OpenSSL 3.0: A new FIPS module, new algorithms, support for Linux Kernel TLS, and more

2021-09-09 10:56

The OpenSSL Project has released OpenSSL 3.0, a major new stable version of the popular and widely used cryptography library.

OpenSSL contain an open-source implementation of the SSL and TLS protocols, which provide the ability to secure communications across networks.

"Providers collect together and make available algorithm implementations. OpenSSL 3.0 comes with 5 different providers as standard. Over time third parties may distribute additional providers that can be plugged into OpenSSL," the migration guide explains.

"OpenSSL 3.0 is a major release and not fully backwards compatible with the previous release. Most applications that worked with OpenSSL 1.1.1 will still work unchanged and will simply need to be recompiled. Some applications may need to make changes to compile and work correctly, and many applications will need to be changed to avoid the deprecations warnings," OpenSSL committer Matt Caswell noted.

"API functions that have been deprecated will eventually be removed from OpenSSL in some future release, so it is recommended that applications be updated to use alternative APIs to avoid these deprecated functions."

The migration guide offers instructions on how to upgrade to OpenSSL 3.0 from versions 1.1.1 and 1.0.2.

News URL

http://feedproxy.google.com/~r/HelpNetSecurity/~3/ztiDnOJa-qM/

#fips #kernel #linux #openssl #TLS

Related vendor

VENDOR	#/PRODUCTS	LOW	MEDIUM	HIGH	CRITICAL	TOTAL VULNS
Linux	18	380	1428	1130	696	3634
Openssl	2	12	98	53	17	180
Kernel	4	2	8	5	0	15

News URL

Related news

Related vendor