RECENT BLOG NEWS

So, what’s new at wolfSSL? Take a look below to check out the most recent news, or sign up to receive weekly email notifications containing the latest news from wolfSSL. wolfSSL also has a support-specific blog page dedicated to answering some of the more commonly received support questions.

wolfSSL expands capabilities with ISO 26262 documentation for ASIL compliance

If you’re developing safety-critical automotive systems, chances are you’ve encountered the stringent requirements of ISO 26262, the standard governing functional safety for road vehicles. Achieving Automotive Safety Integrity Level (ASIL) compliance can be a daunting process, but wolfSSL has taken a significant step to support developers: the library now includes ISO 26262 documentation to aid in certification.

This development marks a major milestone for teams integrating wolfSSL to build secure and safe automotive systems. Here’s why.

What is ISO 26262 and ASIL?

ISO 26262 defines a structured approach for ensuring safety in automotive systems, from design to decommissioning. It includes ASIL levels (A-D) to assess risk, with ASIL D representing the highest safety requirements.

For cryptographic libraries like wolfSSL, demonstrating compliance requires detailed documentation, including failure mode analysis, software development lifecycle processes, and verification evidence.

How Does wolfSSL’s ISO 26262 Documentation Help?

With the provided ISO 26262 documentation, wolfSSL assists customers during the compliance process for automotive developers by offering:

  1. Pre-validated Artifacts: Access to the documentation allows developers to directly reference wolfSSL’s safety processes and testing in their safety case.
  2. Reduced Certification Time: By leveraging wolfSSL’s compliance resources, developers can focus on their application logic without reinventing the wheel for cryptographic layers.
  3. Confidence in Security and Safety: The inclusion of ISO 26262 ensures that wolfSSL adheres to rigorous safety and quality standards, providing a secure foundation for automotive systems.

Use Cases for WolfSSL in Automotive

WolfSSL’s compact size and high performance make it an excellent fit for embedded systems like:

  • Secure Vehicle-to-Everything (V2X) communication
  • In-car infotainment systems
  • Advanced driver-assistance systems (ADAS)
  • Electric vehicle (EV) battery management systems

Taking the Next Step

Whether you’re retrofitting cryptography into an existing system or building a new solution from the ground up, wolfSSL’s new ISO 26262 documentation reduces the friction for compliance while delivering the performance and security you trust.

Whether you’re integrating cryptography into an existing system or developing a new solution, wolfSSL’s ISO 26262 documentation simplifies the path to compliance, ensuring that your project can meet functional safety standards while maintaining robust performance and security.

Get in touch with the team

Contact us at facts@wolfSSL.com or +1 425 245 8247 to learn more about ISO26262 compliance, or if you are interested to hear more about our support for safety certifications.

Download wolfSSL Now

wolfSSL Conforms to MISRA-C Guidelines

The team at wolfSSL has taken the core functionality of the wolfSSL embedded SSL/TLS library to the next level and implemented changes to conform to the Required and Mandatory rules from the MISRA-C guidelines.

Currently a subset of the wolfCrypt modules are already covered for compliance, including detailed deviation documents (sha256.c, aes.c (CBC/GCM), rsa.c, random.c, sp_c64.c). Let us know if your project requires other files and we can target them while expanding coverage.

If you have questions about any of the above, please contact us at facts@wolfSSL.com or +1 425 245 8247.

Download wolfSSL Now

wolfCLU: Support for XMSS/XMSS^MT

The wolfSSL team would like to announce support for XMSS (eXtended Merkle Signature Scheme) and XMSS^MT (Multi-Tree XMSS) post-quantum cryptographic signature schemes to wolfCLU. The implementation includes key generation, signing, and verification capabilities.

Note that this feature includes best-effort state management for stateful private keys. We have done our best to implement state management, but without knowing the implementation of the file system, we cannot guarantee secure storage of the state.

This addition provides wolfCLU users with access to quantum-resistant signature schemes, particularly important for long-term security requirements. The implementation follows the stateful signature paradigm required by XMSS/XMSS^MT while maintaining usability through the familiar wolfCLU interface.

