OpenSSL 3.0 - What are the important changes?

Описание к видео OpenSSL 3.0 - What are the important changes?

OpenSSL 3.0 has just been released. In this video Graham explains what you need to know about the new version of this highly popular cryptographic library, what makes OpenSSL 3.0 different, and what changes you need to make to be compliant.

He explains how the default cipher has changed from the old version of the PKCS#12 standard to the new PBKDF 2 version of the standard, as well as some interesting changes to the providers that can be called by the API.

FIPS coverage of OpenSSL has also changed for OpenSSL 3.0 which is a big deal if you are using OpenSSL inside a product that is supplied to the US Government, or even if you're just using FIPS 140 as a benchmark security standard.

References:
OpenSSL - https://www.openssl.org/blog/blog/202...
Understanding PKCS#12 Keystores -    • Explaining Keystores | Part 3 - PKCS#12  
FIPS 140 compliance for applications -    • How to Ensure FIPS Compliance for App...  
Analyze your OpenSSL cryptography usage - https://cryptosense.com/analyzer/demo

Комментарии

Информация по комментариям в разработке