Newark, United States, October ninth, 2025, CyberNewsWire
Lightship Safety, an Applus+ Laboratories firm and accredited cryptographic safety check laboratory, and the OpenSSL Company, the co-maintainer of the OpenSSL Library, announce the submission of OpenSSL model 3.5.4 to the Cryptographic Module Validation Program (CMVP) for FIPS 140-3 validation.
This submission confirms that the code is full and that each one included algorithms have efficiently handed NIST testing and impartial laboratory overview. The ultimate CMVP overview and certificates issuance stay because the final step within the course of.
This submission marks a big milestone within the ongoing collaboration between Lightship Safety and the OpenSSL Company to offer validated cryptographic options that meet fashionable safety and compliance necessities.
The OpenSSL 3.5.4 FIPS Object Module offers an open-source, standards-compliant cryptographic module aligned with the FIPS 140-3 normal, enabling organisations throughout authorities and business to deploy safe and compliant options as soon as the validation certification is issued on the completion of the ultimate step within the course of.
OpenSSL 3.5, launched in April 2025, launched help for post-quantum cryptographic (PQC) algorithms, together with ML-KEM, ML-DSA, and SLH-DSA, in line with NIST’s PQC standardisation.
This submission is step one towards a FIPS-140 validated PQC-ready module, supporting organisations making ready for quantum-resistant cryptographic deployments.
Jason Lawlor, President of Lightship Safety, mentioned:
“The submission of OpenSSL 3.5.4 to the CMVP marks an vital step in sustaining validated, standards-based cryptography inside one of many world’s most generally used open-source libraries—foundational to web infrastructure, embedded techniques, and enterprise functions. Lightship Safety is proud to proceed supporting OpenSSL’s FIPS 140-3 validation efforts to satisfy each present and rising compliance necessities for international customers.”
Tim Hudson, President of the OpenSSL Company, mentioned:
“OpenSSL 3.5.4 is not only a step towards future validation. It represents a accomplished, examined, and prepared module that brings actual worth right this moment. The ultimate certificates will formalise what’s already true: OpenSSL 3.5.4 meets the necessities of FIPS 140-3 whereas introducing post-quantum readiness for the years forward.”
This effort continues the historical past of the OpenSSL Library FIPS 140 validated modules which can be extensively deployed throughout authorities, defence, and industrial techniques to help safe and compliant operations.
About The OpenSSL Company
The OpenSSL Company is a world chief in cryptographic options, specializing in growing and sustaining the OpenSSL Library – a necessary instrument for safe digital communications.
The OpenSSL Company offers a variety of providers tailor-made to help companies of all sizes to make sure the safe and environment friendly implementation of OpenSSL options.
The OpenSSL Company additionally helps initiatives aligned with its Mission and Values by offering infrastructure, assets, professional recommendation, and engagement by advisory committees, significantly within the industrial sector.
Collaboration amongst these initiatives fosters innovation, enhances safety requirements, and successfully addresses frequent challenges, benefiting all our communities.
Contact
MarCom Supervisor
Hana Andersen
OpenSSL Software program Providers
[email protected]
