RECENT BLOG NEWS

In today’s fast-paced world, staying ahead of the curve isn’t just advantageous—it’s essential. Continuous learning is key to personal and professional growth. At wolfSSL, we recognize this need, which is why we host webinars featuring tailored training courses for various skill levels. Our software engineers guide you through the fundamentals to advanced features, empowering you to master wolfSSL, DTLS 1.3, and wolfCrypt FIPS.

wolfSSL 2 Parts Training

Elevate your cybersecurity expertise with wolfSSL. Join wolfSSL Engineering Manager Chris Conlon for comprehensive sessions tailored to both novices and seasoned professionals. Gain invaluable insights into cybersecurity, covering topics such as network security protocols, SSL/TLS protocol and basic library usage, debugging wolfSSL, DTLS usage, wolfSSL PSK usage, and much more. Buckle up and master cybersecurity with wolfSSL training.

• Watch wolfSSL Training Part 1
• Explore wolfSSL Part 2

DTLS 1.3 Training

This session is your gateway to mastering DTLS 1.3, a groundbreaking protocol adopted by wolfSSL. As pioneers in TLS technology, wolfSSL takes pride in being the first library to implement DTLS 1.3. Join us for the DTLS 1.3 training session led by wolfSSL Software Developer, Marco, to delve into fundamental concepts of DTLS and engage in hands-on exploration of DTLS in UDP applications using wolfSSL DTLS 1.3. Take advantage of this opportunity to deepen your understanding and expertise in DTLS technology.

• Master DTLS 1.3

FIPS Training

Our FIPS Training offers an exciting opportunity to deepen your understanding of FIPS and gain valuable insights into its implementation. As leaders in embedded FIPS certificates, wolfSSL provides unparalleled expertise. Senior Software Engineer Kaleb Himes will guide you through public resources for the FIPS module, the security policy, locating and using the user guide or cryptographic officer manual, and best security practices at the application level. Expand your knowledge and familiarity with FIPS through this exclusive opportunity.

• Deep dive into FIPS

Getting Started Series

In addition to our training videos, we also offer the ‘Getting Started’ series. Each video serves as a manual, providing step-by-step guidance to make your experience seamless and efficient. Explore our comprehensive instructional video series:

• Getting Started with wolfSSL
• Getting Started with wolfSSH
• Getting Started with wolfMQTT
• Getting Started with wolfTPM
• Getting Started with wolfSSL on the Espressif ESP32

Embark on your learning journey with wolfSSL webinar recordings. Watch our training videos to enhance your skills. If you encounter technical questions along the way, wolfSSL is here to assist you. Reach out to us at support@wolfSSL.com.

If you have questions about any of the above, please contact us at facts@wolfSSL.com or call us at +1 425 245 8247.

Download wolfSSL Now

Get excited for the upcoming webinar on ‘Benchmarks with wolfSSL,’ scheduled for May 16th at 10am PT. Led by wolfSSL Senior Software Engineer Jacob Barthelmeh, this session is set to be a deep dive into SSL/TLS performance optimization techniques.

During the webinar, Jacob will demonstrate how the wolfSSL embedded SSL/TLS library excels in various hardware devices and environments, providing detailed insights into cryptographic performance analysis.

Watch the webinar here: Benchmarks with wolfSSL

Sneak peek into the webinar agenda:

• Analyzing Performance History in Cryptography
• Evaluating Cryptographic Performance with the Crypto Benchmark Application
• Leveraging Hardware Acceleration for Enhanced SSL/TLS Performance
• Exploring Asynchronous/Code Wrapper Benchmarks for Optimization
  …and much more
  *Agenda is subject to change

Don’t miss this exclusive opportunity to learn directly from Jacob about leveraging wolfSSL benchmarks to deepen your understanding of cryptographic performance. Watch now and embark on this enlightening journey with us!

As always, our webinar includes Q&A throughout. If you have questions about any of the above, please contact us at facts@wolfSSL.com or call us at +1 425 245 8247.

Download wolfSSL Now

wolfSSL JNI/JSSE 1.13.0 is now available for download!

wolfSSL JNI/JSSE provides Java-based applications with an easy way to use the native wolfSSL SSL/TLS library. The thin JNI wrapper can be used for direct JNI calls into native wolfSSL, or the JSSE provider (wolfJSSE) can be registered as a Java Security provider for seamless integration underneath the Java Security API. wolfSSL JNI/JSSE provides TLS 1.3 support and can also support running on top of wolfCrypt FIPS 140-2 and the upcoming wolfCrypt 140-3 modules.

