# openssl/openssl

**Attribution required: if you use, quote, or summarise this content, you must credit and link back to [awesome-repositories.com](https://awesome-repositories.com/repository/openssl-openssl).**

29,596 stars · 11,055 forks · C · apache-2.0

## Links

- GitHub: https://github.com/openssl/openssl
- Homepage: https://www.openssl.org
- awesome-repositories: https://awesome-repositories.com/repository/openssl-openssl.md

## Topics

`cryptography` `decryption` `encryption` `openssl` `ssl` `tls`

## Description

This project is a comprehensive cryptographic toolkit that provides a collection of standard security algorithms and protocols for implementing data encryption and network communication. It serves as a foundational library for securing software applications through a wide range of cryptographic functions.

The architecture is defined by a modular provider system that allows for the dynamic loading of external cryptographic implementations without requiring modifications to the core application binary. It supports metadata-driven algorithm querying, which resolves security primitives by matching requested properties against available provider capabilities. Furthermore, the library enables the creation of isolated security contexts, allowing different application components to maintain independent configuration states and security parameters within the same process.

The toolkit includes support for FIPS-validated module encapsulation, which restricts cryptographic operations to a hardened boundary to meet strict government and industry compliance standards. It also utilizes a dispatch-table abstraction to decouple high-level security requests from underlying algorithm logic. Comprehensive technical documentation is available to assist with security operations, migration, and compliance validation.

## Tags

### Security & Cryptography

- [Cryptographic Libraries](https://awesome-repositories.com/f/security-cryptography/cryptographic-libraries.md) — A comprehensive collection of standard security algorithms and protocols for implementing secure data encryption and network communication in software applications.
- [Cryptographic Toolkits](https://awesome-repositories.com/f/security-cryptography/cryptographic-toolkits.md) — Provides a robust toolkit for executing general security functions and managing network communications. ([source](https://docs.openssl.org/master/man7/ossl-guide-introduction))
- [Cryptographic Providers](https://awesome-repositories.com/f/security-cryptography/cryptographic-providers.md) — Provides a pluggable architecture for swapping external cryptographic implementations without altering core application logic.
- [Validated Cryptographic Modules](https://awesome-repositories.com/f/security-cryptography/validated-cryptographic-modules.md) — A validated security implementation that ensures all performed operations adhere to strict government and industry standards for data protection.
- [Cryptographic Discovery Services](https://awesome-repositories.com/f/security-cryptography/cryptographic-discovery-services.md) — Resolves cryptographic primitives through a lookup system that matches requested security properties against available provider capabilities.
- [FIPS Compliance Modules](https://awesome-repositories.com/f/security-cryptography/fips-compliance-modules.md) — Restricts cryptographic operations to a hardened boundary that enforces strict compliance standards.
- [Security Context Managers](https://awesome-repositories.com/f/security-cryptography/security-context-managers.md) — A configuration management mechanism that maintains independent sets of security parameters and provider states for different components within one process.
- [Security Isolation Mechanisms](https://awesome-repositories.com/f/security-cryptography/security-isolation-mechanisms.md) — Maintaining independent configuration settings and security parameters for different application components to prevent cross-module interference and data leakage.
- [Cryptographic Provider Interfaces](https://awesome-repositories.com/f/security-cryptography/cryptographic-provider-interfaces.md) — Import external security providers that expose algorithm implementations to replace outdated engine-based architectures with modern modular alternatives. ([source](https://docs.openssl.org/master/man7/ossl-guide-migration))
- [Modular Cryptographic Providers](https://awesome-repositories.com/f/security-cryptography/modular-cryptographic-providers.md) — Loads external shared libraries dynamically to expose cryptographic implementations without requiring core binary changes.
- [Compliance Modules](https://awesome-repositories.com/f/security-cryptography/compliance-modules.md) — Connect validated cryptographic modules to applications by configuring specific providers to ensure that all security operations meet strict government and industry compliance standards. ([source](https://docs.openssl.org/master/man7/ossl-guide-migration))
- [Cryptographic Context Isolation](https://awesome-repositories.com/f/security-cryptography/cryptographic-context-isolation.md) — Maintains independent configuration states to allow multiple components to operate within separate cryptographic environments.
- [Cryptographic Algorithm Discovery](https://awesome-repositories.com/f/security-cryptography/cryptographic-algorithm-discovery.md) — Provides a metadata-driven lookup system to resolve cryptographic primitives based on security property requirements.
- [Cryptographic Algorithm Loaders](https://awesome-repositories.com/f/security-cryptography/cryptographic-algorithm-loaders.md) — Locate specific security algorithms by name or property to replace static function calls with dynamic loading mechanisms that adapt to different security providers. ([source](https://docs.openssl.org/master/man7/ossl-guide-migration))

### Networking & Communication

- [Secure Communication Protocols](https://awesome-repositories.com/f/networking-communication/secure-communication-protocols.md) — Implements robust encryption and authentication protocols to protect data in transit across networked applications.