Intel ® SGX (Software Guard Extensions) allows for additional security and a smaller surface area for attack. One way this is accomplished is by restricting access to portions of memory even from other applications running on the same computer. This additional security is for both code that is being executed and stagnant information with “sealing” […]
Read MoreMore TagMonth: September 2016
SWEET32 – 3DES disabled by default in wolfSSL 3.9.10
One of the changes in the recent wolfSSL 3.9.10 release, to mitigate against the SWEET32 attack, is that the 3DES algorithm is now disabled by default when using the Autoconf (./configure) build system. Non Autoconf users can disable 3DES by defining NO_DES3 when compiling wolfSSL. For those not familiar with SWEET32, more information can be […]
Read MoreMore TagwolfSSL 3.9.10 Vulnerability Fixes
wolfSSL release 3.9.10 fixes 3 medium level security vulnerabilities: CVE-2016-7440 The C software version of AES Encryption and Decryption in wolfSSL 3.9.8 and earlier uses a T-table based implementation where Table lookups do not properly consider cache-bank access times. This makes it easier for a local user to discover AES keys by running a crafted […]
Read MoreMore TagwolfSSL 3.9.10 Now Available
Version 3.9.10 of the wolfSSL embedded SSL/TLS library is now available for download. This release contains bug fixes, new features, and includes fixes for three medium level vulnerabilities. Vulnerabilities fixed by this release include CVE-2016-7440, CVE-2016-7439, and CVE-2016-7438, as explained in this recent wolfSSL blog post. This includes fixes forpotential AES, RSA, and ECC side […]
Read MoreMore TagTPM 2.0 integrated with wolfSSL embedded SSL
Hi! We are currently embarking on a mission to support TPM 2.0 with the wolfSSL embedded SSL library. If you are interested in being an alpha tester, please let us know at facts@wolfssl.com.
Read MoreMore TagARMv8 Hardware Acceleration with wolfSSL
Are you looking to use cryptography on an ARMv8 board? wolfSSL is in the process of optimizing AES and SHA256 operations using ARMv8 hardware acceleration. This gives the embedded TLS/SSL library a large performance boost when enabled and using AES-SHA256 cipher suites. The current development state can be found on our GitHub repository and enabled […]
Read MoreMore Tag