wolfSSL 3.12.2 is now available for download! This release includes many performance improvements with Intel ASM (AVX/AVX2) and AES-NI. wolfSSL has implemented a new single precision math option to speed up RSA, DH and ECC in this release. Embedded hardware support has been expanded for STM32, PIC32MZ and ATECC508A, and AES-XTS mode support has been […]
Read MoreMore TagAuthor: wolfSSL
Embedded SSL/TLS in the Holiday Spirit
Team wolfSSL is preparing for Halloween with a pumpkin carving! Our embedded security products are continually evolving. We encourage you to check our our wolfSSL embedded SSL/TLS library here, wolfMQTT, wolfSSH, or visit our product page for a complete list of lightweight Open Source security products. As always if you have any questions, or would […]
Read MoreMore TagALT_ECC_SIZE, low visibility but highly useful!
It recently came to our attention that the preprocessor macro ALT_ECC_SIZE was missing in our documentation. As a result we decided to post a blog about this to help inform customers of the value for using this in space constrained devices using the fastmath math library with RSA/DH and ECC in wolfSSL. ALT_ECC_SIZE: The fastmath […]
Read MoreMore TagBreaking Ed25519 paper using wolfSSL
A recent paper used wolfSSL as a test bed for proving out their attack on Ed25519 signatures. You can read the paper here: https://eprint.iacr.org/2017/985.pdf . This was not an attack on wolfSSL itself or its implementation, but rather a differential power attack that involves SHA-512 and Ed25519. The recommended countermeasure is to change Ed25519 and […]
Read MoreMore TagKRACK Attacks: Wi-Fi Security Has Been Breached
According to a recent article, researchers have announced that Wi-Fi security has a protocol level exploit that can render all Wi-Fi traffic vulnerable to sniffing or manipulation. The good news is that if you are already using an independent form of end-to-end encryption such as SSL/TLS then the stolen packets are of little use as […]
Read MoreMore TagwolfSSL Intel SGX Testing
wolfSSL has support for Intel SGX and we do continuous integration testing on that support. This means that every night a process starts up and runs unit tests on crypto operations in a secure Enclave. Here’s a peek at some of the on going tests in action… LINK => App GEN => trusted/Wolfssl_Enclave_t.c CC <= […]
Read MoreMore TagwolfSSL with Improved ThreadX/NetX Support
wolfSSL has supported the ThreadX/NetX RTOS with the TLS protocol. Recently we added the ability to use DTLS with NetX. Out of the box, wolfSSL has the I/O callback functions for handling UDP packets for DTLS. As an extension to DTLS, wolfSSL also supports Multicast DTLS. If you would like to know more please contact our sales team […]
Read MoreMore TagHow to use the 0-RTT rope to climb, without hanging yourself!
One of the major new features of TLS v1.3 is the 0-RTT handshake protocol. This variation of the handshake, using Pre-Shared Keys (PSKs), allows the client to send encrypted data to the server in the first flight. This is particularly useful for TLS on embedded devices. Take the example of IoT. There may be thousands […]
Read MoreMore TagOverview of Testing in wolfSSL
The security of wolfSSL products is always on our mind and holds high importance. Conducting regular, diligent, and well-planned testing helps maintain wolfSSL’s robustness and security. We strive to write and maintain clean, readable, and understandable code. Like the halting problem, we know it is impossible to test every single possible path through the software, but […]
Read MoreMore TagwolfSSL STM32F7 Support
We would like to announce that the wolfSSL embedded SSL library now has support for hardware-based cryptography and random number generation offered by the STM32F7. Supported cryptographic algorithms include AES (CBC, CTR), DES (ECB, CBC), 3DES, MD5, and SHA1. For details regarding the STM32F7 crypto and hash processors, please see the STM32F7 Hardware Abstraction Layer (HAL) and […]
Read MoreMore Tag