Changes

| 1a || Choose validation Lab, approve costs, and sign NDA || all || || all || [http://www.bkpsecurityatlanlabs.com/ Aspect Labs Atlan]

| 1b 1d || [http://csrc.nist.gov/publications/nistpubs/800-29/sp800-29.pdf Review FIPs 140-2 Define Algorithms, Key Sizes and compare to FIPS 140-1] modes || all || || || X

| 1c || Aspect Labs Training course June 21st and June 22nd || || || || X|-| 1d || Define Algorithms, Key Sizes and modes || || || || X |- | M2 || Complete NSS 3.11 12 FIPS dependant bugs || || || || X

| 3a. || (1.0) Security policy, new algorithms || 1d || 2 wks || all || x

| 3b. || Generate annotated source tree (LXR -> HTML) || M2 || || || x

| 3c. || (2.0) Finite State Machine || 3b || 3 wks || || x

| 3d. || (3.0/4.0) Cryptographic Module Definition || 3b || 2 wks || || x

| 3e. || (6.0) Software Security (rules-to-code map) || 3b || 2 wks || || x|- | 3f. || (8.0) Key Management Generate 20K random #'s || || 1 day || || x

| 3g. || (9.0) Cryptographic Algs || 3a || 3 days || || x

| 3h. || (10.0) Operational Test Plan || || 1 day || || x

| 3i. || Document architectural changes between 3.2 and 3.11 || || 5 days || || x

| M4 || Send docs to testing lab || || || || x

| 4a. || Security Policy || || all || || x

| 4b. || Finite State Machine || 3c || || || x

| 4c. || Module Def. / rules-to-code || 3d,3e || || || x

| M5 || Operational validation || || || || x

| 5a. || Algorithm testing || || 1 month || || x

| 5b. || Operational testing || 3h || 1 week || || x

| 5c || set up machines for Lab to run operational tests on, provide Lab tech with access to machines (last time we both sent a box to the lab and set up a temporary account in the intranet for them) || || || || x

| M6 || Internal QA of docs || M2-M5 || 1 week || all || x

| M7 || Communication between NSS team / Lab / NIST about status of validation / algorithm certificates || M1-5 || 3-6 mos || all || x