Security Info Watch

Chainguard Moves to Close the FIPS Gap with OpenSSL 3.4 Module and Zero-CVE Commitment

New provider model aims to align validated cryptography with real-time vulnerability management for regulated environments.
Ars Technica

OpenSSL 3 patch, once Heartbleed-level “critical,” arrives as a lesser “high”

An OpenSSL vulnerability once signaled as the first critical-level patch since the Internet-reshaping Heartbleed bug has just been patched. It ultimately arrived as a “high” security fix for a buffer ...
NextBigFuture

Lightship Security and the OpenSSL Corporation Submit OpenSSL 3.5.4 for FIPS 140-3 Validation

Lightship Security, an Applus+ Laboratories company and accredited cryptographic security test laboratory, and the OpenSSL Corporation, the co-maintainer of the OpenSSL Library, announce the ...
InfoQ

OpenSSL 3.2 Brings Support for QUIC, Windows Certificate Store, and More

Unlock the full InfoQ experience by logging in! Stay updated with your favorite authors and topics, engage with content, and download exclusive resources. Ludi Akue discusses how the tech sector’s ...