As of January 5, 2011, the CMVP will no longer print, sign, or post individual FIPS 140-2 certificates. Instead a consolidated validation certificate is auto-generated that will reference a collection of individual module validations. This will be generated and signed by the NIST and CSEC signatories on a periodic basis. The consolidated certificate will then be posted on the NIST CMVP web site to provide traceability to the signatories.
This more streamlined process should allow for much faster website postings during the "Finalization" phase of the FIPS validation process.
No comments:
Post a Comment