If you have questions about any of the above, please contact us at facts@wolfSSL.com or call us at +1 425 245 8247.

Download wolfSSL Now

wolfSSL Unveils Post Quantum Cryptography and Security Solutions at Embedded World 2025

EDMONDS, Wash., March 3, 2025 /PRNewswire-PRWeb/ — wolfSSL Inc., a global leader in cryptography and network security, is excited to announce its participation in Embedded World 2025, taking place March 11–13 in Nuremberg, Germany. Attendees can visit Booth #4-201A to explore wolfSSL’s latest advancements in embedded security.

“We are thrilled to showcase our latest innovations at Embedded World 2025,” said Larry Stefonic, CEO of wolfSSL Inc. “As a leader in cryptography and network security, we remain committed to equipping developers with the tools they need to build secure, resilient embedded systems. We look forward to engaging with attendees and demonstrating how our solutions address the ever-evolving cybersecurity challenges across industries worldwide.”

Key Highlights from wolfSSL at Embedded World 2025:

  1. wolfSSL support for Post Quantum

    wolfSSL’s post-quantum cryptographic solutions are designed to work efficiently and seamlessly with embedded systems, offering robust security, CAVP certification, minimal resource consumption, and bare metal support. They enable embedded devices to remain secure as we transition into the quantum computing era, all while ensuring compatibility with current technologies. We enable our users to achieve CNSA 2.0 support quickly and efficiently.

    Integration with wolfCrypt

    • wolfSSL now includes support for post-quantum cryptographic algorithms in TLS, enabling embedded systems to use PQC schemes alongside traditional algorithms (like RSA and ECC). This means developers can add quantum-resistant algorithms to their applications without completely overhauling existing cryptographic systems.
    • Supported algorithms, such as ML-KEM (for public-key encryption) and ML-DSA (for digital signatures), are implemented to offer practical security in resource-constrained environments, maximizing security and performance.

    Lightweight and Optimized for Embedded Platforms

    • WolfSSL focuses on optimizing its libraries for embedded environments. This includes ensuring that the PQC algorithms are lightweight enough to run on microcontrollers and other resource-limited devices. WolfSSL makes these solutions highly configurable to cater to different hardware capabilities, ensuring efficient use of memory and CPU power.

    Hybrid Cryptography Support

    • WolfSSL supports hybrid cryptography, meaning both traditional and post-quantum algorithms can be used together. This approach allows embedded devices to maintain backward compatibility with legacy systems while gradually transitioning to quantum-resistant algorithms. For instance, a system could use classical algorithms for today’s security and PQC algorithms for future-proofing.

    Security Agility for Embedded Applications

    • Post-quantum algorithms in wolfSSL allow developers to choose the right security protocols based on their embedded device’s needs. As quantum computing advances, these algorithms can be updated or replaced without disrupting the system, ensuring long-term protection. This adaptability is crucial for embedded devices with extended lifecycles, like automotive or industrial IoT systems.

    Cryptographic Acceleration

    • Many embedded systems use hardware acceleration for cryptographic operations to improve performance. WolfSSL’s post-quantum solutions can be integrated with hardware-based accelerators, ensuring the PQC algorithms can perform efficiently, even in constrained environments.

    Compliance and Certification

    • For embedded systems that need to meet specific compliance standards (e.g., ISO 26262 for automotive, DO-178 for Aviation or FIPS 140-3, FIPS 203/204 and CNSA 2.0 for government applications), wolfSSL’s post-quantum cryptography solutions can be used in conjunction with existing certified cryptographic modules, maintaining high security standards while enabling forward-looking protection against quantum attacks.
  2. Release of wolfHSM 1.1.0

    wolfHSM provides a portable, open-source abstraction for hardware cryptography, enabling secure key management, non-volatile memory protection, and isolated secure processing. It is primarily used with Automotive HSM hardware

    Features include:

    • Seamless integration with Infineon Aurix Tricore TC3XX for enhanced automotive security.
    • Support for China’s mandated cryptographic algorithms (SM2, SM3, SM4).
    • Post-quantum cryptography (Kyber, LMS, XMSS) for future-proof security.
    • Automatic utilization of available hardware cryptographic processing to optimize performance.
  3. Release of wolfBoot 2.4.0: Enhanced Secure Bootloader with wolfHSM Integration

    The latest version of wolfBoot delivers expanded platform support, new features, and significant performance enhancements, reinforcing its role as the premier secure boot solution.

