219
edits
Changes
m
In this validation, we should validate AES and Triple DES first because their
implementations are stable. Next we should test SHS because RNG and DSA depend on SHA-1. After SHS is tested, we can test HMAC. Finally, when the new RNG
and big num library code is checked in, we can test the rest of the algorithms
(RNG, DSA, and RSA).
→Algorithms
=== Algorithms ===
Plan is to validate all FIPS-approved algorithms that NSS implements and NIST has tests for. There are eight such algorithms: . Previous certificates are shown for softoken 3.11.4 and we will update when new certificates are granted.
{| border="1" cellpadding="2" summary="Algorithms"
|-
!Algorithms !! Key Size !! Modes !! Testing Completed Certificates (for Softoken 3.11.4)
|-
[http://csrc.nist.gov/cryptval/dss/ecdsaval.html#37 Certificate #37]
|}
=== Dependant Bugs ===
