[Ci-users] CentOS 7/8 OpenSSL / FIPS 140-2 / FedRAMP

Sun Jan 19 21:21:03 UTC 2020
Salman Baset <salman.a.baset at gmail.com>


I was wondering if the source code for OpenSSL (1.1.*) in CentOS 7 and 8 is
exactly the same as Red Hat and thus would be considered equivalent from a
FIPS 140-2 cert standpoint. See the RHEL 7.0 OpenSSL FIPS certificate below.

Also, has anyone recently used Cent OS 7 with OpenSSL EL rpm (1.1.*) to
successfully obtain FedRAMP Moderate authorization or was it necessary to
switch to Red Hat?

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.centos.org/pipermail/ci-users/attachments/20200119/e05ae8d2/attachment-0002.html>