The wolfSSL team is announcing the deprecation of the ARC4 cipher. This decision is part of our ongoing effort to simplify the wolfSSL codebase and focus on supporting the most secure and widely-used ciphers.
The ARC4 cipher has been shown to have significant weaknesses, including:
- Key biases and correlations
- Plaintext recovery attacks
- Increased risk of data breaches
Removing ARC4 will allow us to reduce the complexity of our codebase and devote more resources to maintaining and improving our supported ciphers.
Recommendations:
- Begin transitioning away from ARC4 and towards more secure ciphers, such as AES or ChaCha20.
- Consult the wolfSSL documentation and support resources for guidance on migrating away from ARC4.
We will provide additional information on the removal timeline in the future. If you have any questions or concerns about this deprecation, please don’t hesitate to reach out to the wolfSSL support team.
If you have questions about any of the above, please contact us at facts@wolfSSL.com or +1 425 245 8247.
Download wolfSSL Now