02: Tools of the trade | OpenSSL

02: Tools of the trade | OpenSSL

 
Throughout the series I will mostly be using OpenSSL. So it makes sense we do a brief introduction of the OpenSSL tool.
 
OpenSSL Introduction
 
  • The SSL stands for Secure Socket Layer
  • Managed by OpenSSL Management Committee, consisting of 7 members and only 20 people in the entire world has commit rights.
  • OpenSSL is basically an open source software toolkit.
  • The toolkit includes cryptography, SSL/TLS Libraries, command line utility that uses these libraries.
  • It can be used to generate Encryption Keys, X.509 certificates.
  • It’s used by SWEs and Engineers.
  • SSL is a protocol designed to provide secure comm over insecure network.
  • SSL achieves communication security by utilising Symmetric And Asymmetric Cryptography.
  • SSL was developed in 95 by Netscapes Communication Corporation and deprecated in 2015 in favor for it’s successor the TLS protocol.
  • The OpenSSL is used for TLS althoug it has “SSL” in it’s name.
  • OpenSSL supports:
    • symmetric and asymmetric encryption
    • digital signatures
    • message digest
    • key exchange
  • From OpenSSL 3.0 the license has changed from BSD Style Open Source to Apache License 2.0
 
OpenSSL Official Source
 
 
OpenSSL Installation
 
  • Installing openssl in ubuntu or debian based systems
    • sudo apt install openssl libssl3 libssl-dev libssl-doc
 
How To Check OpenSSL Version
 
openssl version
 
notion image
 
Show all OpenSSL switches
 
openssl version --help
 
notion image
 
Show all data related to OpenSSL Binary
 
openssl version -a
 
notion image
 
Shows OpenSSL Build Date Locally
 
opnssl version -b
 
notion image
 
Show OpenSSL Compiler Flags
 
openssl version -f
 
notion image
  • clang is the compiler that was used to compile this OpenSSL
    • fPIC specifies that Position Independent Code (PIC) is used. This is a flag often used when compiling code to create shared libraries.
    • arch arm64 indicates that the target architecture is ARM64.
    • O3 signifies that the compiler optimization level is set to 3, which is a relatively high level of optimization.
 
 

Conclusion


 
Check out my other blogs here ✏️
 
 
 
Follow, Mentoring Free (& Paid) 📞
 
 
Subscribe to my free Security Focused Newsletter 📰