wolfSSL

wolfSSL is a security software company that specializes in providing lightweight and embedded security solutions. Its primary mission is to offer developers a security toolkit that emphasizes speed, size, portability, and standards compliance. The company provides its products under a dual license model, catering to both open-source projects and commercial applications. A core goal for wolfSSL is to provide an alternative to other SSL/TLS libraries, positioning itself as a cost-effective and well-supported option. The company also aims to empower developers to build secure and resilient embedded systems by offering a comprehensive suite of security solutions.

wolfSSL has established a strong reputation within the embedded systems and IoT security markets. The company is known for its flagship product, the wolfSSL embedded TLS library, which is recognized for being significantly smaller than OpenSSL and for its robust performance. Its commitment to open-source principles and a transparent development process contributes to trust within the developer community. Furthermore, wolfSSL’s focus on achieving various security certifications, such as FIPS 140-3, validates the quality and security of its software. The company is also recognized for its proactive approach to security, including support for post-quantum cryptography.

Offerings, Capabilities, and Integrations

wolfSSL provides lightweight and embedded security solutions with a strong focus on speed, size, portability, features, and standards compliance. Its core offering is a C-language-based SSL/TLS library designed for embedded and real-time operating system (RTOS) environments. This focus on resource-constrained devices gives wolfSSL a competitive edge, as it is up to 20 times smaller than OpenSSL. The company’s products are designed to be highly portable, supporting 30 to 40 operating systems and bare-metal environments. wolfSSL also offers an OpenSSL compatibility layer to facilitate migration from the more common OpenSSL. This combination of a small footprint, high portability, and an OpenSSL compatibility layer allows wolfSSL to serve a broad market, from small embedded systems to large enterprise and cloud environments. The company’s commitment to open-source principles, with most products dual-licensed under GPLv2 and commercial licenses, fosters trust and community collaboration.

Products and Services

wolfSSL’s flagship product is its embedded TLS library, which supports the current TLS 1.3 and DTLS 1.3 standards. This library is powered by the wolfCrypt cryptography library. wolfSSL offers a range of other products and services to complement its core offering:

• wolfCrypt: A lightweight, embedded cryptography engine that provides a wide range of algorithms. It has received FIPS 140-2 and 140-3 validation.
• wolfCrypt FIPS: A version of wolfCrypt that has been FIPS 140-3 validated, designed for users who require this level of certification.
• wolfSSH: A small, portable implementation of the SSH protocol for embedded systems.
• wolfBoot: A secure bootloader that ensures the integrity and authenticity of firmware.
• wolfMQTT: An MQTT client library for secure and reliable messaging in IoT environments.
• wolfSentry: An embedded intrusion detection and prevention system (IDPS) featuring a dynamic firewall.
• wolfTPM: A software-based implementation of the Trusted Platform Module (TPM) 2.0.
• wolfHSM: A solution that integrates the wolfCrypt engine with hardware security modules (HSMs) to enhance security and performance.
• wolfSSL JNI/JSSE: Java wrappers that allow for the integration of wolfSSL and wolfCrypt into Java applications.
• curl/tinycurl: Commercial support for the popular data transfer tool.
• Consulting Services: wolfSSL provides professional services, including security audits, consulting, and training.

Target Customers

wolfSSL’s target customers span a wide range of markets, from individual developers to large enterprises and government agencies. The company’s focus on lightweight and embedded solutions makes its products particularly suitable for resource-constrained environments. Key market segments include:

• Automotive: wolfSSL’s products are used in the auto industry, with offerings like wolfHSM designed to enhance cryptographic performance in automotive applications.
• Aviation: The company offers a DO-178C compliant version of its TLS library for use in safety-critical avionics systems.
• Connected Home and IoT: The small footprint and efficiency of wolfSSL’s products make them ideal for smart home devices and the broader Internet of Things (M2M) market.
• Government and Military: wolfSSL’s FIPS-certified cryptography is suitable for government and military applications requiring high-security standards.
• Industrial Automation and Smart Grid: The reliability and security of wolfSSL’s solutions are beneficial for industrial control systems and smart grid infrastructure.
• Telecommunications: The company’s products are used in routers and mobile phones.
• Cloud Services and Enterprise: wolfSSL’s solutions are also utilized in desktop, enterprise, and cloud environments, often by customers looking for an alternative to OpenSSL.

These customers benefit from wolfSSL’s high-performance, low-footprint security solutions that meet stringent industry standards and certifications. The availability of commercial support and consulting services provides additional value, offering tailored solutions and expert assistance.

Cloud Integrations and Marketplaces

wolfSSL’s products are designed to function in cloud environments, and the company provides specific integrations for certain cloud platforms. However, wolfSSL does not have a direct presence on the major cloud marketplaces such as Amazon Web Services (AWS), Microsoft Azure, or Google Cloud.

wolfSSL offers the following cloud integrations:

• Microsoft Azure: A subset of the wolfSSL library is integrated into the Azure Sphere SDK. This allows developers to use wolfSSL for secure TLS connections in applications built for Azure Sphere devices. Microsoft has licensed this subset of wolfSSL for direct use by developers, which can help reduce the memory footprint and development effort for IoT solutions on the platform.
• Amazon Web Services: wolfSSL provides examples and documentation for using its wolfMQTT client library to establish secure TLS connections with AWS IoT. This includes an example project for connecting to an AWS IoT MQTT endpoint.

While wolfSSL can be used with Google Cloud, as it can with any cloud environment, there are no specific, documented integrations or partnerships similar to those with Microsoft Azure or the examples provided for AWS.

Key People

• Co-founder & CEO: Larry Stefonic.
• Co-founder & CTO: Todd Ouska.
• President, wolfSSL Japan: Yoko Suga.
• Engineering Manager: Chris Conlon.
• Business Director: Tim Pickering.
• Business Director: Steve Siderewicz.
• Sr. Engineer: Eric Blankenhorn.

Key Facts

• Headquarters Location: Edmonds, Washington, USA.
• Number of Employees: 45.
• Annual Revenue: $7.5M.
• Parent Company: None.
• Subsidiary Companies: None.
• Publicly Listed: No.

Analyst Recognition

Based on a review of publicly available information, wolfSSL is not mentioned in analyst reports from Gartner, Forrester, IDC, or Everest Group.