Release 1.13.0 contains a significant number of bug fixes, changes, and new features to help better support application usage of the Java Security APIs as well as 3rd party Java frameworks that consume JSSE providers internally. This release also improves behavior when used in multi threaded applications and use cases, and improves automated testing with GitHub actions across several Java JDK implementations and versions.

New functionality

New functionality added in this release is summarized below, but please see ChangeLog.md for a full list that includes all changes and fixes.

New JSSE Functionality:

• Add SSLSocket.getApplicationProtocol(), which returns the negotiated ALPN protocol of a TLS connection (PR 150)
• Add native WOLFSSL_TRUST_PEER_CERT support in WolfSSLTrustX509 (PR 154)
• Add implementation of javax.net.ssl.X509ExtendedTrustManager, which adds hostname checking inside the TrustManager (PR 159)
• Add getSSLParameters() to SSLEngine and SSLSocket, allowing applications to retrieve the SSLParameters objects set (PR 159)
• Add getHandshakeSession() to SSLSocket, returning the SSLSession being constructed during the TLS handshake (PR 159)
• Convert SSLSession to ExtendedSSLSession, adding getRequestedServerNames() to return a list of all SNIServerNames of the requested SNI extension(PR 159)
• Add ALPN API support to SSLSocket and SSLEngine with tests (PR 163)
• Add implementation of X509ExtendedKeyManager (PR 167)
• New JSSE System/Security Property Support:
  • Add partial support for jdk.tls.disabledAlgorithms Security property, allowing algorithms and key sizes to be limited (PR 136)
  • Add support for wolfjsse.enabledCipherSuites Security property, enabling locking down of TLS cipher suites allowed (PR 136)
  • Add support for wolfjsse.enabledSignatureAlgorithms Security property, enabling locking down of the TLS signature algorithms allowed (PR 136)
  • Add support for wolfjsse.enabledSupportedCurves Security property, enabling locking down of the TLS supported ECC curves allowed (PR 143)

New JNI Wrapped APIs and Functionality:

• wolfSSL_CTX_SetTmpDH() and wolfSSL_CTX_SetTmpDH_file() (PR 136)
• wolfSSL_CTX_SetMinDh/Rsa/EccKey_Sz() (PR 136)
• wolfSSL_set1_sigalgs_list() (PR 136)
• wolfSSL_CTX_UseSupportedCurve() (PR 158)
• wolfSSL_X509_check_host() and wolfSSL_SNI_GetRequest() (PR 159)
• wolfSSL_CTX_set_groups() and wolfTLSv1_3_client/server_method() (PR 164)
• SSL_CTX_set1_sigalgs_list() (PR 169)
• wolfSSL_set_tls13_secret_cb(), add ability to set Java callback (PR 181)
• Add X.509v3 certificate generation support in WolfSSLCertificate and examples (PR 141)
• Add Certificate Signing Request (CSR) support and examples (PR 146)

New Platform Support:

• Add Windows support with Visual Studio, see IDE/WIN/README.md (PR 125)

Build System Changes:

• Add JAVA_HOME support in java.sh for use with custom Java install (PR 121)
• New argument to java.sh for custom wolfSSL library name to be used (PR 126)
• Add lib64 directory to library search path in java.sh (PR 130)
• Standardize JNI library name on OSX to .dylib (PR 152)
• Add Maven build support (PR 153)
• Update Android Studio example project (PR 185)

Debugging Changes:

• Add WolfSSLDebug.logHex() for printing byte arrays as hex (PR 129)
• Add synchronization and Thread ID to debug log messages (PR 129)
• Add new debug System property wolfsslengine.io.debug for I/O debug logs (PR 137)
• Add timestamp to debug logs (PR 148)
• Fix for enabling JSSE debug logs after WolfSSLProvider has been registered (PR 166)
• Make native wolfSSL debug log format consistent with wolfJSSE logs (PR 166)

Testing Changes:

• Add Facebook Infer test script, make fixes (PR 127, 182)
• Add extended threading test of SSLEngine (PR 124)
• Testing with and fixes from SonarQube static analyzer (PR 131)
• Add extended threading test of SSLSocket (PR 149)
• Testing with and fixes for running SunJSSE tests on wolfJSSE (PR 170, 174)
• Add GitHub Actions tests for Oracle/Zulu/Coretto/Temurin/Microsoft JDKs on Linux and OS X (PR 176)

wolfSSL JNI/JSSE 1.13.0 can be downloaded from the wolfSSL download page, and an updated version of the wolfSSL JNI/JSSE User Manual can be found here. For any questions, or to get help using wolfSSL in your product or projects, contact us at support@wolfSSL.com.