    Key Enhancements:

    • Integration with wolfHSM – Enables secure key management, seamless public key revocation, and post-quantum ML-DSA support.
    • Enhanced Delta Updates – Improved base image detection for more reliable firmware updates.
    • Expanded Hardware Support – Now compatible with NXP Layerscape LS1028A, with updates for ARMv7-M/ARMv8-M, x86-FSP, Xilinx UltraScale+, and Intel TigerLake.
    • Performance Boost – New wolfCrypt assembly optimizations significantly reduce boot times across all ARM devices.
  4. Post-Quantum Cryptography with wolfHSM

    wolfSSL’s wolfHSM now supports post-quantum cryptographic algorithms through wolfCrypt, ensuring long-term security against emerging quantum threats.

    • ML-KEM – A key encapsulation mechanism for secure key establishment.
    • ML-DSA – A post-quantum signature scheme, offering a secure alternative to ECDSA and RSA.
    • LMS & XMSS – Stateful hash-based signature schemes ideal for firmware and software signing, with wolfHSM ensuring proper state management.

    By integrating post-quantum algorithms, wolfSSL empowers developers with cutting-edge cryptography without requiring deep expertise in post-quantum security.

  5. Live Demonstrations

    Attendees can experience wolfSSL’s security solutions firsthand through four live demos:

    • Demo 1: NXP / Infineon – TLS, MQTT, SSH, TPM, and wolfBoot on NXP FRDM-MCX platforms.
    • Demo 2: STMicro – Cryptographic benchmarks on ST32MP257F with OpenSTLinux.
    • Demo 3: Intel / Curtiss-Wright / SysGo – Secure boot with Curtiss-Wright’s Intel RaptorLake VPX Card and SysGo PikeOS.
    • Demo 4: Winbond – Post-quantum LMS firmware signing using Winbond W77Q Secure Flash Memory.

Visit wolfSSL at Booth #4-201A to see these technologies in action. For more details, visit wolfssl.com.

About wolfSSL Inc.

wolfSSL is a leading provider of lightweight, embedded security solutions, delivering high-performance cryptography for government, automotive, avionics, and industrial applications. wolfSSL’s products comply with the latest industry standards, including TLS 1.3, DTLS 1.3, FIPS 140-2/3, Common Criteria, RTCA DO-178C Level A, and MISRA-C.

With a codebase up to 20x smaller than OpenSSL, a simple API, and an OpenSSL compatibility layer, wolfSSL provides unmatched efficiency and security. As an open-source provider, wolfSSL prioritizes transparency, offering customers the ability to inspect its cryptographic implementations.

Backed by the industry’s largest team of dedicated cryptographic engineers, wolfSSL delivers the fastest vulnerability patch times (<36 hours) and offers 24/7 commercial support.

If you have questions about any of the above, please contact us at facts@wolfSSL.com or +1 425 245 8247.

Download wolfSSL Now

Live Webinar: curl Roadmap 2025 with Daniel Stenberg

Join us for an exclusive webinar, curl Roadmap 2025 with Daniel Stenberg, the founder and lead developer of curl. Get firsthand insights into the future of one of the most widely used open-source tools for data transfer.

Register now: curl Roadmap 2025 with Daniel Stenberg
Date: March 6th | 10 AM PT

curl powers billions of devices and applications, enabling secure and efficient data transfers over HTTP, HTTPS, FTP, SFTP, and more. As technology evolves, so does curl. In this live webinar, Daniel will share:

  • The vision for curl in 2025
  • Key updates, improvements, and upcoming features
  • Adapting to new challenges and embracing what the community brings

Don’t miss this opportunity to hear directly from Daniel Stenberg about the future of curl. Register now to secure your spot!

As always, our webinar will include Q&A throughout. If you have questions about any of the above, please contact us at facts@wolfSSL.com or +1 425 245 8247.

