We’re excited to share that wolfCrypt now runs a full modern crypto suite on Texas Instruments’ C2000 C28x – the NIST post-quantum schemes ML-DSA (FIPS 204) and ML-KEM (FIPS 203), plus RSA, Diffie-Hellman, AES, ChaCha20-Poly1305, HMAC/HKDF, the Curve25519/Ed25519, Curve448/Ed448, and NIST P-256 elliptic-curve schemes, and the SHA-1/2/3 and SHAKE hash families – all validated on […]
Read MoreMore TagCategory: Uncategorized
wolfSSL adds LMS and XMSS to wolfHSM
LMS and XMSS are stateful hash-based signature schemes (NIST SP 800-208) suited to long-lived firmware and code signing. wolfSSL has added support for both post-quantum cryptographic (PQC) algorithms to wolfHSM. This feature leverages the hardware security module (HSM) to securely and persistently store the “stateful” key and counter for both algorithms, as well as perform […]
Read MoreMore TagMbedOS End of Life; but wolfSSL on MbedOS lives on
MbedOS goes into End-of-Life in July this year, but as we are committed to our customers and their security, we will still support wolfSSL product on MbedOS going forward. If you’re in a pinch with CRA or other security requirements, feel free to contact us at facts@wolfssl.com, and we’ll work out a plan with you […]
Read MoreMore TagwolfIP comes to AMD/Xilinx: bare-metal TCP/IP on ZynqMP, Versal and Zynq-7000
We have added bare-metal wolfIP ports for three AMD/Xilinx PS-GEM SoCs, all brought up and measured on real hardware: ZCU102 – Zynq UltraScale+ MPSoC, Cortex-A53 (AArch64, EL3) VMK180 – Versal ACAP Gen 1, Cortex-A72 (AArch64, EL3) ZC702 – Zynq-7000, Cortex-A9 (ARMv7-A, SVC) All three share a single source tree (each board’s Makefile build-selects its components, […]
Read MoreMore TagwolfSSL granted NIST ESV Cert #335
Following a Dec 5, 2025 submission, the wolfSSL proprietary, software-based TRNG ‘wolfEntropy’ has officially achieved NIST Entropy Source Validation: ESV Certificate #335. The Engineering The wolfEntropy solution was written from the ground up to eliminate supply-chain risk and optimize performance, footprint, and run time resource use: Custom Architecture: Zero-dependency, proprietary jitter-based design. Cache-Optimized: Specifically engineered […]
Read MoreMore TagwolfIP Adds a Clean-Room Wi-Fi Supplicant: WPA2, WPA2-Enterprise, and WPA3 for Embedded Systems
wolfIP now ships an in-tree Wi-Fi supplicant (src/supplicant/) that brings WPA2-Personal, WPA2-Enterprise, and WPA3-Personal authentication to resource-constrained embedded devices, with no external proprietary supplicant and no dynamic memory allocation. It is a clean-room implementation built directly on wolfSSL/wolfCrypt, so the same crypto you already trust now drives your Wi-Fi association. Supported authentication methods Mode Standard […]
Read MoreMore TagIntroducing tinytls13: A minimal TLS 1.3 build profile that fits a complete client in about 30 KB of flash.
In brief. tinytls13 is a new wolfSSL build profile for deeply constrained devices. It compiles a complete, working TLS 1.3 client in about 30.8 KB of flash on an ARM Cortex-M33, with no X.509 and no extras you did not ask for. Why we built it Secure boot, attestation, and IoT connectivity increasingly need TLS […]
Read MoreMore TagXilinx Versal Gen 2 ASU support coming to wolfSSL
wolfSSL is proud to announce that active development has started to support offloading cryptographic operations to the ASU subsystem found on the Xilinx Versal Gen 2. We are currently implementing offload support for TRNG, SHA2, SHA3, SHAKE, HMAC, AES, RSA, and ECC. This will help enable future wolfSSL projects on the Versal Gen 2 platform, […]
Read MoreMore TagwolfMKA: The MACsec Control Plane for Your Switch Firmware
Your switches already do the hard part in silicon. A modern MACsec-capable ASIC encrypts, authenticates, and replay-protects every frame at line rate on the physical layer – no CPU in the data path. But that hardware doesn’t key itself. Before a single protected frame goes out, something has to discover peers, prove liveness, elect a […]
Read MoreMore TagwolfMQTT 2.1.0 Released: Broker Session Persistence, Stronger Security, and MQTT v5 Reliability
wolfMQTT is wolfSSL’s lightweight MQTT client and broker library, purpose-built for embedded and IoT devices. It is small, portable, and pairs directly with the wolfSSL embedded TLS library for secure MQTT over TLS 1.3, giving resource-constrained devices a fully authenticated, encrypted messaging stack in a tiny footprint. The wolfMQTT 2.1.0 release extends the built-in broker […]
Read MoreMore Tag
