wolfSSL would like to announce that we are wrapping up development of a new JSSE provider for the wolfSSL lightweight SSL/TLS library. This provider, wolfJSSE, supports up to TLS 1.2 and TLS 1.3, and gains the advantages that the native wolfSSL C library offers in terms of performance and small footprint size.
wolfJSSE will initially provide implementations of the following JSSE classes:
SSLContext (TLS 1.0, TLS 1.1, TLS 1.2, TLS 1.3)
SSLEngine
SSLSession
SSLSocket / SSLServerSocket
SSLSocketFactory / SSLServerSocketFactory
KeyManagerFactory
X509KeyManager
TrustManagerFactory
X509TrustManager
X509Certificate
The native wolfSSL library supports up to the current TLS 1.3 RFC (8446), can be up to 20 times smaller than OpenSSL, and includes assembly and hardware crypto performance optimizations on several different platforms. wolfSSL is dual licensed under GPLv2 and a commercial license.
For users interested in FIPS 140-2, wolfSSL recently released a “FIPS Ready” version of the native C library which includes all of the code needed to be ready to move forward with the FIPS validation process. wolfSSL FIPS Ready supports a validated entropy source, all of the TLS 1.3 algorithms, and support for hardware encryption. The wolfJSSE provider is compatible with the FIPS Ready release as well.
We expect the wolfJSSE provider to be available soon and will update this thread when a download is available for testing. We would like to hear any feedback you may have on wolfJSSE or features that you would like to see added in the future.
Thanks,
Chris
Team wolfSSL
wolfSSL Embedded SSL/TLS Library | Now Supporting TLS 1.3