OpenSSL 1.0.2 supported the use of the OpenSSL FIPS Object Module (FOM), which was built to deliver FIPS approved algorithms in a FIPS 140-2 validated environment. An early FIPS 140-1 certificate for OpenSSL's FOM 1.0 was revoked in July 2006 "when questions were raised about the validated module's interaction with outside software." The module was re-certified in February 2007 before giving way to FIPS 140-2. Federal program for the testing and certification of cryptographic modules. ( Perfect forward secrecy is supported using elliptic curve Diffie–Hellman since version 1.0. OpenSSL supports a number of different cryptographic algorithms:Ĭiphers AES, Blowfish, Camellia, Chacha20, Poly1305, SEED, CAST-128, DES, IDEA, RC2, RC4, RC5, Triple DES, GOST 28147-89, SM4 Cryptographic hash functions MD5, MD4, MD2, SHA-1, SHA-2, SHA-3, RIPEMD-160, MDC-2, GOST R 34.11-94, BLAKE2, Whirlpool, SM3 Public-key cryptography RSA, DSA, Diffie–Hellman key exchange, Elliptic curve, X25519, Ed25519, X448, Ed448, GOST R 34.10-2001, SM2
Secure Remote Password protocol (SRP) support.Preliminary FIPS 140 capability for unvalidated 2.0 FIPS module.Support for password based recipient info for CMS.PSS signatures in certificates, requests and certificate revocation lists (CRL).Old version, no longer maintained: 1.0.1 Major version releases OpenSSL release history Version Development of TLS 1.3 is sponsored by Akamai. The project has a budget of less than one million USD per year and relies primarily on donations. There are only two full-time employees (fellows) and the remainder are volunteers. Īs of May 2019, the OpenSSL management committee consisted of 7 people and there are 17 developers with commit access (many of whom are also part of the OpenSSL management committee). The initial founding members were Mark Cox, Ralf Engelschall, Stephen Henson, Ben Laurie, and Paul Sutton. It is based on a fork of SSLeay by Eric Andrew Young and Tim Hudson, which unofficially ended development on December 17, 1998, when Young and Hudson both went to work for RSA Security.
The OpenSSL project was founded in 1998 to provide a free set of encryption tools for the code used on the Internet.
OpenSSL Software Services (OSS) also represents the OpenSSL project, for Support Contracts. The OpenSSL Software Foundation (OSF) represents the OpenSSL project in most legal capacities including contributor license agreements, managing donations, and so on. Wrappers allowing the use of the OpenSSL library in a variety of computer languages are available. The core library, written in the C programming language, implements basic cryptographic functions and provides various utility functions. OpenSSL contains an open-source implementation of the SSL and TLS protocols. It is widely used by Internet servers, including the majority of HTTPS websites. OpenSSL is a software library for applications that secure communications over computer networks against eavesdropping or need to identify the party at the other end. OpenSSL license, v3.0 switched to the Apache License 2.0