MozillaWiki

FIPS Module Specification: Difference between revisions

Page Discussion

FIPS Module Specification (view source)

Revision as of 02:38, 3 May 2006

629 bytes added ,  3 May 2006
no edit summary
No edit summary
Line 14: Line 14:


[[ Image:Fipsmod.png ]]
[[ Image:Fipsmod.png ]]
===Approved Mode of Operation===
In order to run the NSS module in the FIPS approved mode an attribute must be explicitly set on the module. This can be done programatically or by running the NSS module utility function. An example command line is below.
'''modutil -fips true -dbdir certdir'''
The setting is permanent for the NSS module and all subsequent invocations of NSS functions using that cert directory will be in FIPS mode. The module can be taken out of FIPS mode by substituting ''false'' for ''true'' in the command above. The state of the module can be checked with:
'''modutil -chkfips true -dbdir certdir'''
Neil.williams
198

edits

Retrieved from "https://wiki.mozilla.org/Special:MobileDiff/25023"