OpenSSL will be installed and usable by default but we are not going to make it the default OpenSSL provider. If anyone wants to use OpenSSL we just need to make sure we have something that calls out how to use it. Two possible options:

• They can reconfigure the Elytron subsystem themselves to give it priority so it will be used in all cases by default
• The other main option is to use the OpenSSL specific algorithm names which can be satisfied only by the OpenSSL provider so that will be used.