Manualshelf

OpenSSL A.00.09.08t.001, A.00.09.08t.002, and A.00.09.08t.003 Release Notes (5900-2201, February 2012)

ManualsBrandsHP ManualsSoftwareHP-UX OpenSSL Software
17181920212223242526
A version of the OpenSSL product that is suitable for reference by an application along with
the FIPS object module is a FIPS compatible OpenSSL which links against FIPS Object Module
1.1.2 or FIPS Object Module 1.2.
When the FIPS object module and a FIPS compatible OpenSSL are separately built and installed
on a system, the combination is referred to as a FIPS capable OpenSSL.
21 What kind of cryptographic algorithms can be used in FIPS mode?
Table 10 lists the cryptographic algorithms that can and cannot be used in FIPS mode.
Table 10 Cryptographic Algorithms that Can be Used in FIPS mode and Standard OpenSSL
Mode
UsageFIPSStandard OpenSSLAlgorithmAlgorithm Type
SupportedSupportedRSAAsymmetric keys
Key agreement
Digital signature
Encryption/
Decryption
Digital signatureDSA
Key agreementDH
Encryption/
Decryption
SupportedSupportedAESSymmetric keys
Not supportedBlowfish
Not supportedCAST
Not supportedDES
SupportedDES3
Not supportedDESX
Not supportedRC2
Not supportedRC4
Not supportedSupportedHMAC-MD2HMAC
Module integrity
HMAC-MD4
Code integrity
Message integrity
HMAC-MD5
HMAC-RMD160
HMAC-SHA
SupportedHMAC-SHA1
Supported0.9.8g supportedHMAC-SHA2
HashingNot supportedSupportedMD2Hashing
MD4
MD5
RMD160
SHA
SupportedSHA1
Supported0.9.8g supportedSHA2
26 OpenSSL A.00.09.08t.001, A.00.09.08t.002, and A.00.09.08t.003