Latest Posts

  • uncategorized

    wolfSSL Enforces Stack Usage Reduction

    wolfssladmin
    Understanding the stack and the heap are fundamental steps for all software developers. The importance of such understanding is inversely proportional to the amount of memory available on the platform, as both compete for a piece of the total memory space available on a system.In some cases the developer has...
    Read more
  • uncategorized

    wolfSSL with TLS 1.3

    wolfssladmin
    Hi!  Some of you know that the IETF working group on TLS is creating the specification for TLS 1.3.  We plan to upgrade wolfSSL to the TLS 1.3 specification as soon as the spec is finalized, or even close to finalized.  We are always aggressive with implementing the new TLS...
    Read more
  • uncategorized

    wolfSSL 3.0.0 Released

    wolfssladmin
    The new release of wolfSSL, v3.0.0, is now ready to download from our website.  New features include: - FIPS release candidate - X.509 improvements that address items reported by Suman Jana with security researchers at UT Austin and UC Davis - Small stack size improvements, –enable-smallstack. Offloads large local variables...
    Read more
  • uncategorized

    ChaCha20 and Poly1305 for wolfSSL TLS

    wolfssladmin
    Hi!  Weve scheduled ourselves to implement ChaCha20 and Poly1305 into wolfSSL this summer.  If youre learning about what these are, see these links:http://cr.yp.to/mac.htmlhttps://www.imperialviolet.org/2013/10/07/chacha20.htmlWe`re excited about this addition to our code.  If you have comments, questions, or need it in our code sooner than this summer, then let us know!  We...
    Read more
  • uncategorized

    wolfSSL’s Todd Ouska Comments on Heartbleed Bug

    wolfssladmin
    As a follow up to the recent Heartbleed bug in OpenSSL, Embedded Computing Design interviewed wolfSSL’s CTO, Todd Ouska for an article titled “Heartbleed: (Not) one in a million”. You can read the article at the following URL:http://embedded-computing.com/20937-heartbleed-not-one-in-a-million
    Read more
  • uncategorized

    wolfSSL JNI 1.1.0 Released

    wolfssladmin
    Version 1.1.0 of wolfSSL JNI is now available for download. wolfSSL JNI provides Java applications with a convenient Java API to the widely-used CyaSSL lightweight SSL/TLS library, including support for TLS 1.2 and DTLS 1.2.This release contains bug fixes and features including: - Updated support for CyaSSL, tested against CyaSSL...
    Read more
  • uncategorized

    OpenBSD team is refactoring OpenSSL

    wolfssladmin
    The OpenBSD team is refactoring OpenSSL, which is admirable work.  You can see their progress at http://opensslrampage.org.If you read the OpenSSL Rampage blog, you can see that they have their work cut out for them.  The OpenSSL code base is very old, and has had literally hundreds of unknown hands making...
    Read more
  • uncategorized

    Common Terms and Types in wolfSSL Lightweight SSL

    wolfssladmin
    If you are using or thinking about using the wolfSSL lightweight SSL/TLS library in your application or project, it’s oftentimes helpful to get a general overview of some of the terms and types which are used in a simple wolfSSL connection. Below we have included a general summary of these...
    Read more
  • uncategorized

    wolfSSL Security Advisory: April 9, 2014

    wolfssladmin
    Issue #1 (Memory  Corruption)CVE-ID:  CVE-2014-2896Product: CyaSSLVendor: wolfSSL Inc.Affected Versions: CyaSSL 2.9.0 and previous versionsVulnerability Type:  Improper Input Validation (CWE-20)Description: The TLS and DTLS implementations in wolfSSL CyaSSL before 2.9.4 lack a buffer length check in DoAlert(), possibly allowing an attacker to set the read index by up to 2 bytes...
    Read more