FIPS Compliance
586 views
Skip to first unread message
Narasimha Karumanchi
Apr 14, 2015, 3:25:47 PM4/14/15
to rabbitm...@googlegroups.com
Hi Team,
Does anyone know of a RabbitMQ deployment that was FIPS compliant? If so, can you please let us know how they accomplished thi?
Thanks and Regards,
Narasimha
Michael Klishin
Apr 14, 2015, 3:39:29 PM4/14/15
to Narasimha Karumanchi, rabbitm...@googlegroups.com, Gerald Kuch
On 14 April 2015 at 22:25:49, Narasimha Karumanchi (karumanchi...@gmail.com) wrote:
> Does anyone know of a RabbitMQ deployment that was FIPS compliant?
> If so, can you please let us know how they accomplished thi?
We have heard of it, I think it was primarily about making an Erlang/OTP build that is FIPS-compliant.
> Does anyone know of a RabbitMQ deployment that was FIPS compliant?
> If so, can you please let us know how they accomplished thi?
Jerry (CC'ed) may be able to suggest more.
--
MK
Staff Software Engineer, Pivotal/RabbitMQ
Narasimha Karumanchi
Apr 14, 2015, 4:45:45 PM4/14/15
to Daniel Carwin, Gerald Kuch, Michael Klishin, rabbitmq-users
You mean, with current releases it is not possible to support FIPS with rabbitmq in total?
On Wed, Apr 15, 2015 at 2:12 AM, Daniel Carwin <dca...@pivotal.io> wrote:
That is correct. Pivotal did initial prototyping and have a modified fork of Erlang with a FIPS-enable switch.It is currently not supported and not available to the public. It would require additional maintenance costs to support the Erlang fork, on top of standard RabbitMQ support.Regards,Dan CarwinOn Tue, Apr 14, 2015 at 1:30 PM, Gerald Kuch <jk...@pivotal.io> wrote:What Michael says is correct. We did some work toward doing this work internally but it ultimately didn't get carried to completion for various internal reasons. It's possible the work could be resurrected as part of a commercial/consulting engagement if there was sufficient interest.Looping in Dan Carwin, who handled the product management side of the FIPS situation, who may be able to provide more information and context offline.
--Daniel Carwin | Product Management App Fabric | Pivotaldca...@pivotal.io | 415-425-0307 | skype:dcarwin
Michael Klishin
Apr 14, 2015, 4:56:15 PM4/14/15
to Narasimha Karumanchi, Gerald Kuch, rabbitmq-users, Daniel Carwin
On 14 April 2015 at 23:45:43, Narasimha Karumanchi (karumanchi...@gmail.com) wrote:
> You mean, with current releases it is not possible to support
> FIPS with rabbitmq in total?
RabbitMQ is not the problem here, having a FIPS-compliant Erlang/OTP release is. If you are willing to
> You mean, with current releases it is not possible to support
> FIPS with rabbitmq in total?
pay someone to produce it, you should be able to use RabbitMQ on top of it.
Narasimha Karumanchi
Apr 14, 2015, 5:03:48 PM4/14/15
to Daniel Carwin, Michael Klishin, rabbitmq-users, Gerald Kuch
Can you please point me to Erlang support which can help us with FIPS enablement?
I could not find any such reference.
On Wed, Apr 15, 2015 at 2:32 AM, Daniel Carwin <dca...@pivotal.io> wrote:
Correct, as it requires a modification to Erlang.
Rabbit MQ does not require modification for FIPS, but Erlang does.
Michael Klishin
Apr 14, 2015, 5:06:24 PM4/14/15
to Narasimha Karumanchi, rabbitmq-users, Gerald Kuch, Daniel Carwin
On 15 April 2015 at 00:03:47, Narasimha Karumanchi (karumanchi...@gmail.com) wrote:
> Can you please point me to Erlang support which can help us with
> FIPS enablement?
Erlang Solutions: https://www.erlang-solutions.com.
> Can you please point me to Erlang support which can help us with
> FIPS enablement?
Narasimha Karumanchi
Apr 14, 2015, 5:10:00 PM4/14/15
to Michael Klishin, rabbitmq-users, Gerald Kuch, Daniel Carwin
Thank you all, team!
Reply all
Reply to author
Forward
0 new messages