very cool... a friend of mine John Weathersby has been leading this long fight (I think about 18 months or so) to get this accomplished:
OpenSSL Receives FIPS 140-2 Validation
Validated OpenSSL Source Code and Security Documents to be made freely available
Monday January 23, 2006 – Hattiesburg, MS – Representatives of the Defense Medical Logistics Standard Support (DMLSS) program, the Open Source Software Institute (OSSI) and OpenSSL.org Project announced today that OpenSSL has received FIPS 140-2 validation by the Cryptographic Module Validation Program (CMVP).
OpenSSL Project here: The OpenSSL Project is a collaborative effort to develop a robust, commercial-grade, full-featured, and Open Source toolkit implementing the Secure Sockets Layer (SSL v2/v3) and Transport Layer Security (TLS v1) protocols as well as a full-strength general purpose cryptography library. The project is managed by a worldwide community of volunteers that use the Internet to communicate, plan, and develop the OpenSSL toolkit and its related documentation.
OpenSSL is based on the excellent SSLeay library developed by Eric A. Young and Tim J. Hudson. The OpenSSL toolkit is licensed under an Apache-style licence, which basically means that you are free to get and use it for commercial and non-commercial purposes subject to some simple license conditions.