stunnel support for TLS 1.3 using wolfSSL

Did you know that wolfSSL maintains a port of stunnel which includes wolfSSL support, and now supports TLS 1.3?

What is stunnel?

stunnel is a lightweight TLS proxy, designed to add SSL/TLS encryption to unsecured applications without changes to the program’s source code.  Licensed under GNU GPLv2 and with an alternative commercial option, stunnel can be utilized to secure a host of different applications, including: mail exchange (SMTP, IMAP, POP3), web hosting (HTTP), remote shell, and virtually any other unprotected protocol desired.

TLS 1.3 Support!

Porting stunnel to use wolfSSL’s embedded SSL/TLS library means taking advantage of wolfSSL’s minimal footprint and high speed crypto implementation to increase performance and decrease required resources when compared to other SSL/TLS libraries. Not only that, but using wolfSSL with stunnel combines these benefits with the peace of mind that your application is secured by a progressive, transparent, and stable SSL/TLS library – known for its quality, integrity and efficiency.

The wolfSSL embedded SSL/TLS now includes support for TLS 1.3, which gives stunnel+wolfSSL users access to TLS 1.3!  TLS 1.3 improves upon the SSL/TLS protocol by removing old insecure algorithms and changing the TLS handshake to increase security and reduce round trips.

To build wolfSSL for use with stunnel and TLS 1.3 support, simply configure wolfSSL with:

$ ./configure --enable-stunnel --enable-tls13

from wolfSSL`s main directory, then make and make install.

For a version of stunnel that links to the wolfSSL library, and for more information, contact us at