Category: Uncategorized

Ever wondered how to use PSK with the embedded wolfSSL library?  PSK is useful in resource constrained devices where public key operations may not be viable.  It`s also helpful in closed networks where a Certificate Authority structure isn`t in place.  To enable PSK with wolfSSL you can simply do: $ ./configure –enable-psk Using PSK on […]

Read MoreMore Tag

wolfCrypt adds support for cryptographic callbacks that can be registered for replacing stock software calls with your own custom implementations. The goal is to make adding hardware cryptographic support easier. Currently supported crypto callbacks: RNG and RNG Seed ECC (key gen, sign/verify and shared secret) RSA (key gen, sign/verify, encrypt/decrypt) AES CBC and GCM SHA1 […]

Read MoreMore Tag

We have added support for RISC-V hardware in our wolfBoot library. The reference example uses the SiFive HiFive1 FE310 board to demonstrate a secure bootloader and firmware upgrade. The HiFive1 is a 32-bit E31 RISC-V core capable of running at 320MHz. It includes 4MB of external flash and 16KB of internal RAM. The wolfBoot library […]

Read MoreMore Tag

wolfSSL’s embedded SSL/TLS library has included support for TLS 1.3 since early releases of the TLS 1.3 draft. Since then, wolfSSL has remained up-to-date with the TLS 1.3 specification. In this post, the major upgrades of TLS 1.3 from TLS 1.2 are outlined below: TLS 1.3 This protocol is defined in RFC 8446. TLS 1.3 […]

Read MoreMore Tag

Are you a user of MCU with CryptoCell hardware?  If so, you will be happy to know that wolfSSL recently added support for CryptoCell with wolfCrypt and benchmark examples to the wolfSSL embedded SSL/TLS library! The wolfSSL port supports the following features: SHA-256 AES CBC Elliptic Curve Digital Signature Algorithm (ECDSA) – sign and verify […]

Read MoreMore Tag

wolfSSL provides many products, services, and support for almost all things TLS and embedded. One of these products provided by wolfSSL is wolfSSH – an SSHv2 server library! wolfSSH is wolfSSL’s own open-source and dual-licensed implementation of the SSHv2 protocol. It’s a server library written in ANSI C and targeted for embedded/RTOS/resource-constrained environments. It’s fast, […]

Read MoreMore Tag

Benchmark values of the wolfSSL embedded SSL/TLS library running on Xilinx boards, including the ZCU102, have been collected and are up for viewing. Our friends over at Xilinx have a white paper posted that goes into detail about the benchmark values here https://www.xilinx.com/support/documentation/white_papers/wp512-accel-crypto.pdf. This shows how much faster applications can perform secure operations when incorporating […]

Read MoreMore Tag

author: Daniel Stenberg Whatever we do and whatever we try, no matter how hard we try to test, debug, review and do CI builds it does not change the eternal truth: Nothing gets tested properly until released. We worked hard on fixing bugs in the weeks before we shipped curl 7.65.0. We really did. Yet, […]

Read MoreMore Tag

It’s common to hear the term asymmetric or symmetric cryptography but what does this actually mean? A brief explanation is that asymmetric cryptography is cryptography that has two keys which is why it is also called public-key cryptography. Both keys in the algorithm are linked to each other in a mathematical way, which allows for […]

Read MoreMore Tag

wolfBoot is wolfSSL’s own implementation of a secure bootloader that leverages wolfSSL’s underlying wolfCrypt module to provide signature authentication for the running firmware. The role of a secure bootloader is to effectively prevent the loading of malicious or unauthorized firmware on the target. Additionally, wolfBoot provides a fail-safe update mechanism, that can be interrupted at any time, and resumed […]

Read MoreMore Tag