wolfSSL is thrilled to announce that desktop, development, and media applications can now achieve FIPS 140-3 compliance through our GnuTLS-wolfSSL integration. This breakthrough comes from our ongoing work integrating wolfSSL’s FIPS 140-3 certified cryptography (wolfCrypt) into GnuTLS, enabling a true drop-in solution for Linux applications.
For developers and organizations in government, defense, finance, healthcare, and other regulated industries, this eliminates barriers to deploying user-facing applications and specialized libraries that must meet federal compliance standards.
What We’ve Built
Unlike traditional approaches requiring extensive rewrites, our solution operates entirely behind the scenes. By patching GnuTLS at the library level with wolfCrypt’s certified cryptographic operations, applications gain FIPS 140-3 compliance without changing a single line of their code. Simply rebuild with our patched GnuTLS library, and your entire application stack achieves FIPS compliance.
We’re continuously validating this integration through CI/CD testing against 17 applications, testing target versions, latest releases, and master branches to ensure rock-solid compatibility. Our fork is now debianized, making deployment as simple as installing a standard Debian package.
Desktop & Media Applications Now FIPS-Ready
glib-networking – The GNOME network stack that provides TLS support for countless GTK-based applications across Linux desktops.
libvnc – Enables VNC client and server functionality for remote desktop access and support tools.
libvte – The terminal emulator widget library used by GNOME Terminal and other popular Linux terminal applications.
libcups – The Common Unix Printing System library that handles secure printing operations across networks.
libcamera – Modern camera support library for Linux systems, handling secure camera data streams.
QPDF – PDF manipulation library for viewing, editing, and transforming PDF documents securely.
libjcat – Archive verification library used by fwupd and other tools for validating signed package integrity.
RTMP – Real-Time Messaging Protocol implementation for secure streaming media applications.
How We Enable FIPS Compliance
These applications rely on GnuTLS for TLS connections, certificate handling, secure communications, and cryptographic operations. By integrating wolfSSL’s FIPS 140-3 certified wolfCrypt module into GnuTLS, we deliver a true drop-in solution. Depending on the algorithms your application uses, you may need no code changes at all, just rebuild with our patched library and achieve FIPS compliance across your desktop and media applications.
The debianized package makes deployment straightforward: install our GnuTLS-wolfSSL package on your Debian-based system, and your applications automatically benefit from FIPS-certified cryptography.
Questions?
Take a more in-depth look at our integration on the wolfSSL GitHub, if you need support we are more than happy to help you out, you can email us at support@wolfssl.com.
If you have questions about any of the above, please contact us at facts@wolfssl.com or call +1 425 245 8247.
Download wolfSSL Now