At wolfSSL Inc., our mission is simple: to provide the world’s most rigorously tested cryptography. We work tirelessly to ensure our solutions meet the highest security standards, and we’re excited to share some of our latest achievements with regard to the FIPS 140-3 program!
Advancing Our FIPS Validations
We’ve made significant strides with our wolfCrypt FIPS v6.0.0 module (Rainer 0.0), which transitioned from the Implementation Under Test (IUT) list to the Modules in Process (MIP) list as of September 12, 2025. This new module introduces several new algorithms not present in our previous FIPS validations, including:
- SRTP-KDF (Secure Real-time Transport Protocol Key Derivation Function)
- AES-XTS (256, 512) (AES XEX-based Tweakable Block Cipher with Ciphertext Stealing)
- XEX = Xor, Encrypt, Xor (Sequence of operations)
- AES-CFB (1, 8, 128) (Cipher FeedBack mode)
- AES-KW (Key Wrap)
- EDDSA (25519, 448) (EDwards-curve Digital Signature Algorithm)
- SHAKE (128, 256) (SHA3 based eXtendable-Output Function (XOF)) (not an acronym)
- PBKDF2 (Password Based Key Derivation Function 2)
This submission for the wolfCrypt FIPS v6.0.0 module (Rainer 0.0) uses the same SP800-140Br1 (Web-Cryptik) submission process and our FIPS staff does anticipate it will move through the validation process at a much faster rate than other modules submitted under the older manual submission process. This submission will NOT result in an “Interim Certificate” only good for 2 years, it will be a real FIPS 140-3 certificate good for 5 years once approved!
Updates for Enhanced Security and Performance
In parallel, we are also preparing an updated version of our FIPS 140-3 validated wolfCrypt FIPS v5.2.1 module (Bridger 2.1). This new module, designated wolfCrypt FIPS v5.2.3 module (Bridger 2.3), includes ARMv8 Cryptographic Extensions and ARMv7 Neon optimizations for enhanced performance. It also expands support to 58 new Operational Environments (OEs).
Our testing with a Cryptographic Security Testing Laboratory (CSTL) has just concluded, and we anticipate submitting the updated module to the CMVP by the end of September. This updated submission will result in a new FIPS certificate with a full five-year lifespan, ensuring long-term security and support for our users of the wolfCrypt FIPS v5.2.3 module (Bridger 2.3).
These efforts build on the recent success of receiving FIPS 140-3 certificates #4718 (v5.2.1/ Bridger 2.1) in July of 2024 and #5041 (v5.2.0.1/ Bridger 2.0.1) in July of 2025. We continue to invest in the validation process to provide our stakeholders with the most secure and reliable cryptographic solutions available.
Have questions about our FIPS validations or want to learn more? Reach out to our FIPS team at fips@wolfssl.com or our support staff at support@wolfssl.com anytime.
If you have questions about any of the above, please contact us at or call us at +1 425 245 8247.
Download wolfSSL Now