mbed TLS v2.2.0
|
This documentation describes the internal structure of mbed TLS. It was automatically generated from specially formatted comment blocks in mbed TLS's source code using Doxygen. (See http://www.stack.nl/~dimitri/doxygen/ for more information on Doxygen)
mbed TLS has a simple setup: it provides the ingredients for an SSL/TLS implementation. These ingredients are listed as modules in the Modules section. This "Modules section" introduces the high-level module concepts used throughout this documentation.
Some examples of mbed TLS usage can be found in the Examples section.
mbed TLS supports SSLv3 up to TLSv1.2 communication by providing the following:
Above functions are split up neatly into logical interfaces. These can be used separately to provide any of the above functions or to mix-and-match into an SSL server/client solution that utilises a X.509 PKI. Examples of such implementations are amply provided with the source code.
Note that mbed TLS does not provide a control channel or (multiple) session handling without additional work from the developer.
Silicon Labs plugins utilizing cryptography hardware acceleration are provided in this mbed TLS package. These plugins and their configurations are documented in Silicon Labs CRYPTO Hardware Acceleration Plugins and Silicon Labs CRYPTO Hardware Acceleration Configuration. There are two classes of cryptography hardware acceleration plugins; plugins optimized for single-threaded applications and advanced plugins supporting sharing of CRYPTO accelerators in multi-threaded applications.
A True Random Number Generator (TRNG) plugin is provided in this mbed TLS package. More documentation can be found here Random number generator (RNG) module.
Example server setup:
Prerequisites:
Setup:
Example client setup:
Prerequisites:
Setup: