Re:No FIPS AES? I noticed that too... (Score 1)

Mike Nash made a snide remark that "I should also note that in contrast to the existing AES implementations that have not been through an evaluation, we plan to get our implementation evaluated to meet FIPS guidelines and requirements." Might have been true when he said it, but it's no longer true. OpenSSL completed its FIPS 140-2 approval earlier this month. See http://www.linuxelectrons.com/article.php/20060122 164238268 for an article about it; the approval (certificate #626) should be posted at http://csrc.nist.gov/cryptval/140-1/1401val2006.ht m before too long.