wolfTPM v4.0.0 is our largest release to date. It delivers three headline capabilities: Firmware TPM (fwTPM) – a portable TPM 2.0 built on wolfCrypt. SPDM Secured Transport – encrypted host-to-TPM communication. ST33 TPM 2.0 Firmware Update – new update tool for STMicro ST33KTPM2X. All three are powered by the same wolfCrypt engine trusted in FIPS […]
Read MoreMore TagCategory: wolfTPM
Hardware-Backed Security Using wolfTPM with SPDM
Encrypted Bus Transfers, Multi-Vendor TPM Support, and TCG SPDM Binding Your Secrets Are on the Wire The Problem Discrete TPM chips talk to the host CPU over physical buses: SPI, I2C, or LPC. By default, this communication is unencrypted. Security researchers have repeatedly demonstrated that an attacker with brief physical access can tap these buses […]
Read MoreMore TagwolfTPM SPDM vs The Field
The Only SPDM Implementation with Hardware TPM Support A Different Category wolfTPM’s SPDM implementation is not a standalone SPDM library. It is SPDM integrated directly with hardware TPMs, a category that no other open-source project occupies. wolfTPM works hand-in-hand with Nuvoton and NSING to deliver SPDM on real hardware, with full TCG SPDM binding, PSK […]
Read MoreMore TagAnnouncing SPDM Support in wolfTPM
Lightweight Device Authentication for Nuvoton and NSING TPMs Device Attestation and Authentication Are No Longer Optional From data center accelerators to automotive ECUs, the industry is moving toward verifying every component on every bus. Today, wolfSSL is proud to announce SPDM support in wolfTPM, enabling secure device authentication and attestation for Nuvoton NPCT75x and NSING […]
Read MoreMore TagwolfTPM: Hardware SPI and TPM 2.0 Firmware Update Support for U-Boot
Secure boot architectures require more than just the presence of a TPM; they require a high-performance communication interface and a mechanism for lifecycle management. wolfSSL has updated wolfTPM and U-Boot to support native Hardware SPI communication and direct TPM 2.0 firmware updates for the Raspberry Pi 4. These changes move away from generic software-based implementations, […]
Read MoreMore TagAnnouncing wolfTPM Firmware TPM (fTPM) Support
wolfSSL is excited to announce firmware TPM (fTPM) support in wolfTPM — a production-ready, open-source, embedded firmware TPM 2.0 implementation built on wolfCrypt. wolfTPM fTPM fills a critical gap in embedded security: teams that need software-based TPM services on MCUs and SoCs can now use an open-source implementation with commercial support, portable platform integration, and […]
Read MoreMore TagWhat Is the Difference Between HSM, TPM, Secure Enclave, and Secure Element or Hardware Root of Trust?
HSMs, TPMs, Secure Enclaves, and Secure Elements are all dedicated security components that exist to service other devices. While at a high level they have similar security goals and intentions (e.g. private key isolation), they are not the same things, and they do have important differences. This blog post will guide the reader through what […]
Read MoreMore TagMake Your TPM Speak PKCS#11: Enable Hardware-Backed Keys Without Rewriting Your App
Trusted Platform Modules (TPMs) are widely available on modern platforms and provide a strong hardware-based root of trust for cryptographic keys. At the same time, many applications already rely on the PKCS#11 API to interact with Hardware Security Modules (HSMs) and other secure key stores. Bridging these two worlds allows developers to take advantage of […]
Read MoreMore TagwolfTPM Prepares for the Post Quantum Era
Enabling CNSA 2.0 Compliance with ML-DSA and ML-KEM in Hardware Security Modules The cryptographic landscape is rapidly evolving. With quantum computing advancing from theoretical to practical, organizations worldwide are racing to protect their systems against future quantum threats. The NSA’s Commercial National Security Algorithm Suite 2.0 (CNSA 2.0) has set clear timelines for transitioning to […]
Read MoreMore TagwolfTPM – Seamless Firmware Updates for STMicroelectronics ST33 TPMs
Maintaining the security and longevity of embedded systems requires the ability to update firmware reliably and securely. wolfSSL is excited to announce the addition of comprehensive firmware upgrade support for STMicroelectronics ST33KTPM2X modules within wolfTPM. This latest enhancement simplifies the complex process of Field Upgrades for ST33 TPMs, providing a unified API that handles version […]
Read MoreMore Tag