Important Notice: Our web hosting provider recently started charging us for additional visits, which was unexpected. In response, we're seeking donations. Depending on the situation, we may explore different monetization options for our Community and Expert Contributors. It's crucial to provide more returns for their expertise and offer more Expert Validated Answers or AI Validated Answers. Learn more about our hosting issue here.

Is the FIPS validation tied to a specific operating system or to a CPU processor?

CPU FIPS operating system processor tied validation
0
Posted

Is the FIPS validation tied to a specific operating system or to a CPU processor?

0 CommentsAdd a Comment

1 Answer

0

Yes and no. The validation has to specify at least one “platform” (hardware and O/S). However, NIST/CSE have stated that a validation obtained on one platform remains valid for another, provided that the validated software was merely recompiled (no source modifications) for the new platform. Note that the OpenSSL validation will be for binaries generated from source, not for a specific runtime executable. OpenSSL is portable code and, with only one significant exception, that same code compiles on multiple platforms. The exception is the x86 processor for which the FIPS Object Module uses several x86 specific assembly language optimizations within the FIPS 140 cryptographic module. Also see Questions #10 and #11.

0 CommentsAdd a Comment

Related Questions

What is your question?

*Sadly, we had to bring back ads too. Hopefully more targeted.

Experts123