Version 2.0.8 of the wolfSSL embedded SSL/TLS library has been released and is now available for download. This release contains bug fixes, some feature enhancements, and is a recommended update for all users: – A fix for malicious certificates pointed out by Remi Gacogne (thanks!) resulting in NULL pointer use.– Respond to renegotiation attempt with no_renegoatation […]
Read MoreMore TagMonth: February 2012
CyaSSL working with Nginx
Hi! We have been asked a number of times about CyaSSL integration with the Nginx web server. If you are not familiar with Nginx, it is a high performance, high concurrency web server that is becoming extremely popular these days. You can learn more about Nginx at nginx.com. Nginx and CyaSSL make a likely pairing because […]
Read MoreMore TagOpenSSL in Devices gets cracked when trying to “enhance” randomness
Hi! The security world has been buzzing this week about two new sets of research into what we will call statistical key cracking. The hack is one that we would not expect out of your average script kiddie, because it combines sophisticated scanning with mathematical prowess. The overview story is the first link below. The […]
Read MoreMore TagwolfSSL and LibSCS
wolfSSL is now available as a crypto provider for KoanLogic’s SCS library, LibSCS. SCS, a small cryptographic protocol layered on top of the HTTP cookie facility [RFC6265], allows its users to produce and consume authenticated and encrypted cookies, as opposed to usual cookies, which are un-authenticated and sent in clear text. From the LibSCS README, […]
Read MoreMore TagThe Gravity
yaSSL currently secures over 50 million points on the internet. We don’t talk about who is using CyaSSL, for obvious reasons, but the numbers are big and growing. We take our work seriously, and hope you feel comfortable with our efforts. We endeavor to build a business, a community, and do the right thing. We […]
Read MoreMore Tag