Advertisement · 728 × 90

Posts by wolfSSL Embedded SSL/TLS Library - wolfSSL

wolfBoot vs Intel Slim Bootloader Since version 2.0.0, wolfBoot runs as a bare-metal bootloader on x86-64 (amd64 / Intel 64), using Intel FSP for silicon initialization — the same approach taken by Intel’s Slim Bootloader. So what sets them apart? Quite a lot. Getting started with wolfSSL? Download the latest libraries here and start exploring. Advanced Cryptography & Quantum Readiness […]
2 days ago 0 0 0 0
Preview
wolfCrypt FreeBSD kernel module update: FIPS and crypto acceleration support The wolfSSL team are adding two new enhancements to our FreeBSD kernel module (bsdkm) that will make cryptography in the kernel faster and more secure: FIPS 140-3 in the kernel: PR #9590 introduced support for wolfCrypt FIPS in our FreeBSD kernel module. This provides a simple recipe for FIPS-certified crypto in FreeBSD kernel space. x86 […]
2 days ago 0 0 0 0
wolfMQTT Embedded Broker: Lightweight MQTT for the Edge MQTT is the standard protocol for IoT messaging, but existing brokers are server-class software. They assume abundant memory, a full OS, and dynamic memory allocation. Embedded devices, gateways, and safety-critical platforms don’t have those luxuries. Teams building edge gateways, local message routing, or offline-capable IoT systems have had to work around this gap. Getting started […]
3 days ago 0 0 0 0
Yocto and PetaLinux: Achieving Full FIPS 140-3 Linux with meta-wolfssl wolfSSL has made it possible to have a streamlined Full FIPS Linux build for Yocto and PetaLinux. The updates to meta-wolfssl provide a quick, known-good path to FIPS 140-3 cryptography for both userland and kernel applications, ensuring your entire embedded Linux ecosystem is compliant. Unified Kernel and Userland Cryptography A primary focus of this release […]
3 days ago 0 0 0 0
wolfIP – Adds TLS 1.3, SSH, and MQTT Support for STM32H563 As the demand for secure embedded connectivity grows, the need for robust, lightweight protocols on bare-metal systems becomes critical. wolfSSL is proud to announce that wolfIP now includes comprehensive secure communication support for the STM32H563 (NUCLEO-H563ZI) board, bringing modern security standards to your bare-metal applications. This update introduces full integration with wolfSSL, wolfSSH, and wolfMQTT, […]
4 days ago 0 0 0 0
True Random vs. Pseudorandom Number Generation In the world of computing, “randomness” isn’t a one-size-fits-all concept. Whether you are developing a gaming app or securing a high-stakes cryptographic protocol, the type of Random Number Generator (RNG) you choose matters. The distinction boils down to one factor: reproducibility. Download wolfSSL → Pseudorandom Number Generators (PRNGs) A PRNG is a deterministic algorithm. It […]
4 days ago 0 0 0 0
FIPS-Compliant Tailscale Mesh VPN Powered by wolfSSL Earlier last year, we shared the integration of our FIPS-validated crypto engine, wolfCrypt, into WireGuard to create a project we call wolfGuard. We’re now extending this effort to Tailscale, the popular mesh VPN built on top of WireGuard. Getting started with wolfSSL? Download the latest libraries here and start exploring. Tailscale simplifies WireGuard deployment by […]
5 days ago 0 0 0 0
wolfIP 1.0.0 Released: Deterministic TCP/IP for Embedded and Safety-Critical Systems We are excited to announce the release of wolfIP 1.0.0, the first public release of wolfSSL’s lightweight TCP/IP stack for embedded, real-time, and safety-critical systems. wolfIP is built around a simple idea: networking behavior should be defined before runtime, not discovered during it. With no dynamic memory allocation, fixed socket tables, pre-allocated packet buffers, and […]
5 days ago 0 0 0 0
Advertisement
curl Roadmap 2026 with Daniel Stenberg Understand upcoming curl changes before they impact your builds, integrations, and security posture. Join us for an exclusive live webinar with Daniel Stenberg, founder and lead developer of curl, as he shares his vision for the future of one of the world’s most widely used open-source data transfer tools. Register Now: curl Roadmap 2026 with […]
6 days ago 0 0 0 0
wolfIP: Deterministic TCP/IP for Safety-Critical Embedded Systems Many TCP/IP stacks rely on dynamic memory allocation, background threads, and unpredictable resource usage, making them difficult to analyze, certify, and deploy in constrained embedded systems. Join us for the first official webinar introducing wolfIP, a compact and deterministic TCP/IP stack designed specifically for embedded, real-time, and safety-critical environments. Register now: wolfIP: Deterministic TCP/IP for […]
6 days ago 0 0 0 0
