We spent two decades teaching the web how to trust people. Passwords, OAuth, WebAuthn, passkeys — each generation a little less phishable than the last. It worked because the client was a human, or a program a human wrote, and there was typically one of them per session. That assumption has quietly collapsed. An autonomous […]
Read MoreMore TagMonth: June 2026
CJOSE FIPS 140-3 Tested & Available with wolfCrypt FIPS
CJOSE is a C library for JSON Object Signing and Encryption (JOSE), providing support for JWS, JWE, JWK, and JWT standards. FIPS 140-3 support is available for CJOSE with wolfCrypt FIPS, tested for use with CJOSE environments. wolfCrypt FIPS provides a lightweight cryptographic module for security focused deployments. This helps organizations secure authentication, token signing, […]
Read MoreMore TagLMS versus XMSS versus SLH-DSA for Secure Boot
Here at wolfSSL we always stay on top of our customer’s requirements. By now you’ve heard us talk about the NSA’s (National Security Agency) CNSA 2.0 (Commercial National Security Algorithm Suite 2.0) ad nauseum. Well, let’s focus in on it again and zero in on that first line: It states that for Software and Firmware […]
Read MoreMore TagwolfCrypt Performance on the Altera Agilex 5
The Agilex Family and Agilex 5 The Altera Agilex portfolio represents a family of modern SoC FPGAs designed to address the scaling and power efficiency requirements of edge, data center, and communication infrastructures. Built on advanced process technologies, the family unifies programmable logic with hardened processor subsystems, high-bandwidth memory interfaces, and specialized digital signal processing […]
Read MoreMore TagNXP S32K3 Hardware Security Engine (HSE) support using wolfSSL
wolfSSL now supports hardware-accelerated cryptography on the NXP S32K3 family using the on-chip Hardware Security Engine (HSE). The HSE is a secure coprocessor integrated into NXP’s automotive S32K3 microcontrollers. The Hardware Security Engine (HSE) The HSE runs its own firmware on a dedicated core and communicates with the application core over a Messaging Unit (MU). […]
Read MoreMore TagHow AI Finds Vulnerabilities in Cryptographic Libraries
Can AI help uncover security issues that traditional testing, fuzzing, and code review miss? AI-based code analysis tools are advancing rapidly, but questions remain about their effectiveness when applied to highly reviewed security-critical software. Join wolfSSL and AISLE on June 11 at 9 AM PT for a technical discussion on AI-assisted vulnerability discovery. AISLE will […]
Read MoreMore TagPQC Update 2026: Standards, Performance, and Migration Reality
Post-quantum cryptography is moving from planning to deployment. With NIST standards finalized, CNSA 2.0 guidance emerging, and hybrid cryptography already appearing in production environments, engineering teams are now facing practical decisions around performance, interoperability, certification, and migration strategy. Join us on June 9 at 9 AM PT for a practical update on the PQC landscape […]
Read MoreMore TagAre You Still Stuck on OpenSSL 1.x.y? We Can Help.
Many organizations still rely on legacy versions of OpenSSL because upgrading certified or long lifecycle products is not always simple. wolfSSL provides lightweight SSL/TLS and cryptography libraries designed for modern embedded and security-focused systems. For compliance-driven environments, wolfCrypt FIPS offers FIPS 140-3 validated cryptography with TLS 1.3 support. If your team is still using OpenSSL […]
Read MoreMore TagwolfSSL Now Runs on CHERI
wolfSSL now builds and runs on CHERI purecap RISC-V, with all of the supporting fixes merged upstream. This brings one of the most widely deployed TLS/SSL and cryptography libraries to a hardware-enforced memory-safety architecture, a natural pairing for the kind of security-critical embedded code wolfSSL is built for. This work was contributed by William Beasley […]
Read MoreMore TagwolfBoot for CNSA 2.0 Secure Boot on Zynq UltraScale+ MPSoC
Executive Summary Problem: Zynq UltraScale+ MPSoC secure boot authenticates the FSBL with RSA-4096 in immutable BootROM. CNSA 2.0 requires post-quantum algorithms for long-term software and firmware verification. RSA-4096 is not quantum-resistant, so the BootROM cannot be the final CNSA 2.0 firmware-authentication answer. Solution: Use wolfBoot as the system-level post-quantum authorization layer. Keep AMD secure boot […]
Read MoreMore Tag