Latest Posts

  • uncategorized

    Updated API Documentation

    wolfssladmin
    We want to let our users and followers know that we recently updated the API documentation for the wolfSSL embedded SSL library. With this update, all functions in the standard wolfSSL build (98) are now documented plus an additional 19 related to various defines related to DTLS, Callbacks, DER-specific, NTRU...
    Read more
  • uncategorized

    wolfSSL Now Supports AES with CCM-8

    wolfssladmin
    We have added the Counter with CBC-MAC Mode with 8?byte authentication (CCM-8) for AES to wolfSSL. The following cipher suites are available for TLS v1.2: • TLS_RSA_WITH_AES_256_CCM_8_SHA384 • TLS_RSA_WITH_AES_128_CCM_8_SHA256AES with CCM-8 will be available in our next release. The latest sources are available in our GitHub repository. To enable AES with...
    Read more
  • uncategorized

    Getting started with wolfSSL`s ECC

    wolfssladmin
    Release 2.4.6 of wolfSSL is the first to include our ECC implementation publicly.  Lets look at how to get started using the ECC features.  First, youll need to turn on ECC.  With the autoconf system this is simply a configure flag:./configure –enable-eccmakemake checkNote the 96 different TLS cipher suites that...
    Read more
  • uncategorized

    Intro to PKCS #3: Diffie-Hellman Key Agreement Standard

    wolfssladmin
    A while back, we started a series on the PKCS standards. Our first post was about PKCS #1, the RSA Cryptography Standard. This is the second post in the PKCS standards series, introducing PKCS #3 - the Diffie-Hellman Key Agreement Standard.PKCS #3 is the Diffie-Hellman Key Agreement Standard and is...
    Read more
  • uncategorized

    Linux Journal - Elliptic Curve Cryptography

    wolfssladmin
    If you are a reader of Linux Journal (http://www.linuxjournal.com/), you may have seen the interesting article in this month’s issue about Elliptic Curve Cryptography written by Joe Hendrix:http://www.linuxjournal.com/content/january-2013-issue-linux-journal-securityIn the article, Joe explains how ECC works (with several descriptive charts), talks about how NIST makes recommendations on the actual security provided...
    Read more
  • uncategorized

    STM32 and wolfSSL - Hardware Crypto and RNG Support

    wolfssladmin
    We would like to announce that the wolfSSL embedded SSL library now has support for hardware-based cryptography and random number generation offered by the STM32F2. Supported cryptographic algorithms include AES (CBC, CTR), DES (ECB, CBC), 3DES, MD5, and SHA1. For details regarding the STM32F2 crypto and hash processors, please see...
    Read more
  • uncategorized

    wolfSSL 2.4.6 is Now Available

    wolfssladmin
    Version 2.4.6 of the wolfSSL embedded SSL/TLS library has been released and is now available for download.  This release contains bug fixes and has a few new features including:- ECC into main (GPLv2) version- Lean PSK build (reduced code size, RAM usage, and stack usage)- FreeBSD CRL monitor support- wolfSSL_peek()-...
    Read more
  • uncategorized

    Open Source for America

    wolfssladmin
    In case you didnt notice, open source is growing rapidly in government usage.  [OpensourceforAmerica.org](https://en.wikipedia.org/wiki/Open_Source_for_America) is keeping a helpful list of resources and examples of how open source is both helping government and expanding in usage.  See:  http://opensourceforamerica.org/projects/mentors/resources/.  Our team is proud to participate in and support the growth of open...
    Read more
  • uncategorized

    wolfSSL Custom I/O: Handshaking

    wolfssladmin
    Last week we talked about wolfSSL’s custom I/O handling and how to set it up. The following discussion assumes the I/O callbacks are reading and writing into buffers rather calling send() or recv().A tricky situation is during the handshake. When calling wolfSSL_connect(), the client will send cipher text first and...
    Read more
  • uncategorized

    Don`t forget about Valgrind

    wolfssladmin
    One of our favorite tools at yaSSL is valgrind: http://valgrind.org .  Originally a memory error detector, its now an instrumentation framework for dynamic analysis that also does thread error detection, cache and branch-prediction profiling, and heap profiling.  If youve never used it, you should.  If you are using it, you should...
    Read more