wolfSSL is a growing company looking to add a top notch embedded systems software engineer to our organization. wolfSSL develops, markets and sells the leading Open Source embedded SSL/TLS protocol implementation, wolfSSL. Our users are primarily building devices or applications that need security. Other products include wolfCrypt embedded cryptography engine, wolfMQTT client library, and wolfSSH. […]
Read MoreMore TagCategory: Uncategorized
wolfSSL and ROBOT
wolfSSL is cited in the recent ROBOT Attack by Böck, Somorovsky, and Young. The paper notes that wolfSSL only gives a weak oracle without a practical attack but this is still a flaw. We’ve posted a fix for this and a general release will be available next week. Please note that wolfSSL has disabled static […]
Read MoreMore TagwolfCrypt/wolfSSL Benchmarks with iPhone 8/8 Plus/X (A11)
We decided to benchmark our wolfCrypt/wolfSSL libraries on Apple’s new A11 processor in their latest iPhone 8 / 8 Plus and iPhone X. This processor features six ARMv8 CPU cores (2 high-performance 2.53GHz and 4 high-efficiency 1.42GHz). The benchmarks use wolfSSL’s latest speedups for ARMv8 crypto extensions and single precision math to demonstrate our exceptional […]
Read MoreMore TagSecuring MySQL (#mysql) with wolfSSL SSL/TLS Library
MySQL (#mysql) currently comes bundled with yaSSL to provide an option for SSL/TLS connections when using a database. A patch for securing MySQL with the wolfSSL embedded SSL/TLS library is available for MySQL version 8.0.0 here https://github.com/wolfSSL/mysql-patch. Along with an increased level of security comes the potential to use […]
Read MoreMore TagwolfMQTT v0.14 Released
wolfMQTT v0.14 has been released (11/22/17) and includes fixes for non-blocking operation, improved error handling with TLS, fixes for GCC 7 warnings and updates to the Visual Studio projects. wolfSSL will be at the IoT Tech Expo (Nov 29-30, 2017) in Santa Clara at the convention center. If you are attending please visit our booth […]
Read MoreMore TagTLS v1.3 Draft 21 Support in wolfSSL
The TLS v1.3 specification has been evolving over the year and is close to being finalized. Recently the code changes required to support Draft 21 were added to wolfSSL.Most browsers and servers on the Internet are stuck on Draft 18. This maximizes interoperability and allows for collection of error rate statistics. wolfSSL is able to […]
Read MoreMore TagOverview of Testing in wolfSSL
The security of wolfSSL products is always on our mind and holds high importance. Conducting regular, diligent, and well-planned testing helps maintain wolfSSL’s robustness and security. We strive to write and maintain clean, readable, and understandable code. Like the halting problem, we know it is impossible to test every single possible path through the software, but […]
Read MoreMore TagwolfSSL Test and Benchmark Applications in Non-Standard Environment
Recently the question of building the wolfCrypt test and benchmark applications in a non-standard environment has been asked multiple times to our support team. We wanted to provide a solution for those who might be struggling! The wolfSSL embedded SSL/TLS library ships with both of these applications to help users get up and running on […]
Read MoreMore TagwolfSSL Intel SGX Support and Testing
Providing Secure, Well-Tested SGX Integration with wolfSSL and wolfCrypt Did you know that wolfSSL has support for Intel SGX? Not only do we have support for SGX, but we do continuous integration testing on that support to offer our users a more robust and mature solution. This means that every night a process starts up […]
Read MoreMore TagUsing Alternative I/O with wolfSSL Lightweight TLS
In this past (here and here) we have written about wolfSSL’s I/O abstraction layer and support for alternative I/O mediums. We wanted to refresh our reader’s memory about this helpful feature. In this context, “less traditional I/O” means running SSL/TLS over something besides TCP/IP or UDP – for example Bluetooth, a serial connection, memory buffers, […]
Read MoreMore Tag