Download wolfSSL Now

wolfSSL at Embedded World 2025: Pioneering Advanced Cryptographic Solutions

Secure your Embedded Projects with wolfSSL, the Leader in Advanced Cryptographic Protocols

wolfSSL is returning to the Embedded World Exposition and Conference in 2025, bringing the best-tested cryptography and industry-leading security solutions for embedded systems.

Join us March 11th – 13th in Nuremberg, Germany. Visit Hall 4, Booth #4-201a to explore how wolfSSL’s advanced cryptographic protocols and open-source cybersecurity solutions can safeguard your embedded projects.

Schedule a one-on-one meeting with our cryptography experts – email us at facts@wolfssl.com to book a meeting.

With over 5 billion secured connections, wolfSSL continues to set the standard for embedded security. wolfSSL provides FIPS 140-3 validated certificate #4718 to safeguard embedded projects, and integrates post-quantum cryptography with wolfCrypt, offering ML-KEM and ML-DSA. Backed by the largest cryptography-focused engineering team, our solutions ensure seamless integration, maximum efficiency, and future-proof security across industries. Get started today: wolfssl.com/download.

Live Demos at Embedded World 2025

Join us at Hall 4, Booth #4-201a, and partner booths to see live demonstrations showcasing secure boot, post-quantum cryptography, TLS acceleration, and more.

  • Demo 1: Launching Safe and Secure Systems with Intel, Curtiss Wright, wolfSSL and SYSGOLocation: Hall 4, Booth #4-201aSecure boot is essential for mission-critical systems. This demo highlights wolfBoot integrated with wolfCrypt, running on Curtiss-Wright’s VPX3-1262 SBC with 13th Gen Intel Core i7 and SYSGO PikeOS RTOS. See how DO-178C DAL-A certifiable wolfBoot and wolfCrypt protects avionics systems.
  • Demo 2: wolfSSL and NXP / InfineonLocation: Hall 4, Booth #4-201aPower up your embedded security with wolfSSL (TLS), wolfMQTT, wolfSSH, and wolfTPM on NXP FRDM-MCXN947 (Cortex-M33, 150MHz) with Infineon SLB9673 TPM 2.0, ensuring secure communication and authentication. Also, explore wolfBoot on NXP FRDM-MCXW71, designed for trusted firmware updates in resource-constrained environments.
  • Demo 3: wolfSSL and STLocation: Hall 4, Booth #4-201aOptimize security without compromising performance. Watch wolfCrypt and wolfSSL TLS benchmarks on ST32MP257F (Dual Cortex-A35 1.5GHz + Cortex-M33 400MHz) running OpenSTLinux. This demo demonstrates how wolfSSL’s cryptographic library accelerates encryption speed, reduces resource consumption, and ensures ultra-low latency for TLS handshakes.
  • Demo 4: wolfSSL and WinbondLocation: Hall 4A, Booth #4A-635Future-proof your firmware security with wolfCrypt Post-Quantum LMS. This demo features Winbond W77Q Secure Flash on Raspberry Pi Zero over SPI, demonstrating quantum-resistant firmware updates to protect devices from emerging cyber threats.

Why Choose wolfSSL for Embedded Security?

  • Post-Quantum Support: wolfSSL supports post-quantum cryptography solutions, including ML-KEM (Kyber) and ML-DSA (Dilithium), enabling long-term data protection (harvest now, decrypt later) and compliance with the CNSA 2.0 timeline.
  • Lightweight and Fast: Written in C, wolfSSL boasts a compact footprint, up to 20 times smaller than OpenSSL, minimizing memory usage and maximizing performance on even the most resource-constrained microcontrollers and processors. Integrated robust security into your embedded systems without sacrificing functionality or performance.
  • Industry Leading TLS 1.3 and DTLS 1.3 Support: As the first commercial implementation of TLS 1.3, we offer the most up-to-date security protocols, keeping your data secure with the latest standards.
  • Comprehensive Hardware Integration: wolfSSL supports a wide range of hardware cryptography schemes, including Intel AES-NI, ARMv8, and various secure elements like NXP SE050 and Microchip ATECC, providing enhanced security and performance. Check out the every hardware cryptography scheme wolfSSL has ever enabled.
  • Rigorous Testing and Certification: Our solutions are best-tested and come with incomparable certifications, including FIPS 140-3 validated certificate (#4718), ensuring they meet stringent security standards.
  • Dedicated Support: We offer 24/7 support from our team of engineers, ensuring you receive immediate assistance whenever you need it.

