OpenSSL is a software library for applications that secure communications over computer networks against eavesdropping or need to identify the party at the other end.
| FactSnippet No. 850,853 |
10 Facts About OpenSSL
2.
OpenSSL contains an open-source implementation of the SSL and TLS protocols.
| FactSnippet No. 850,854 |
3.
OpenSSL is available for most Unix-like operating systems and Microsoft Windows.
| FactSnippet No. 850,855 |
4.
OpenSSL project was founded in 1998 to provide a free set of encryption tools for the code used on the Internet.
| FactSnippet No. 850,856 |
5.
Many 'Private Label' OpenSSL-based validations and clones created by consultants were moved to the Historical List, although some FIPS validated modules with replacement compatibility avoided the deprecation, such as BoringCrypto from Google and CryptoComply from SafeLogic.
| FactSnippet No. 850,857 |
6.
OpenSSL was dual-licensed under the OpenSSL License and the SSLeay License, which means that the terms of either licenses can be used.
| FactSnippet No. 850,858 |
7.
In handling CBC cipher-suites in SSL, TLS, and DTLS, OpenSSL was found vulnerable to a timing attack during the MAC processing.
| FactSnippet No. 850,859 |
8.
OpenSSL clients are vulnerable in all versions of OpenSSL before the versions 0.
| FactSnippet No. 850,860 |
9.
OpenSSL classified the bug as a high-severity issue, noting version 1.
| FactSnippet No. 850,861 |
10.
OpenSSL classified the bug as a high-severity issue, noting only version 1.
| FactSnippet No. 850,862 |