Lightship Security and the OpenSSL Corporation have jointly submitted OpenSSL version 3.5.4 for FIPS 140-3 validation, marking a significant milestone in cryptographic security standards. This submission aims to ensure that OpenSSL, a widely used cryptographic library, meets the stringent requirements set by the Federal Information Processing Standards (FIPS) for cryptographic modules. The FIPS 140-3 standard, which supersedes FIPS 140-2, provides enhanced security requirements for cryptographic modules used by U.S. government agencies and regulated industries. Achieving FIPS 140-3 validation for OpenSSL 3.5.4 will bolster confidence among users and organizations relying on OpenSSL for secure communications and data protection. The collaboration between Lightship Security and the OpenSSL Corporation underscores the commitment to maintaining high security standards and compliance with federal regulations. This validation process involves rigorous testing and evaluation of the cryptographic module's design, implementation, and operational environment to ensure it meets all necessary security criteria. The successful validation will enable broader adoption of OpenSSL 3.5.4 in environments requiring FIPS compliance, including government, healthcare, finance, and other sectors with strict security mandates. This development is crucial as cybersecurity threats continue to evolve, necessitating robust and validated cryptographic solutions to safeguard sensitive information. Organizations and developers are encouraged to monitor the progress of this validation and prepare for integration of the validated OpenSSL version to enhance their security posture.
This Cyber News was published on cybersecuritynews.com. Publication date: Thu, 09 Oct 2025 14:00:17 +0000