SSH using the Fips Open SSL sources and can they give me any pointers on how to do that?
Any data on the difficulty or time involved would be appreciated since I have to justify the final decision to
my $BOSS. I would be doing this on a Sun SPARC system running Solaris 10. I have access to both gcc and the
Sun Workshop compilers and would appreciate any insight on either or both.
Paul S. Hrolenok
ID Services Group
Recognized on Washingtonian Magazine's 50 Great Places to Work list - 2009
[ reply ]
Copyright 2010, SecurityFocus