←back to thread

Microsoft Maintains Go Fork for FIPS 140-2 Support

(github.com)
43 points dschofie | 3 comments | 30 Apr 24 19:02 UTC | HN request time: 0.474s | source
1. interroboink ◴[30 Apr 24 22:19 UTC] No.40217126[source]
Does anyone with FIPS experience know what sort of changes are entailed by those requirements?

This repo doesn't seem to list what sort of high-level/conceptual changes are involved. I could look at the diff, but that sounds exhausting :Þ

replies(2): >>40217140 #>>40219000 #
2. bpicolo ◴[30 Apr 24 22:21 UTC] No.40217140[source]
They document exactly that https://github.com/microsoft/go/tree/microsoft/main/eng/doc/...
3. YZF ◴[01 May 24 02:50 UTC] No.40219000[source]
The general theme is that you need to be using approved ciphers and you need to have your key management code certified by some external entity. It is an exhausting process ;)