EDMONDS, WA. wolfSSL announced FIPS 140-2 Certificate #3389 is posted. wolfCrypt now supports hardware encryption in combination with FIPS and includes the newest TLS 1.3 algorithms.
Hardware encryption keeps the encryption/decryption process isolated, which improves security and performance. A key is still required to start the encoding process but is generated randomly by the hardware processor itself. If you have a FIPS-approved entropy source, DRBG key generation can be done now within the FIPS boundary. When the hardware crypto source has been approved, other sources, such as alternative hardware, can be used.
The set of algorithms that cipher suites contain include:
- key exchange
- message authentication
New algorithms have been added to certificates so that the common cipher suites can now be done with FIPS in TLS 1.3.
“The wolfSSL team solved extremely difficult problems for their FIPS 140-2 validated cryptography consumers,” said KeyPair Consulting Co-Founder, Mark Minnoch. “wolfCrypt is the only FIPS validated software library that works with TLS 1.3 and includes a validated entropy source for generating keys. This is a big deal. And, the wolfSSL support staff have the FIPS expertise to quickly include new hardware encryption solutions to meet future customer requirements.”
For more information, please visit https://www.wolfssl.com/.