If you have questions about any of the above, please contact us at facts@wolfSSL.com or call us at +1 425 245 8247.

Download wolfSSL Now

We are thrilled to announce that wolfSSL will be participating in all the upcoming AMD AC Summits across North America, kicking off in Boston, MA on May 7th and concluding in Dallas, TX on May 21st. As a leading provider of lightweight, portable, embedded SSL/ TLS software, we’re excited to be a part of AMD AC Summit to explore the latest advancements and opportunities in the industry.

Event Details

• Boston, MA | May 7th
• Washington D.C., MD | May 9th
• Los Angeles, CA | May 14th
• San Jose, CA | May 16th
• Dallas, TX | May 21st

Why wolfSSL?

wolfSSL brings cutting-edge solutions to the table, including support for UltraScale+, MicroBlaze, AMD Zen and x86 processors. Tested and benchmarked on boards such as; Versal, ZCU102, and the Zynq series.

• wolfSSL: Our lightweight and portable SSL/TLS library, written in C, is powered by the wolfCrypt library, currently on the CMVP Modules in Process List for FIPS 140-3. wolfSSL supports industry standards up to the current TLS 1.3 and DTLS 1.3 protocol levels.
• wolfBoot: our secure bootloader solution is a portable, OS-agnostic, and for 32-bit microcontrollers and IoT devices. It ensures the prevention of loading malicious or unauthorized firmware on the target. Our implementation leverages wolfSSL’s underlying wolfCrypt module for signature authentication of running firmware, with support for DO-178 and MISRA compliance support.
• Hardware Platform Support: Our solutions are tested and optimized for a wide range of hardware platforms, including Ultrascale+ and Versal. Plus, our architecture is designed for easy portability to new hardware, ensuring seamless integration with your next-generation devices.
• Post-Quantum Support: Our own implementation of NIST’s ML-KEM protocol, commonly referred to as Kyber, has been seamlessly integrated with wolfSSL. We are in the advanced stages of planning further integrations with wolfBoot and curl to enhance our cryptographic capabilities. Our goal is to support you in meeting the CASA 2.0 standards, ensuring robust cryptographic protection for your systems.

Let’s Connect:

Register today to secure your spot at the AMD AC Summit and connect with wolfSSL. Join us to explore solutions to enhance your cybersecurity systems.

If you have questions about any of the above, or would like to schedule a meeting with us, please reach out to facts@wolfSSL.com or call us at +1 425 245 8247.

Download wolfSSL Now

Join us on May 9th at 10am PT for an enlightening webinar hosted by Kaleb Himes, Senior Software Engineer at wolfSSL, as we explore the critical aspects of FIPS 140-3. This webinar will deep dive into the fundamentals, benefits of wolfCrypt FIPS, and the essentials of FIPS certification.

Watch the webinar here: Everything You Need to Know about FIPS 140-3

During this detailed session, you will gain insights into:

• The benefits of FIPS 140-3 for securing cryptographic modules
• Detailed FIPS certification and compliance procedures
• Understanding the significance of an Operational Environment (OE)
• Exploring how wolfCrypt FIPS can be integrated as kernel modules
• Utilizing wolfEngine and wolfProvider to meet OpenSSL FIPS 140-3 requirements
• Latest updates on the status of wolfCrypt FIPS 140-3

Watch now to ensure you don’t miss out on this valuable opportunity to deepen your understanding of FIPS 140-3 and its certification process. Learn how wolfCrypt FIPS can streamline your FIPS compliance needs.

As always, our webinar will include a live Q&A session. If you have any questions about wolfCrypt FIPS, FIPS 140-3 certification, or any related topics, please feel free to contact us at facts@wolfssl.com or call us at +1 425 245 8247.

Download wolfSSL Now