Alternatives to OpenSSL
Missing a software in the list? We are always happy if you help us making our site even better.
We have 1 review for OpenSSL. The average overall ratings is 4.0 / 5 stars.
Overall Opinion: Whenever you load a web page in a browser using HTTPS, you are likely using OpenSSL, as most web servers run it (66% by the latest estimates). It is as ubiquitous as it is powerful, as it is what secures communication between web servers and browsers. It supports a whole host of cryptography algorithms, including ciphers, cryptographic hash functions and public key cryptography. It is also one of only two open source libraries to receive a FIPS 140-2 compliance certificate from the National Institute of Standards and Technology's Cryptographic Module Validation Program. It does not have many drawbacks, apart from the fact that — by definition — its use in web communications will slow the web server. It has also had many security vulnerabilities over the years. Most notably was the Heartbleed bug in 2014 that allow hackers to obtain portions of the server's application memory. Finally, the project only employees one full-time developer.
Pros: Is completely free to use Is used in most web servers running today Is FIPS 140-2 compliant
Cons: Will slow web servers down (by definition of what it does) Has had many security vulnerabilities over the years The project only employs one full-time developer
Video also at irongeek.com with notes.
About This Article
This page was composed by Alternative.me and published by Alternative.me. It was created at 2018-04-30 00:30:47 and last edited by Alternative.me at 2020-03-06 07:51:07. This page has been viewed 5903 times.