Chris Conlon, Software Engineer, wolfSSL. The Internet of Things universe includes devices of all types. A subset of these devices operate in environments that require FIPS 140-2 validated cryptography to be used. FIPS 140-2 is well established on desktop and enterprise levels, but is fairly new to the IoT. Device and application manufacturers can face unique challenges when searching for, finding, and validating cryptography on resource-constrained, embedded IoT devices.
This presentation will focus on the use of FIPS 140-2 cryptography in the IoT, covering the predominant ways that wolfSSL has helped customers overcome challenges when doing embedded FIPS validations. Several of these validations have been on FreeRTOS and OpenRTOS, some of the most widely-used Open Source operating systems today. Specific areas of discussion will include meeting FIPS 140-2 module requirements, minimizing resource usage, portability, running algorithm test vectors, and easing upgradability.