wolfSSH 1.4.22: Enhanced Security and Reliability Through User Feedback wolfSSH 1.4.22 is now available, featuring important security hardening and stability improvements driven by valuable feedback from our users. This release demonstrates our commitment to continuous improvement and responsive support, with key bug fixes that also led to expanded test coverage, making wolfSSH more robust than ever for embedded SSH, SFTP, and SCP deployments. User-Reported […]
1 week ago 0 0 0 0
wolfBoot adds DICE and Measured boot via PSA Initial Attestation Secure boot establishes authenticity (“this image is signed by a trusted key”). But many modern deployments also need attestation: a portable, verifiable way to prove what actually booted to a relying party: during onboarding, after updates, and throughout a device’s lifetime. That’s where DICE (Device Identifier Composition Engine) comes in. DICE composes a device identity […]
1 week ago 0 0 0 0
TLS 1.3 Brainpool Curve Support in wolfSSL As cryptographic standards and regulatory requirements continue to evolve, the ability to adopt modern security protocols without sacrificing compliance is increasingly important. TLS 1.3 plays a critical role in this evolution — not only as today’s baseline for secure communications but also as the foundation for the ongoing transition toward Post-Quantum Cryptography (PQC). With recent […]
1 week ago 0 0 0 0
Introducing wolfIP: a tiny, safe TCP/IP stack for embedded and safety critical systems If you have ever tried to drop a full networking stack into a deeply embedded target, you know the drill: memory budgets get tight, timing gets unpredictable, and dynamic allocation can turn certification efforts into a slog. wolfIP is our answer: a compact TCP/IP stack that favors determinism over surprise, and standard interfaces over complex […]
1 week ago 0 0 0 0
wolfSSL Inc. Announces wolfIP, a Tiny, Deterministic TCP/IP Stack for Embedded and Safety-Critical Systems wolfIP is a deterministic TCP/IP stack designed for embedded and safety-critical systems where memory usage, timing, and behavior must be defined before runtime. By eliminating dynamic allocation and fixing system resources up front, it enables predictable operation that supports verification and certification efforts. Edmonds, Washington – April 7, 2026 – wolfSSL Inc. today announced wolfIP, […]
1 week ago 0 0 0 0
wolfBoot Cipher and Hash Algorithm Benchmarks on STM32H5 About wolfBoot wolfBoot is a portable, OS-agnostic secure bootloader designed for embedded systems. It provides secure boot capabilities with support for a wide range of cryptographic signature algorithms, from traditional RSA and ECDSA to post-quantum algorithms like ML-DSA, LMS, and XMSS. wolfBoot is built on top of the wolfCrypt cryptography library and is designed to […]
1 week ago 0 0 0 0
Advertisement
Live Webinar: Designing Secure Satellite Systems with FIPS 140-3, CNSA 2.0, and PQC Satellites, rockets, and ground stations face unique cybersecurity challenges, from communication interception to firmware tampering. Protecting these systems requires lightweight, space-grade cryptography designed for long lifecycles and constrained embedded environments. Register now: Designing Secure Satellite Systems with FIPS 140-3, CNSA 2.0, and PQCDate: April 8 | 9 AM PT These challenges directly impact system design, […]
1 week ago 0 0 0 0
wolfTPM: Hardware SPI and TPM 2.0 Firmware Update Support for U-Boot Secure boot architectures require more than just the presence of a TPM; they require a high-performance communication interface and a mechanism for lifecycle management. wolfSSL has updated wolfTPM and U-Boot to support native Hardware SPI communication and direct TPM 2.0 firmware updates for the Raspberry Pi 4. These changes move away from generic software-based implementations, […]
2 weeks ago 0 0 0 0
Getting the Best Open Source Support from wolfSSL At wolfSSL, we love supporting the open source community. Our roots are in open source, and many of the projects that rely on wolfSSL, wolfCrypt, wolfSSH, wolfBoot, wolfTPM, and our other libraries are open source themselves. Whether you are integrating wolfSSL into a hobby project, contributing to a larger ecosystem, building a product on top […]
2 weeks ago 0 0 0 0
Preview
Secure Boot on AMD Versal with wolfBoot The AMD Versal™ Gen 1 VMK180 evaluation kit integrates Arm® Cortex®-A72 processors with programmable logic and AI engines in a single device. This article announces wolfBoot support on the VMK180, showing how a vendor-neutral secure bootloader can provide cryptographically verified boot and secure, updatable firmware for Versal-based systems. wolfBoot Features wolfBoot is a vendor-neutral, portable […]
2 weeks ago 0 0 0 0
