[Bro] branching Bro
Azoff, Justin S
jazoff at illinois.edu
Thu Feb 2 05:59:36 PST 2017
> On Feb 2, 2017, at 8:53 AM, erik clark <philosnef at gmail.com> wrote:
>
> Sadly, in the federal world, FIPS compliance isn't meaningless. There is a real need for it.
And handicapping the best tool you'd have to detect noncompliant certificates is extremely misguided and counterproductive.
It's like if you had a tool that could scan for use of 512bit key SSL certificates, and someone prevented you from using it because it "supports" 512bit certificates and 512bit certificates are not FIPS compliant.
--
- Justin Azoff
More information about the Bro
mailing list