With OpenSSL 3.5.0, the project takes a bold step into the quantum era, equipping developers and organizations with tools to safeguard data against future quantum threats while maintaining backward compatibility with existing systems. The OpenSSL Project has officially released version 3.5.0 of its widely used cryptographic library, marking a significant milestone with the integration of post-quantum cryptography (PQC) algorithms and other groundbreaking features. The default TLS-supported groups list has been updated to include hybrid PQC Key Encapsulation Mechanism (KEM) groups, prioritizing quantum-safe options while removing rarely used groups. Gurubaran is a co-founder of Cyber Security News and GBHackers On Security. These algorithms comply with emerging standards and are pivotal in preparing for a post-quantum world where classical cryptographic methods may no longer be secure. This release underscores OpenSSL’s commitment to innovation and security in an ever-evolving digital landscape. This release, announced on April 8, 2025, is set to revolutionize cybersecurity by addressing the growing need for quantum-resistant encryption. OpenSSL 3.5.0 adds server-side support for QUIC (Quick UDP Internet Connections), as standardized in RFC 9000. This feature includes compatibility with third-party QUIC stacks and supports 0-RTT connections for faster and more efficient communication. A notable issue in this release involves calling SSL_accept on objects returned from SSL_accept_connection, which currently results in an error.
This Cyber News was published on cybersecuritynews.com. Publication date: Tue, 08 Apr 2025 14:00:11 +0000