wolfSSL Featuring New Post Quantum Cryptography and country specific cipher support at Black Hat 2023
EDMONDS, Wash. (PRWEB) August 08, 2023 -- wolfSSL INC. (Headquarters: Edmonds, Washington, USA), a vendor specialized in cryptography and network security, is excited to share updates regarding their products and technology at Black Hat 2023 this August 9 and 10 in Las Vegas, Nevada, at booth #2617.
wolfSSL added the ShangMi ciphers and algorithms SM2, SM3, and SM4 to wolfCrypt as well as wolfSSL’s industry leading TLS 1.3 solution. SM support will also be made available in the QUIC protocol in the future .
As many people know, Chinese government regulators are now mandating use of SM2, SM3 and SM4 in critical systems, including automobiles, avionics, power systems, and communication systems. Since many of our customers are multi-nationals that do business in China, they have been requesting the addition of these algorithms in wolfSSL products.
wolfSSL has supported versions of SM2, SM3, and SM4, with the intention to release the ZUC stream cipher at some point this year to completely satisfy SM9. We are also in contact with labs regarding support of OSCCA certification at some point in the future.
This is really great news for our customers selling into Chinese markets!
For those readers considering using wolfSSL products, here’s some additional notes:
- The SM Ciphers will be fully supported in wolfSSL’s TLS 1.3 implementation.
- wolfSSH, wolfBoot and our other products will support ShangMi ciphers.
- ARM, Intel, and RiscV assembly is in the works for our SM implementations for maximum performance.
- We will continue to support bare metal for ZUC, SM2, SM3, and SM4.
- True to form, we have maximized performance and minimized size, so the ShangMi algorithms will work well for embedded systems use cases on a wide variety of microcontrollers (MCU’s). They will be available for all of the MCU silicon that we currently support, including STM32, NXP i.MX, RISC-V, Renesas RA, RX, and Synergy, Nordic NRF32, Microchip PIC32, Infineon Aurix, TI MSP, and many others.
- Our GPLv2 licensed versions of the SM ciphers are available on GitHub and for download. Commercially licensed versions are available.
The second exciting update is ARIA Cipher Support in wolfCrypt and wolfSSL
wolfSSLintegrated the ARIA cipher for customers who operate in the South Korean market. The ARIA cipher has been adopted as the national standard in South Korea in various software and hardware products. We now have support for ARIA_128 and ARIA_256 in GCM mode. URL: https://www.wolfssl.com/aria-cipher-support-via-magiccrypto/?utm_source=rss&utm_medium=rss&utm_campaign=aria-cipher-support-via-magiccrypto
Supported Post-Quantum Ciphers
wolfSSL has been busy adding support for post-quantum ciphers in all of our products, from TLS to curl to web servers to SSH, we now have solid post-quantum support for users looking to make the move to a higher level of security, or to hedge their way into cryptographic agility with post-quantum. See below for the list of what is now supported:
wolfSSL Variant Name, PQC Submission Variant Name
FALCON_LEVEL1, FALCON512
FALCON_LEVEL5, FALCON1024
DILITHIUM_LEVEL2, DILITHIUM2
DILITHIUM_LEVEL3, DILITHIUM3
DILITHIUM_LEVEL5, DILITHIUM5 (Required by CNSA 2.0)
SPHINCS_FAST_LEVEL1, SPHINCS+-SHAKE256-128f-simple
SPHINCS_FAST_LEVEL3, SPHINCS+-SHAKE256-192f-simple
SPHINCS_FAST_LEVEL5, SPHINCS+-SHAKE256-256f-simple
SPHINCS_SMALL_LEVEL1, SPHINCS+-SHAKE256-128s-simple
SPHINCS_SMALL_LEVEL3, SPHINCS+-SHAKE256-192s-simple
SPHINCS_SMALL_LEVEL5, SPHINCS+-SHAKE256-256s-simple
KYBER_LEVEL1, KYBER512
KYBER_LEVEL3, KYBER768
KYBER_LEVEL5, KYBER1024 (Required by CNSA 2.0)
P256_KYBER_LEVEL1, ECDSA P-256 and KYBER512
P384_KYBER_LEVEL3, ECDSA P-384 and KYBER768
P521_KYBER_LEVEL5, ECDSA P-521 and KYBER1024
LMS_PARM_L1_H15_W2 (Required by CNSA 2.0)
LMS_PARM_L1_H15_W4 (Required by CNSA 2.0)
LMS_PARM_L2_H10_W2 (Required by CNSA 2.0)
LMS_PARM_L2_H10_W4 (Required by CNSA 2.0)
LMS_PARM_L2_H10_W8 (Required by CNSA 2.0)
LMS_PARM_L3_H5_W2 (Required by CNSA 2.0)
LMS_PARM_L3_H5_W4 (Required by CNSA 2.0)
LMS_PARM_L3_H5_W8 (Required by CNSA 2.0)
LMS_PARM_L3_H10_W4 (Required by CNSA 2.0)
LMS_PARM_L4_H5_W8 (Required by CNSA 2.0)
For those of you joining us at #BHUSA23, stop by our booth #2617 and talk to us about FIPS, Post Quantum Cryptography, SSH, TLS 1.3, DTLS 1.3, hardware crypto acceleration, DO-178, secure boot, Fuzz testing and everything else that sets us apart as the most secure crypto out there. Customers win with wolfSSL, we’ve got the numbers to prove it.
Email us at [email protected] to book a meeting or register directly from Black Hat’s event site: https://www.blackhat.com/us-22/registration.html.
About wolfSSL
wolfSSL focuses on providing lightweight and embedded security solutions with an emphasis on speed, size, portability, features, and standards compliance. With its SSL/TLS products and crypto library, wolfSSL is supporting high security designs in automotive, avionics and other industries. In avionics, wolfSSL has support for complete RTCA DO-178C level A certification. In automotive, it supports MISRA-C capabilities. For government consumers, wolfSSL has a strong history in FIPS 140-2, with upcoming FIPS 140-3 in process. wolfSSL supports industry standards up to the current TLS 1.3 and DTLS 1.3, is up to 20 times smaller than OpenSSL, offers a simple API, an OpenSSL compatibility layer, is backed by the robust wolfCrypt cryptography library, and much more. Our products are open source, giving customers the freedom to look under the hood.
Christin Casperson, wolfSSL, https://www.wolfssl.com, 1 2064597061, [email protected]
Share this article