As many people know, Chinese government regulators are now mandating use of SM2, SM3 and SM4 in critical systems, including automobiles, avionics, power systems, and communication systems. Since many of our customers are multi-nationals that do business in China, they have been requesting the addition of these algorithms in wolfSSL products. Today we are about […]
Read MoreMore TagMonth: July 2023
wolfssh 1.4.14 release
wolfSSH 1.4.14 is now available for download! This is the next version of our lightweight, IoT friendly SSH implementation. There were some good fixes and improvements made to the code base for this release. A couple of the notable additions were: Adding user authentication support for RSA signing with SHA2-256 and SHA2-512 (Following RFC 8332) […]
Read MoreMore TagTLS Hardening with wolfSSL
Another new addition in our 5.6.2 release of wolfSSL is our TLS hardening option. This TLS hardening feature secures your TLS connections according to the recommendations in RFC 9325. When enabled, wolfSSL will: disable TLS versions older than 1.2 disable cipher suites based on ephemeral finite-field Diffie-Hellman key agreement finite-field Diffie-Hellman key agreement (i.e., “TLS_DHE_*” […]
Read MoreMore TagwolfSSL bare-metal and non-blocking cryptography
One of the unique wolfSSL features is the ability to run wolfSSL on bare-metal without any Real-Time Operating System (RTOS). Supporting bare-metal has always been a requirement for our libraries from initial development. Having a pure C code base, no external dependencies, portable design and modular build options enables this feature and provides a tiny […]
Read MoreMore TagConverting Between PEM and DER made Easy!
At wolfSSL we are always trying to make the security developer’s job easier. We’ve found that a common problem facing our customers is the need to convert between PEM and DER. PEM is a Base64, ASCII encoding that is used for X.509 certificates, certificate requests and cryptographic keys. DER is a binary encoding and is […]
Read MoreMore TagwolfSSL 5.6.2 and 5.6.3 Release Vulnerabilities
wolfSSL release 5.6.2 and 5.6.3 contained 6 vulnerability fixes. The listed issues were found by external researchers (thanks to their efforts! you can see them mentioned on each of the reports). In cases where a malicious agent could analyze cache timing at a very detailed level, information about the AES key used could be leaked […]
Read MoreMore TagLive Webinar: 2 Day wolfSSL Training Week
Would you like to learn more about how SSL/TLS work, or more about the wolfSSL lightweight SSL library? If so, wolfSSL is offering a training course on SSL/TLS and wolfSSL. The FREE 2 day (4 hours each day) wolfSSL training course covers details of SSL/TLS as well as the wolfSSL embedded SSL library. Participants will […]
Read MoreMore TagwolfEngine Works with the Final OpenSSL 1.1.1 Branch Release
As mentioned in a previous post, OpenSSL 1.1.1 branch of releases will hit End of Life (EoL) by September 11th, 2023. That’s right, it’s not a typo! It’s about 3 months away! It’s already listed as an old release branch here: https://www.openssl.org/source/old/ . Are you sure you are ready to tackle the migration to their […]
Read MoreMore TagwolfSSL Support for eCos
With its abstraction layers, OpenSSL compatibility layer, small size, and low runtime memory usage, the wolfSSL embedded SSL/TLS library is an excellent choice when porting to a new device or when looking to use TLS functionality in embedded environments and operating systems. One of the operating systems is the real-time eCos! eCos is a free […]
Read MoreMore Tag