Latest Posts

• uncategorized fips

  wolfSSL Inc. SP800-140C and Post-Quantum efforts update!

  This is an update to previous post Everything wolfSSL is Preparing for Post-Quantum as of Spring 2024 and an extension to post wolfSSL Support for Post-Quantum.

  Read more
• uncategorized wolssl

  SPAKE and wolfSSL in Kerberos 5

  In today’s digital landscape, the need for robust authentication mechanisms has never been more crucial. Among the various methods available, SPAKE (Simple Password-Authenticated Key Exchange) stands out as an enhanced security solution for authenticating users. SPAKE represents a significant advancement over traditional password-based authentication, which often relies on static hashes....

  Read more
• uncategorized

  IPsec vs TLS: what are the differences

  IPsec (Internet Protocol Security) and TLS (Transport Layer Security) are both used to protect data in transit between devices, and to secure network traffic over public or private internet. Both have cryptographic mechanisms for encryption, integrity checking, mutual authentication, replay protection, key exchange, etc. However, they operate at different network...

  Read more
• uncategorized wolssl

  When wolfSSL_UseKeyShare() is not Enough

  Ladies and gentlemen, it’s story time!! Once upon a time, there was a network administrator that only wanted to use the strongest NIST-approved ECC encryption available within the TLS 1.3 protocol. They picked ECDHE over the secp521r1 curve. When they went to code their application, they wanted the best TLS...

  Read more
• uncategorized wolssl

  Deprecation Announcement: RC2

  As part of our ongoing effort to maintain the highest level of security and performance, we are announcing the upcoming deprecation of RC2 from wolfCrypt. All of our products depend on wolfCrypt for their algorithm implementations so this could have consequences across our whole product line. What is RC2? RC2...

  Read more
• uncategorized wolfboot

  Unlocking the Power of Secure Boot for AMD/Xilinx UltraScale+ MPSoC Systems

  With the release of WolfBoot version v2.4.0, we have made significant improvements to our secure boot support for Xilinx UltraScale+ MPSoC systems. This major update brings several key enhancements that make it easier and more efficient to deploy wolfBoot on this target. UltraScale+ enhancements in wolfBoot v2.4.0 To see the...

  Read more
• uncategorized fips

  The Risks of 3DES in FIPS Certificates

  When it comes to securing data, cryptographic algorithms are the backbone of many systems. 3DES (Triple Data Encryption Standard) was once a FIPS (Federal Information Processing Standards) algorithm but is no longer supported by NIST as of 1 Jan 2024 (over 1 year ago!) Having 3DES in a FIPS module...

  Read more
• post-quantum uncategorized

  Deprecation Notice: liboqs Integration

  Soon wolfSSL will no longer utilize the liboqs library. This change is intended to simplify the maintenance of the wolfSSL codebase by reducing the line count. The wolfSSL library already provides its own implementations of post-quantum algorithms, including Kyber and Dilithium. To enable these algorithms, users can simply configure wolfSSL...

  Read more
• uncategorized

  Why Transition to DTLS 1.3 is Crucial for CNSA 2.0 Compliance and Cybersecurity

  As we advance towards stronger cybersecurity measures, adhering to the latest security standards is crucial. Transitioning to DTLS 1.3 is becoming a necessity for anyone still using DTLS 1.2. Here are four compelling reasons why now is the perfect time to make the switch:

  Read more
• uncategorized

  Live Webinar: Post Quantum Cryptography Update

  Secure Your Future: NIST PQC Standards and CNSA 2.0 Quantum computing is on the horizon, bringing new challenges to traditional cryptographic methods. To address these, NIST’s Post-Quantum Cryptography (PQC) standards and CNSA 2.0 guidelines provide essential tools for ensuring data protection in the quantum era. Join wolfSSL Senior Software Developer...

  Read more