#United States #Newark #OpenSSL Corporation #Entrust nShield #Quantum Threats

OpenSSL Corporation Enhances Code Signing Security

In a significant move towards fortifying its production environment, the OpenSSL Corporation has announced its collaboration with Entrust to integrate the nShield 5c network-attached Hardware Security Modules (HSMs). This choice marks a pivotal progression in safeguarding the security of the OpenSSL Library’s software releases, a fundamental tool used worldwide for secure communications.

Strengthening Code Integrity

The integration of FIPS 140-3 certified Entrust HSMs is an essential step to ensure that the code signing keys for the OpenSSL Library remain protected from forgery and tampering. This initiative is crucial to maintain the high level of trust that users place in the OpenSSL Library, which serves as the backbone of billions of secure online interactions globally.

With the ever-growing threats in the cybersecurity landscape, maintaining the integrity of code publishing processes is paramount. The adoption of these HSMs provides a secure root of trust necessary for effective code signing operations, which in turn protects against the increasing sophistication of cyberattacks.

A Partnership with Purpose

The collaboration between the OpenSSL Corporation and Entrust is rooted in a longstanding relationship aimed at advancing cryptography standards. Both organizations have worked together in various standards committees to foster interoperability in cryptographic solutions. Their latest joint effort focuses on developing hybrid algorithms that blend classical cryptography with post-quantum cryptographic methods, promising future-proof solutions as the technological landscape evolves.

Transitioning to Quantum-Safe Solutions

By aligning with Entrust, the OpenSSL Corporation gains access to established support for traditional cryptographic methods along with the ability to transition seamlessly into post-quantum security measures. The nShield 5c HSMs currently support an array of standardized NIST post-quantum algorithms, including ML-KEM and SLH-DSA, positioning OpenSSL to withstand future quantum computing advancements.

Tim Hudson, the President of the OpenSSL Corporation, expressed his enthusiasm about the integration, stating, "We are in the midst of incorporating Entrust nShield HSMs within our systems, enabling us to deliver hardware-based code signing that is prepared for the cryptographic challenges of the future."

Commitment to Security

Entrust's President and Chief Technology Product Officer, Mike Baxter, also emphasized the significance of this partnership. He stated, "Entrust is proud to collaborate with OpenSSL to establish a hardware root of trust in their production environment, utilizing our leading nShield 5c HSMs. By leveraging these advanced post-quantum security features and implementing the NIST-standardized ML-DSA algorithm, we can ensure OpenSSL’s code remains securely protected today and resilient against the evolving quantum threats of tomorrow."

About OpenSSL Corporation

The OpenSSL Corporation stands as a vanguard in cryptographic solutions. It is renowned for developing and maintaining the OpenSSL Library, which is critical for enabling secure digital communications. The organization offers a variety of services designed to help businesses implement OpenSSL solutions effectively and securely. It is also committed to fostering projects that align with its mission by providing essential resources, expertise, and community engagement.

About Entrust

Entrust is dedicated to combating fraud and decreasing cyber threats through robust identity-centric security measures that protect people and their data. Their solutions empower enterprises and governments to safeguard vital systems comprehensively, offering secure onboarding, everyday identity protection, as well as orchestrating visibility across keys, secrets, and certificates. With decades of innovation history, Entrust supports clients in over 150 countries, building trust in an increasingly digital world.

In conclusion, both OpenSSL Corporation and Entrust are taking proactive measures to ensure the future-proofing of their security systems, catering to the needs of a digital landscape that is continuously evolving. Their commitment to security will significantly enhance code signing integrity, ensuring that users can trust in the technologies that bolster secure communications worldwide.