Accelerating ML-DSA Key Generation with wolfSSL and CUDA With the formalization of ML-DSA for post-quantum usage, lattice-based cryptography introduces a significant compute challenge. Unlike traditional ECC or RSA, ML-DSA relies on complex polynomial math across hundreds of dimensions, creating a performance wall for high-volume systems. To address this compute issue, wolfSSL can utilize CUDA to accelerate these lattice operations, offloading the heavy math […]
2 weeks ago 0 0 0 0
Announcing wolfTPM Firmware TPM (fTPM) Support wolfSSL is excited to announce firmware TPM (fTPM) support in wolfTPM — a production-ready, open-source, embedded firmware TPM 2.0 implementation built on wolfCrypt. wolfTPM fTPM fills a critical gap in embedded security: teams that need software-based TPM services on MCUs and SoCs can now use an open-source implementation with commercial support, portable platform integration, and […]
2 weeks ago 0 0 0 0
wolfHSM with PQC: Preparing Hardware Security Modules for the Post-Quantum Era PQC is coming to automotive HSMs. Are your architectures ready? Join us for a technical deep dive into wolfHSM with PQC and how post-quantum algorithms impact embedded HSM design. Learn how to integrate PQC into existing architectures while managing constraints around memory, performance, and key storage. Register Now: wolfHSM with PQC: Preparing Hardware Security Modules […]
2 weeks ago 0 0 0 0
What wolfSSL supports for RISC-V Users Core RISC-V Support wolfSSL has no external dependencies and runs on nearly any RISC-V board using standard GNU toolchains. Download wolfSSL → Hardware Platforms Supported A few of the specific boards we currently support: Microchip PolarFire SoC (MPFS250) SiFive HiFive Unleashed (64-bit) SiFive HiFive1 (32-bit E31 RISC-V core at 320MHz with 4MB flash and 16KB […]
3 weeks ago 0 0 0 0
What Is the Difference Between HSM, TPM, Secure Enclave, and Secure Element or Hardware Root of Trust? HSMs, TPMs, Secure Enclaves, and Secure Elements are all dedicated security components that exist to service other devices. While at a high level they have similar security goals and intentions (e.g. private key isolation), they are not the same things, and they do have important differences. This blog post will guide the reader through what […]
3 weeks ago 0 0 0 0
Advertisement
Drop-In FIPS Compliance for Linux: OpenSSL, NSS, GnuTLS, libgcrypt, and Kernel Do you have a Linux appliance, embedded system, container image, VM image, or distribution that must meet FIPS 140 requirements, or interoperate with systems operating under FIPS restrictions? wolfSSL provides FIPS-aligned cryptographic integrations across the Linux stack, including kernel-level updates and userspace cryptography platforms such as OpenSSL, Mozilla NSS, GnuTLS, and libgcrypt. These integrations replace […]
3 weeks ago 0 0 0 0
Announcing wolfMQTT v2.0.0: A Lightweight Built-In MQTT Broker We are excited to announce the release of wolfMQTT v2.0.0, a major milestone that introduces a brand-new lightweight MQTT broker as its headline feature. This release represents a significant evolution of the wolfMQTT library, expanding it from a client-only library into a complete MQTT solution for embedded systems, IoT gateways, and edge computing applications. Lightweight […]
3 weeks ago 0 1 0 0
PQC in the linux kernel The linux kernel’s ctcrypto subsystem is powerful and flexible, containing the kernel’s internal implementations for familiar algorithms such as RSA and ECDSA, along with an API framework that allows registering cryptographic providers for other crypto-consuming modules. A quick glance at output from cat /proc/crypto shows a rich set of crypto drivers exposed, ranging from the […]
3 weeks ago 0 0 0 0
wolfSSL 5.9.0 Released We are excited to announce that wolfSSL version 5.9.0 is now available! wolfSSL 5.9.0 brings a strong focus on advancing post-quantum cryptography support, an expanded Rust wrapper, new hardware platform integrations, and a number of security vulnerability fixes. Security Fixes wolfSSL 5.9.0 includes fixes for 15 security vulnerabilities spanning a range of severity levels, covering […]
3 weeks ago 0 0 0 0
Introducing wolfIP: Deterministic TCP/IP for Safety-Critical Embedded Systems Many TCP/IP stacks rely on dynamic memory allocation, background threads, and unpredictable resource usage, making them difficult to analyze, certify, and deploy in constrained embedded systems. Join us for the first official webinar introducing wolfIP, a compact and deterministic TCP/IP stack designed specifically for embedded, real-time, and safety-critical environments. Register now: Introducing wolfIP: Deterministic TCP/IP […]
3 weeks ago 0 0 0 0