[Bro] branching Bro

Azoff, Justin S jazoff at illinois.edu
Thu Feb 2 05:59:36 PST 2017

> On Feb 2, 2017, at 8:53 AM, erik clark <philosnef at gmail.com> wrote:
> Sadly, in the federal world, FIPS compliance isn't meaningless. There is a real need for it. 

And handicapping the best tool you'd have to detect noncompliant certificates is extremely misguided and counterproductive.

It's like if you had a tool that could scan for use of 512bit key SSL certificates, and someone prevented you from using it because it "supports" 512bit certificates and 512bit certificates are not FIPS compliant.

- Justin Azoff

More information about the Bro mailing list