Difference between revisions of "Trusted connection (MU3)"

From OpenEMR Project Wiki
Line 4: Line 4:


==Notes==
==Notes==
:*HTTPS use supported over web browser (follows Annex A: FIPS Publication 140-2: https://csrc.nist.gov/csrc/media/publications/fips/140/2/final/documents/fips1402annexa.pdf).
:*HTTPS/SSL use will need to be using a cipher (AES and SHA compents) that is FIP compliant (follows Annex A: FIPS Publication 140-2: https://csrc.nist.gov/csrc/media/publications/fips/140/2/final/documents/fips1402annexa.pdf).
:*All message digest hashing is using sha3-516 (able to use sha3 because of this: https://csrc.nist.gov/publications/detail/fips/180/4/final ).

Revision as of 20:04, 8 March 2022

Status

  • VERIFIED COMPLETE
  • Ready to sign self-declaration.

Notes