RECENT BLOG NEWS

So, what’s new at wolfSSL? Take a look below to check out the most recent news, or sign up to receive weekly email notifications containing the latest news from wolfSSL. wolfSSL also has a support-specific blog page dedicated to answering some of the more commonly received support questions.

Partner Webinar: How AI-Automated Fuzzing Uncovered a Vulnerability in wolfSSL

Despite wolfSSL’s rigorous software testing practices, in October 2024, Code Intelligence—an application security vendor—discovered a potentially exploitable defect in wolfSSL. Remarkably, the potential vulnerability was found without human intervention. The only manual step was executing a single command to trigger autonomous fuzz testing. Join wolfSSL and Code Intelligence for a live webinar featuring a real-time […]

Read MoreMore Tag

wolfSSH 1.4.20: Enhanced Features and Stability

The wolfSSL team has released wolfSSH version 1.4.20, introducing some new features and nice fixes! New Features: DH Group 16 and HMAC-SHA2-512 Support: This addition gives more options for algorithms used when connecting and more interoperability with other implementations. Keyboard-Interactive Authentication: Providing a more versatile authentication method implementing RFC 4256. Enhancements and Fixes: Memory Management […]

Read MoreMore Tag

Deprecation Notice: ARC4

The wolfSSL team is announcing the deprecation of the ARC4 cipher. This decision is part of our ongoing effort to simplify the wolfSSL codebase and focus on supporting the most secure and widely-used ciphers. The ARC4 cipher has been shown to have significant weaknesses, including: Key biases and correlations Plaintext recovery attacks Increased risk of […]

Read MoreMore Tag

wolfMQTT Releases v1.19.2

In the realm of lightweight MQTT (Message Queuing Telemetry Transport) implementations, wolfMQTT maintains its commitment to reliability and performance. With the release of version 1.19.2, wolfMQTT strengthens its core functionality through targeted improvements and enhanced testing infrastructure. Key Improvements: Enhanced Connection ReliabilityThe implementation of improved error handling in the “mqttsimple” client ensures more robust connection […]

Read MoreMore Tag

wolfSSL Inc. SP800-140C and Post-Quantum efforts update!

This is an update to previous post Everything wolfSSL is Preparing for Post-Quantum as of Spring 2024 and an extension to post wolfSSL Support for Post-Quantum. The National Institute of Standards and Technology (NIST) has recently updated its guidelines, enabling the certification of several post-quantum cryptographic algorithms through the Cryptographic Module Validation Program (CMVP). Notably, […]

Read MoreMore Tag

SPAKE and wolfSSL in Kerberos 5

In today’s digital landscape, the need for robust authentication mechanisms has never been more crucial. Among the various methods available, SPAKE (Simple Password-Authenticated Key Exchange) stands out as an enhanced security solution for authenticating users. SPAKE represents a significant advancement over traditional password-based authentication, which often relies on static hashes. By leveraging a shared secret […]

Read MoreMore Tag

IPsec vs TLS: what are the differences

IPsec (Internet Protocol Security) and TLS (Transport Layer Security) are both used to protect data in transit between devices, and to secure network traffic over public or private internet. Both have cryptographic mechanisms for encryption, integrity checking, mutual authentication, replay protection, key exchange, etc. However, they operate at different network layers, and have different strengths […]

Read MoreMore Tag

Posts navigation

1 2 3 19 20 21 22 23 24 25 214 215 216

Weekly updates

Archives