Hi! We continue to make progress on our upcoming FIPS 140-3 certification. We have now completed code review, and are working with our lab on operational testing. The process will be in NIST’s hands after that. Our goal is to be the first software cryptographic library with a FIPS 140-3 certification, and that looks like […]
Read MoreMore TagMonth: March 2021
Leveraging Virtual Memory in the Linux Kernel
In wolfSSL release 4.7, the Linux kernel module implementation has been enhanced to use kvmalloc() and kvfree() for heap-based storage. The typical approach using kmalloc() allocates physically contiguous memory, with meaningful limitations on the maximum size of allocation and the impact of those allocations on other system components. kvmalloc(), by contrast, uses vmalloc() internally to […]
Read MoreMore TagReproducible Builds for Confident Testing and Release Engineering
wolfSSL release 4.7 includes –enable-reproducible-build, a new configuration option that suppresses the binary jitter (timestamps and other non-functional metadata) that is otherwise common in various build processes. With –enable-reproducible-build, test and release engineers can carefully align build environments, then generate bitwise-identical binary packages with identical hashes. Using –enable-reproducible-build, FOSS binary distributors can publish their build […]
Read MoreMore TagwolfBoot support for ARM TrustZone
Since version 1.7.1, wolfBoot provides support for secure boot on systems with a Trusted Execution Environment (TEE). wolfBoot provides embedded developers with a code base that complies with the specification for the separation between secure and non-secure world, on those CPUs and microcontrollers that support it. On ARMv8 Cortex-A CPU and Cortex-M microcontrollers it is […]
Read MoreMore Tag