Connect with wolfSSL at Embedded World 2025

Don’t miss the chance to see wolfSSL in action! Visit us at Hall 4 Booth #4-201a to explore our cutting-edge cryptographic solutions and live demos. Want a personalized discussion? Email us at facts@wolfssl.com to schedule a one-on-one meeting with our experts. See you in Nuremberg!

If you have questions about any of the above, please contact us at facts@wolfSSL.com or call us at +1 425 245 8247.

Download wolfSSL Now

Fix for change to OBJ sn2nid behavior in wolfCLU

This PR updates wolfCLU to properly handle X509 name parsing following changes in wolfSSL’s OBJ_sn2nid function behavior. The changes focus on how Distinguished Name (DN) components are processed when creating X509 certificates.

These changes ensure wolfCLU properly handles X509 name components when interfacing with wolfSSL’s updated OBJ_sn2nid implementation.

Users working with X509 certificates through wolfCLU will benefit from more reliable DN parsing, particularly when using our OpenSSL compatibility layer. The changes maintain backward compatibility while supporting proper object identifier handling.

If you have questions about any of the above, please contact us at facts@wolfSSL.com or call us at +1 425 245 8247.

Download wolfSSL Now

Our Post-Quantum Value Proposition

Research-focused cryptography startups deserve a lot of credit for the innovative work they do. They enrich the community and introduce solutions that may become crucial in the future. But their expertise is largely theoretical and academic, not practical and customer-aligned. wolfSSL, in contrast, is staffed by dedicated engineers with decades of experience delivering production quality solutions for critical infrastructure, crafting performant and portable code, often on short notice, for dozens of commercially significant architectures.

Given these hard-won advantages at wolfSSL, some cryptography providers have tried to differentiate themselves with custom hardware, promising a performance boost. Let’s test that proposition with a look at performance on lattice cryptography. The software implementation we’ll show is wolfSSL software production release 5.7.6, throughput per core on a commodity high performance CPU, in this case an AMD 7960X. The hardware-accelerated implementation we’ll show is PQShield’s PQPerform-Lattice, in a pre-production realization on Xilinx Zynq UltraScale+ at 322 MHz (see https://doi.org/10.1145/3689939.3695785).

Algorithm key operation ops/sec cycles/op ops/sec cycles/op
size wolfSSL wolfSSL PQShield PQShield
KYBER512 128 key gen 422907 9955.0 140000 2300
KYBER512 128 encap 231528 18184.5 100625 3200
KYBER512 128 decap 230252 18225.0 68511 4700

Even when application-specific proprietary silicon has a performance advantage–which PQShield’s pre-production FPGA realization does not–it complicates platform design and production timelines, introduces supply-chain vulnerabilities, increases BoM expenses, and complicates parallelization. And crucially, it restricts crypto-agility, given hardware resources that are specific to a narrow class of cryptographic algorithm. This matters. It is widely acknowledged that Kyber/ML-KEM is based on a fairly new and under-studied body of mathematics, and further investigation may yet uncover a fatal flaw in this, or any of the other novel algorithms working their way through the standards-making process.

wolfSSL demonstrates superior performance with an open source software solution, without tying your design to a particular class of cryptographic algorithm. Indeed, our latest software implementation of ML-KEM is even faster than pre-standardization Kyber, attaining well over 300k encapsulation and decapsulation ops/s per core on the CPU shown above.

When you work with wolfSSL, your priorities become our priorities. We have always focused our resources on development, guided and enabled by our proud history of organic growth and customer-centric philosophy.

We provide the best tested code, worldwide 24×7 technical support that is second to none, and on-site interactions to ensure your goals are met. Our technical prowess and decades of experience let us operate across the whole spectrum of runtimes, from bare metal microcontrollers to data center big iron, with hand-crafted assembly optimizations fully leveraging vector instruction extensions.

