OpenSSL


Also found in: Dictionary, Wikipedia.

OpenSSL

(Open Secure Sockets Layer) An open source version of the SSL and TLS security protocols. Used in more than a half million Web servers on the Internet, OpenSSL runs under every popular operating system. See SSL, TLS and Heartbleed.
Mentioned in ?
References in periodicals archive ?
The OpenSSL Team includes the following individuals: Matt Caswell, Mark Cox, Paul Dale, Viktor Dukhovni, Bernd Edlinger, Steve Henson, Tim Hudson, Lutz JAaAaAeAnnicke, Ben Kaduk, Emilia KAaAaAeAnsper, Ben Laurie, Ric Levitte, Steve Marquess, Bodo MAaAaAeA ller, Andy Polyakov, Kurt Roeckx, Ri Salz and Geoff Thorpe.
The current FIPS module for OpenSSL has not had a significant upgrade since 2012, during which time encryption standards have significantly evolved.
For the Raspberry Pi 2B, we used the OpenSSL library which implements elliptic curve primitives, curves of different standards and many different algorithms based on elliptic curves i.
According to OpenSSL co-founder Tim Hudson, the Coverity Scan service helped to catch newly discovered defects and highlight where other issues like the Heartbleed bug might exist.
The new bugs were disclosed as the group responsible for developing that software released an OpenSSL update that contains seven security fixes.
This was due to the fact that this vulnerability contained the cryptographic OpenSSL library which is used in different software including banking software," commented Sergey Golovanov, Principal Security Researcher at Kaspersky Lab
Each of these bugs--the "Heartbleed" bug in a program called OpenSSL, the "goto fail" bug in Apple's operating systems, and a so-called "zero-day exploit" discovered in Microsoft's Internet Explorer--was created years ago by programmers writing in C, a language known for its power, its expressiveness, and the ease with which it leads programmers to make all manner of errors.
By incorporating open source firmware and OpenSSL based OpenVPN technology into our routers, we provide an Internet experience with enhanced encryption and privacy that enables free and open access.
Array Networks, a global leader in application delivery networking, today announced that Array Networks products are not exposed to the OpenSSL Heartbleed vulnerability.
On June 5, developers of the widely used OpenSSL crypto library released emergency security patches to address several vulnerabilities, including one tracked as CVE-2014-0224 that could allow attackers to spy on encrypted connections if certain conditions are met, Computerworld reported.
To understand why the Heartbleed bug was worth the headlines it generated, it's important to appreciate what's at stake when OpenSSL is compromised.
All websites that display addresses beginning with https use SSL, but only those that use certain versions of OpenSSL are affected by this bug.