Latest Posts

• uncategorized

  KRACK Attacks: Wi-Fi Security Has Been Breached

  According to a recent article,  researchers have announced that Wi-Fi security has a protocol level exploit that can render all Wi-Fi traffic vulnerable to sniffing or manipulation. The good news is that if you are already using an independent form of end-to-end encryption such as SSL/TLS then the stolen packets...

  Read more
• uncategorized

  wolfSSL Intel SGX Testing

  wolfSSL has support for Intel SGX and we do continuous integration testing on that support. This means that every night a process starts up and runs unit tests on crypto operations in a secure Enclave. Here’s a peek at some of the on going tests in action… LINK => App...

  Read more
• uncategorized

  wolfSSL with Improved ThreadX/NetX Support

  wolfSSL has supported the ThreadX/NetX RTOS with the TLS protocol. Recently we added the ability to use DTLS with NetX. Out of the box, wolfSSL has the I/O callback functions for handling UDP packets for DTLS. As an extension to DTLS, wolfSSL also supports Multicast DTLS. If you would like to know more...

  Read more
• uncategorized

  How to use the 0-RTT rope to climb, without hanging yourself!

  One of the major new features of TLS v1.3 is the 0-RTT handshake protocol. This variation of the handshake, using Pre-Shared Keys (PSKs), allows the client to send encrypted data to the server in the first flight. This is particularly useful for TLS on embedded devices. Take the example of...

  Read more
• uncategorized

  Overview of Testing in wolfSSL

  The security of wolfSSL products is always on our mind and holds high importance.  Conducting regular, diligent, and well-planned testing helps maintain wolfSSL’s robustness and security.  We strive to write and maintain clean, readable, and understandable code. Like the halting problem, we know it is impossible to test every single possible...

  Read more
• uncategorized

  wolfSSL STM32F7 Support

  We would like to announce that the wolfSSL embedded SSL library now has support for hardware-based cryptography and random number generation offered by the STM32F7.  Supported cryptographic algorithms include AES (CBC, CTR), DES (ECB, CBC), 3DES, MD5, and SHA1.  For details regarding the STM32F7 crypto and hash processors, please see the STM32F7...

  Read more
• uncategorized

  wolfSSL with PikeOS and ElinOS and TLS 1.3

  Are you a user of PikeOS or ElinOS, and interested in a lightweight TLS 1.3 implementation?  The wolfSSL embedded SSL/TLS library now supports TLS 1.3 (drafts 18 and 20).  TLS 1.3 improves performance of establishing TLS connections by reducing the required number of round trips during the TLS handshake (including a new...

  Read more
• uncategorized

  NXP CAU, mmCAU, and LTC Hardware Cryptography with TLS 1.3

  As you may know, wolfSSL includes support for offloading cryptography operations into NXP Coldfire and Kinetis devices that include the CAU, mmCAU, or LTC hardware crypto modules. Taking advantage of these modules improves performance of both the cryptography and the SSL/TLS layer running on top of it.

  Read more
• uncategorized

  Microchip PIC32MZ with TLS 1.3

  As you may know, wolfSSL includes support for offloading cryptography operations into the PIC32MZ hardware crypto module.  This improves performance of both the cryptography and the SSL/TLS layer running on top of it. Here is a quick comparison of performance between software cryptography and the hardware-based cryptography offered by the...

  Read more
• uncategorized

  wolfSSL Package for Arch Linux

  Hi!  Are you a user of Arch Linux?  wolfSSL 3.12.0 is now available as a package in the Arch User Repository! https://aur.archlinux.org/packages/wolfssl wolfSSL, written in C, supports industry protocol standards up to TLS 1.3 and DTLS 1.2 and progressive ciphers including ChaCha20, Poly1305, Curve25519, Ed25519, and SHA-3.  We encourage you to give our...

  Read more