A security scan may flag the following file on the r12.9 and older Policy Server:

/Install_Dir/CA/siteminder/lib/libssl-TMWD.so.1.0.0

PRODUCT: Symantec Siteminder

COMPONENT: Policy Server

VERSION: r12.9 and older

OPERATING SYSTEM: 

strings ./libssl-TMWD.so.1.0.0 / findstr /i "OpenSSl"

OPENSSL_cleanse
OpenSSLDie
OPENSSL_DIR_read
OPENSSL_DIR_end
SSLv2 part of OpenSSL 1.0.0n 6 Aug 2014
SSLv3 part of OpenSSL 1.0.0n 6 Aug 2014
TLSv1 part of OpenSSL 1.0.0n 6 Aug 2014
DTLSv1 part of OpenSSL 1.0.0n 6 Aug 2014
OpenSSL 1.0.0n 6 Aug 2014
OPENSSL_DIR_read(&ctx, '
OPENSSL_malloc Error
OPENSSL_DIR_read
OpenSSLDie
OPENSSL_cleanse
OPENSSL_DIR_end

The libssl-TMWD.so.1.0.0.so file is thirdparty library of ValiCert.  This is used for X.509 Certificate based Authentication WITH Certificate Verification with OCSP and CRLs configured.

In Siteminder r12.9.1 we will be moving to CAPKI and deprecating the use of ValiCert.  

If you are running r12.9 or older and are NOT using x509 Certificate Authentication with OCSP or CRLS, then you can simply remove this file from the system.

If you ARE using x509 Certificate Authentication with OCSP or CRLS, then contact Siteminder Support.