CryptoComply OpenSSL 3.0 FIPS Provider, a new software package that enables enterprises to implement OpenSSL 3.0 and TLS 1.3 with a FIPS 140 verified cryptographic module, was made available by SafeLogic.
Products using cryptography must pass FIPS 140 certification before being utilized by federal organizations.
Security rules such as FedRAMP, Common Criteria, CyberSecurity Maturity Model Security (CMMC) 2.0, and DoD APL, among others, would also call for it.
A popular open-source encryption library is OpenSSL. The most recent version, OpenSSL 3.0, comes standard with compatibility for Transport Layer Security (TLS) 1.3.
TLS is a protocol that secures data transmission over the internet. The most recent version of TLS, version 1.3, has several speed and security enhancements over earlier versions.
FIPS 140-2 Certificate
“Technology vendors using OpenSSL and TLS while requiring FIPS 140 validated cryptography want to be using the latest and most secure versions of OpenSSL and TLS. SafeLogic now enables them to do so,” said Evgeny Gervis, CEO at SafeLogic. “SafeLogic’s CryptoComply OpenSSL 3.0 FIPS Provider supports both OpenSSL 3.0 APIs and TLS 1.3 with a FIPS-validated encryption module.”
After completing an Early Access program, the CryptoComply OpenSSL 3.0 FIPS Provider is now generally available (GA). Clients of SafeLogic currently have the opportunity to upgrade to it. These businesses’ current FIPS 140-2 certificate would work with the updated software.