OpenSSL 1.0.0 released
Mar 30, 2010, 22:03 (1 Talkback[s])
"The OpenSSL project team is pleased to announce the release of
version 1.0.0 of our open source toolkit for SSL/TLS. This new
OpenSSL version is a major release and incorporates many new
features as well as major fixes compared to 0.9.8n. For a complete
list of changes, please see
"The most significant changes are:
o RFC3280 path validation: sufficient to process PKITS
o Integrated support for PVK files and keyblobs.
o Change default private key format to PKCS#8.
o CMS support: able to process all examples in RFC4134
o Streaming ASN1 encode support for PKCS#7 and CMS.
o Multiple signer and signer add support for PKCS#7 and CMS.
o ASN1 printing support.
o Whirlpool hash algorithm added.
o RFC3161 time stamp support.
o New generalised public key API supporting ENGINE based
o New generalised public key API utilities.
o New ENGINE supporting GOST algorithms.
o SSL/TLS GOST ciphersuite support.
o PKCS#7 and CMS GOST support.
o RFC4279 PSK ciphersuite support.
o Supported points format extension for ECC ciphersuites.
o ecdsa-with-SHA224/256/384/512 signature types.
o dsa-with-SHA224 and dsa-with-SHA256 signature types.
o Opaque PRF Input TLS extension support.
o Updated time routines to avoid OS limitations.
"We consider OpenSSL 1.0.0 to be the best version of OpenSSL
available and we strongly recommend that users of older versions
upgrade as soon as possible."
- Attacks Against SSL(Jan 31, 2010)
- Highlight Domain & Subdomain for SSL websites in Firefox(May 28, 2009)
- Attack on SSL Users Discovered, Tool Sources Released(Feb 25, 2009)
- Widespread vulnerabilities found in programs which use OpenSSL(Jan 09, 2009)
- After Debian's Epic SSL Blunder, A World of Hurt for Security Pros(May 22, 2008)
- Flaws Reported in Validated OpenSSL Module v1.1.1(Nov 29, 2007)
- All Systems Go for Validation of Updated OpenSSL Module(Sep 12, 2007)
- Linux Postfix Mail Server SSL Certificate Installations and Configuration(Jul 16, 2007)
- Secure Websites Using SSL And Certificates(May 21, 2007)