wolfCLU release 0.2.0 is now available. Major feature additions were added; dual-algorithm certificates, a full OCSP client/responder, a cross-platform test suite, and a large round of security hardening. Highlights: Chimera (dual-algorithm) certificates. wolfCLU can now generate Chimera certificates carrying both a conventional and a post-quantum signature on a single X.509 cert, so one certificate satisfies […]
Read MoreMore TagMonth: May 2026
wolfBoot adds support for the Xilinx Zynq-7000 (ZC702)
We are pleased to announce that wolfBoot now ships an upstream port for the AMD/Xilinx Zynq-7000 SoC, verified end-to-end on the ZC702 Evaluation Kit (XC7Z020). The port covers QSPI cold-boot, SD-card cold-boot, JTAG-loaded development, and signed Linux/U-Boot payload chain-loading. All of this comes from a single TARGET=zynq7000 build target. This rounds out wolfBoot’s Xilinx coverage. […]
Read MoreMore TagwolfHSM TrustZone Now Available on STM32H5: Automotive-Grade HSM Security on a Mainstream Cortex-M33
wolfHSM on STM32H5 wolfHSM now supports the STM32H5 family. The same wolfHSM server that runs on Infineon AURIX TC3xx and ST SPC58 automotive parts now runs on a Cortex-M33, isolated by Arm TrustZone-M instead of a discrete HSM coprocessor. No extra silicon, no second MCU, no external secure element. The work is a two-part PR: […]
Read MoreMore TagChrony FIPS 140-3 Tested & Available with wolfCrypt FIPS
Chrony is network time synchronization software used to keep system clocks accurate across servers and devices. FIPS 140-3 support is available for Chrony with wolfCrypt FIPS, tested for use with Chrony environments. wolfCrypt FIPS provides a lightweight cryptographic module for security-focused deployments. This helps organizations secure time synchronization infrastructure while meeting FIPS requirements. Github: https://github.com/wolfSSL/osp/tree/master/chrony/4.1 […]
Read MoreMore TagwolfTPM on AMD Xilinx
wolfTPM supports any TPM 2.0 compliant TPM as well as TPM 2.0 modules on all AMD Xilinx platforms, including ZynqMP UltraScale+, Versal Gen 1 and Gen 2, Zynq-7000, and Kria SOM. It enables measured boot and a strong hardware root of trust, and includes standard TPM features such as secret sealing for encrypted file systems, […]
Read MoreMore TagBIND 9 FIPS 140-3 Tested & Available with wolfCrypt Fips
BIND 9 is DNS server software used to translate domain names into IP addresses. FIPS 140-3 support is available for BIND 9 with wolfCrypt FIPS, tested for use with BIND 9 environments. wolfCrypt FIPS provides a lightweight cryptographic module for security-focused deployments. This helps organizations secure DNS infrastructure while meeting FIPS requirements. Github Link: https://github.com/wolfSSL/wolfssl/actions/workflows/bind.yml?query=created:%3C2026-02-12&utm_source=chatgpt.com […]
Read MoreMore TagwolfTPM Post-Quantum Cryptography Release: ML-DSA and ML-KEM Support via TCG TPM 2.0 Library Specification v1.85
Post-Quantum Support Is Here wolfTPM is available with post-quantum cryptography support added through the TCG TPM 2.0 Library Specification v1.85. ML-DSA (FIPS 204) signing and ML-KEM (FIPS 203) key encapsulation are now supported by the wolfTPM client library against any v1.85-capable TPM 2.0 target. The work merged in PR #445. New v1.85 Commands The following […]
Read MoreMore TagwolfTPM fTPM v1.85 Post-Quantum
Full Release Overview wolfTPM’s firmware TPM (fTPM) is available with full TCG TPM 2.0 Library Specification v1.85 post-quantum support. This release adds the eight new v1.85 commands, the ML-DSA and ML-KEM algorithm structures, and supporting infrastructure (examples, unit tests, NIST ACVP known-answer-tests, a libFuzzer harness) to wolfSSL’s portable software TPM 2.0 implementation. The work merged […]
Read MoreMore TagwolfBoot now support fTPM as Root of Trust in TrustZone
With wolfBoot 2.8.0, TrustZone became an increasingly important part of the platform’s security model. That release expanded wolfBoot’s ability to place cryptographic services inside secure TrustZone enclaves, including PKCS#11 support via wolfPKCS11, and PSA Crypto with DICE attestation through wolfPSA. In both cases, the benefit is clear: sensitive cryptographic operations and security-critical state can live […]
Read MoreMore TagHW Crypto Support for the NXP LPC55S69
wolfSSL announces wolfBoot / wolfCrypt support for hardware crypto acceleration in the NXP LPC55S69, available now in the following PR’s: wolfBoot: #757, #773 wolfSSL (wolfCrypt): #10278 This includes TRNG, SHA1, SHA-256, AES-CBC, AES-ECB, AES-OFB, AES-CFB, and AES-CTR. AES supports key sizes of 128, 192, and 256. About the NXP LPC55S69 The LPC55S69 is a general-purpose […]
Read MoreMore Tag