A very long time ago, I had a minor involvement in a project with John Whethersby's "Open Source Software Institute" to sponsor Ben Laurie to take OpenSSL through FIPS 140 certification. The project took years longer than expected (I think because NIST was reluctant to certify Open Source) and sponsorship did not cover all of the expenses, Ben took the project to completion with a mostly-unpaid investment of personal time. John Whethersby might know who the sponsor is, but due to his continuing involvement in business with U.S. Government regarding Open Source there's probably no point in asking him. I try to stay on the corporate side these days, it's a lot easier to deal with.
NSA has had a lot of time to get up to speed with the issue of encryption and I think it's safe to say that they are 10 years ahead of the state of the art now and that they have a lot of custom silicon in house. People who believe that any form of algorythmic encryption protects them from NSA are self-decieved. Only the most carefully handled one-time pad has a chance of defeating them.
Copyright © 2017, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds