wolfSSL now adds new public X.509 certificate-generation APIs for key identifiers, CRL distribution points, and Netscape certificate type handling. wolfSSL JNI builds on top of these APIs and now exposes matching Java methods in WolfSSLCertificate. New public wolfSSL APIs (C) int wolfSSL_X509_set_subject_key_id(WOLFSSL_X509* x509, const unsigned char* skid, int skidSz); int wolfSSL_X509_set_subject_key_id_ex(WOLFSSL_X509* x509); int wolfSSL_X509_set_authority_key_id(WOLFSSL_X509* x509, […]
Read MoreMore TagCategory: wolfSSL JSSE Provider (and JNI wrapper)
Migrating CRL Workflows from Bouncy Castle to wolfSSL JNI
If your Java stack currently uses Bouncy Castle for certificate tooling, moving CRL generation to wolfSSL’s JNI is straightforward once you map the flow correctly. wolfSSL JNI/JSSE uses wolfSSL’s native C crypto/TLS library, so projects can share one crypto implementation across Java and non-Java components. In environments that require validated cryptography, wolfSSL has significant experience […]
Read MoreMore TagwolfSSL Bouncy Castle Migration Guide
Do you use Bouncy Castle and want to migrate to wolfSSL’s Java providers – wolfJSSE and wolfJCE? If so, we just published a Bouncy Castle Migration Guide! wolfJSSE and wolfJCE are Java Security Providers that sit on top of native wolfCrypt and wolfSSL for cryptography and SSL/TLS functionality. Common advantages to using wolfSSL include progressive […]
Read MoreMore TagwolfSSL JNI/JSSE 1.17.0 Now Available
wolfSSL JNI/JSSE 1.17.0 is now available for download! This release brings JSSE?level PSK support, Java Platform Module System (JPMS) compatibility, SSLEngine hardening, a large expansion of X.509 and CRL capabilities at the JNI layer, and two new properties for FIPS and native library loading. Along with the new functionality, 1.17.0 contains a substantial set of […]
Read MoreMore TagSecuring Connections with DTLS 1.3 in wolfJSSE
We are excited to announce that the wolfSSL Java JSSE provider (wolfJSSE) now officially supports DTLS 1.3. This addition brings the latest in datagram security to the Java ecosystem, providing a modern, efficient, and secure protocol for UDP-based applications. Download wolfSSL → This support is included as of the wolfSSL JNI/JSSE v1.16.0 release and is […]
Read MoreMore TagConfigure Server Name Indication (SNI) Control With wolfjsse.autoSNI
wolfSSL’s Java JSSE provider version 1.16.0 now includes support for the wolfjsse.autoSNI System property. This new feature allows developers to control how the Server Name Indication (SNI) extension is configured during the TLS handshake. Download wolfSSL → Understanding wolfjsse.autoSNI Property Server Name Indication (SNI) allows a client to specify the hostname it is attempting to […]
Read MoreMore TagwolfSSL JNI/JSSE 1.16.0 Now Available
wolfSSL JNI/JSSE 1.16.0 is now available for download! This release contains a number of bug fixes and changes to the JNI and JSSE layers. wolfSSL JNI/JSSE allows for use of the native wolfSSL SSL/TLS library from Java. The thin JNI wrapper can be used for direct JNI calls into native wolfSSL, or the JSSE provider […]
Read MoreMore TagwolfSSL Java JSSE Provider Supports DTLS 1.3
wolfSSL’s Java JSSE provider (wolfJSSE) now supports DTLS 1.3! This support includes DTLS 1.3 on both client and server side through the SSLEngine interface. This support can be found in the wolfssljni GitHub master branch, and will be included in the next stable release. Benefits of DTLS 1.3 DTLS 1.3 (see RFC 9147) brings improved […]
Read MoreMore Tag