Beyond the technical dimension, the professionals at wolfSSL focus on making sure you fully understand your options for licensing, support, and consulting, tailoring plans for your specific requirements and preferences. We draw up NDAs, SOWs and legal contracts so that you as a business have everything you need to secure your operational necessities.

Our team will see your project through, not only to delivery, but for the entire lifecycle after delivery. We are your reliable partner through the entire process, laser-focused on delivered results. This is what we do, and we do it better than anyone. This makes wolfSSL your ideal partner as you embark on the transition to quantum-resistant cryptography.

If you have questions about any of the above, please contact us at facts@wolfssl.com or +1 425 245 8247.

Download wolfSSL Now

curl Distro Discussion 2025 – Save The Date

Join the second annual curl Distro Discussion on April 10th at 3 PM UTC (5 PM CEST). This online event brings together Linux and BSD distributions, OS maintainers, and the curl community for an in-depth two-hour conference. The event is free and open to anyone interested in improving curl’s integration within operating systems and package distributions.

Join us: curl Distro Discussion 2025
Date: April 10th | 3 PM UTC (5 PM CEST)

This is a unique opportunity for curl developers, maintainers, and distributors to discuss important aspects of curl deployment across various operating systems. Our goal is to make curl more efficient and secure within distributions.

Key discussion topics include:

  • Enhancing curl’s build system, third-party library, and documentation for distributors
  • Strategies to streamline security advisories and patch management
  • Discussion on HTTP/3, long-term support, and TLS advancements
  • Exploring Post-Quantum Cryptography in curl
  • The future of wcurl and trurl
    And more…

Feel free to add your own proposed discussion topics and sign up as an intended participant. Mark your calendar for April 10th at 3 PM UTC (5 PM CEST) and be part of shaping curl’s future in distributions and secure networking.

Check out the details of curl Distro Discussion 2025, and share this invitation with others in the open-source and security communities to help spread the word and ensure the right people are invited.

If you have questions about any of the above, please contact us at facts@wolfSSL.com or call us at +1 425 245 8247.

Download wolfSSL Now

wolfSSL Enhances DTLS with Easier Connection ID Handling and Stateless Support

wolfSSL is continuously improving its support for DTLS (Datagram Transport Layer Security) to make it easier for developers to handle connection IDs and implement stateless DTLS services. In this blog post, we’ll explore the new APIs introduced in wolfSSL 5.7.6 that simplify these tasks.

DTLS is a variant of TLS designed for datagram-based transports like UDP. It’s widely used in IoT and real-time applications where packet loss and reordering are common. Connection IDs allow to tag each connection so that they can be maintained despite network changes, reducing rehandshake frequency and enhancing security with features like encrypted record types and padding for privacy. The wolfSSL stack allows the server to establish new connections in a stateless manner by not allocating any extra resources until the client can prove that they can reply to server packets. Managing CIDs and stateless operations can be challenging, but wolfSSL has introduced new features to streamline this process.

Demultiplexing DTLS messages for a server involves distinguishing between multiple client connections using a single socket. When data arrives on the socket, the server reads the packet and extracts the source IP address, port, and the connection ID. This information is then used to search through a list of active connections, matching the incoming packet’s source details with existing connections. The matching is done either based on the source address of the received datagram or on the CID found in the message itself. If a match is found, the data is processed by that connection. If no match is found, it attempts to establish a new connection. This method ensures each packet is correctly routed to its respective connection, allowing multiple clients to communicate over a single socket efficiently without dropping any packet.

wolfDTLS_accept_stateless

This function allows accepting DTLS connections in a stateless manner. It’s designed to use a single WOLFSSL object to listen to all new connections and indicate to the user when the WOLFSSL object has entered stateful handling and should no longer be used for new connections.

