OpenSSL version 3.0.0 release

Matt Caswell matt at openssl.org
Thu Sep 19 14:18:02 UTC 2019



On 19/09/2019 14:51, Amit Kliger wrote:
> Hi all,
> 
>  
> 
> I wanted to ask if the plan (mentioned here:
> https://www.openssl.org/blog/blog/2018/09/25/fips/) to release OpenSSL version
> 3.0 and its FIPS 140-2 validated module, before EOY 2019 is progressing as
> expected, or should we expect a delay for that release?

The last public timeline that we communicated on this was:

- Code complete by the end of the year
- Lab testing commences after that
- Hoping to have an OpenSSL 3.0 release early Q2 2020
- FIPS validation of the 3.0 release (i.e. the paperwork) may happen sometime
after that

Matt

> As you probably all know, this is especially important for FIPS 140-2
> compliance, as the 1.0.2 branch is currently still the newest branch that
> supports compilation with a compliant FIPS 140-2 module, but this branch will
> stop getting security patches by the end of the year, as far as I understand it.
> 
>  
> 
> Regards,
> 
> Amit
> 
> --------------------------------------------------------------------------------
> _______________________________________________
> This e-mail may contain information that is confidential, privileged or
> otherwise protected from disclosure.
> If you are not an intended recipient of this e-mail, do not duplicate or
> redistribute it by any means. Please delete it and any attachments and notify
> the sender that you have received it in error.


More information about the openssl-project mailing list