Example:

WOLFSSL* ssl;

do {
rc = wolfDTLS_accept_stateless(ssl);
if (rc == WOLFSSL_FATAL_ERROR) {
        	/* re-allocate the ssl object with wolfSSL_free() and wolfSSL_new() */
	}
} while (rc != WOLFSSL_SUCCESS);
rc = wolfSSL_accept(ssl);
if (rc != SSL_SUCCESS) {
	/* Handle error */
}

wolfSSL_inject

The `wolfSSL_inject` function allows you to inject application data directly into the WOLFSSL object, bypassing the usual IO calls. This is useful when data needs to be read from a single place and demultiplexed into multiple connections. The caller should then call wolfSSL_read() to extract the plaintext data from the WOLFSSL object.

Example:

int rc;
WOLFSSL* ssl;
byte data[2000];

sz = recv(fd, data, sizeof(data), 0);
if (sz <= 0) {
	/* Handle error */
}

/* Inject received data */
rc = wolfSSL_inject(ssl, data, sz);
if (rc != WOLFSSL_SUCCESS) {
	/* Handle error */
}

wolfSSL_dtls_set_pending_peer

This function is introduced to handle the peer address when using Connection IDs. It sets a pending peer that will be upgraded to a regular peer when the next record is successfully de-protected. This should be used with Connection ID's to allow seamless and safe transition to a new peer address. This function can be called for every incoming datagram or when an address change is detected.

Example:

WOLFSSL* ssl;
sockaddr_in addr;

rc = wolfSSL_dtls_set_pending_peer(ssl, &addr, sizeof(addr));
if (rc != WOLFSSL_SUCCESS) {
	/* Handle error */
}

wolfSSL_is_stateful

This function checks if the current SSL session is stateful. This can be useful for determining whether the listening WOLFSSL object is still waiting to be associated with a single peer or if it has already progressed to handling a single connection.

Example:

WOLFSSL* ssl;
byte isStateful;

rc = wolfSSL_accept(ssl);
/* rc might indicate failure when using non-blocking sockets */

if (wolfSSL_is_stateful(ssl)) {
	/* Session is stateful */
} else {
	/* Session is stateless */
}

wolfSSL_dtls_cid_parse

This function parses a CID from a DTLS message. This is useful for extracting and handling connection IDs in your application.

Example:

WOLFSSL* ssl;
/* DTLS 1.2 app data containing CID */
byte cid12[] =
"\x19\xfe\xfd\x00\x01\x00\x00\x00\x00\x00\x01\x77\xa3\x79\x34\xb3" \
"\xf1\x1f\x34\x00\x1f\xdb\x8c\x28\x25\x9f\xe1\x02\x26\x77\x1c\x3a" \
"\x50\x1b\x50\x99\xd0\xb5\x20\xd8\x2c\x2e\xaa\x36\x36\xe0\xb7\xb7" \
"\xf7\x7d\xff\xb0";
size_t cid_len = 8;

const unsigned char* cid = wolfSSL_dtls_cid_parse(cid12, sizeof(cid12), cid_len);
if (cid == NULL) {
	/* Handle missing CID */
}

wolfSSL_SSLDisableRead and wolfSSL_SSLEnableRead

These functions allow you to control the reading of data from the IO layer. `wolfSSL_SSLDisableRead` disables read operations, while `wolfSSL_SSLEnableRead` re-enables them.

Example:

WOLFSSL* ssl;

/* Disable reading */
wolfSSL_SSLDisableRead(ssl);

/* Perform some operations */

/* Re-enable reading */
wolfSSL_SSLEnableRead(ssl);

These new APIs in wolfSSL make handling DTLS connection IDs and implementing stateless services easier and more efficient. By providing direct data injection, pending peer management, state checks, and read control, wolfSSL continues to enhance its support for secure datagram-based communications. For more information about new and existing API visit our manual and take a look at our examples.

If you have questions about any of the above, please contact us at facts@wolfSSL.com or +1 425 245 8247.

Download wolfSSL Now

wolfSSL at Embedded World 2025: Pioneering Advanced Cryptographic Solutions

Secure your Embedded Projects with wolfSSL, the Leader in Advanced Cryptographic Protocols

wolfSSL is returning to the Embedded World Exposition and Conference in 2025, bringing the best-tested cryptography and industry-leading security solutions for embedded systems.

Join us March 11th – 13th in Nuremberg, Germany. Visit Hall 4, Booth #4-201a to explore how wolfSSL’s advanced cryptographic protocols and open-source cybersecurity solutions can safeguard your embedded projects.

Schedule a one-on-one meeting with our cryptography experts – email us at facts@wolfssl.com to book a meeting.

With over 5 billion secured connections, wolfSSL continues to set the standard for embedded security. Backed by the largest cryptography-focused engineering team, our solutions ensure seamless integration, maximum efficiency, and future-proof security across industries. Get started today: wolfssl.com/download.

Live Demos at Embedded World 2025

Join us at Hall 4, Booth #4-201a, and partner booths to see live demonstrations showcasing secure boot, post-quantum cryptography, TLS acceleration, and more.

  • Demo 1: Launching Safe and Secure Systems with Intel, Curtiss Wright, wolfSSL and SYSGOLocation: Hall 4, Booth #4-201a

    Secure boot is essential for mission-critical systems. This demo highlights wolfBoot integrated with wolfCrypt, running on Curtiss-Wright’s VPX3-1262 SBC with 13th Gen Intel Core i7 and SYSGO PikeOS RTOS. See how DO-178C DAL-A certifiable wolfBoot and wolfCrypt protects avionics systems.

  • Demo 2: wolfSSL and NXP / InfineonLocation: Hall 4, Booth #4-201a

    Power up your embedded security with wolfSSL (TLS), wolfMQTT, wolfSSH, and wolfTPM on NXP FRDM-MCXN947 (Cortex-M33, 150MHz) with Infineon SLB9673 TPM 2.0, ensuring secure communication and authentication. Also, explore wolfBoot on NXP FRDM-MCXW71, designed for trusted firmware updates in resource-constrained environments.

  • Demo 3: wolfSSL and STLocation: Hall 4, Booth #4-201a

    Optimize security without compromising performance. Watch wolfCrypt and wolfSSL TLS benchmarks on ST32MP257F (Dual Cortex-A35 1.5GHz + Cortex-M33 400MHz) running OpenSTLinux. This demo demonstrates how wolfSSL’s cryptographic library accelerates encryption speed, reduces resource consumption, and ensures ultra-low latency for TLS handshakes.

  • Demo 4: wolfSSL and WinbondLocation: Hall 4A, Booth #4A-635

    Future-proof your firmware security with wolfCrypt Post-Quantum LMS. This demo features Winbond W77Q Secure Flash on Raspberry Pi Zero over SPI, demonstrating quantum-resistant firmware updates to protect devices from emerging cyber threats.

Why Choose wolfSSL for Embedded Security?

  • Lightweight and Fast: Written in C, wolfSSL boasts a compact footprint, up to 20 times smaller than OpenSSL, minimizing memory usage and maximizing performance on even the most resource-constrained microcontrollers and processors. Integrated robust security into your embedded systems without sacrificing functionality or performance.
  • Industry Leading TLS 1.3 and DTLS 1.3 Support: As the first commercial implementation of TLS 1.3, we offer the most up-to-date security protocols, keeping your data secure with the latest standards.
  • Comprehensive Hardware Integration: wolfSSL supports a wide range of hardware cryptography schemes, including Intel AES-NI, ARMv8, and various secure elements like NXP SE050 and Microchip ATECC, providing enhanced security and performance. Check out the every hardware cryptography scheme wolfSSL has ever enabled.
  • Rigorous Testing and Certification: Our solutions are best-tested and come with incomparable certifications, including FIPS 140-3 validated certificate (#4718), ensuring they meet stringent security standards.
  • Dedicated Support: We offer 24/7 support from our team of engineers, ensuring you receive immediate assistance whenever you need it.

Connect with wolfSSL at Embedded World 2025

Don’t miss the chance to see wolfSSL in action! Visit us at Hall 4 Booth #4-201a to explore our cutting-edge cryptographic solutions and live demos. Want a personalized discussion? Email us at facts@wolfssl.com to schedule a one-on-one meeting with our experts. See you in Nuremberg!

If you have questions about any of the above, please contact us at facts@wolfSSL.com or call us at +1 425 245 8247.

Download wolfSSL Now

Posts navigation

1 2 3 4 194 195 196

Weekly updates

Archives