 So we're here with Wolf SSL. So, hi, so who are you? I'm David Garski, one of the software engineers with Wolf SSL. Do you do security? Yes, I'm a software security engineer, yeah. And the company, what's the product that you do? It looks like there's crypto engine, as is the library, crypto module. Yep, we also do MQTT clients. We have an SSH server clients and recently added TPM 2.0 support. So do you enable security on the embedded world? Yeah, so that's where we specialize is on the embedded side. This library is written for embedded use in C. It's an open source project, GPLv2. Open source security. Yes, that works. It works very well. We get all of the community's input on it, right? So it's actually been out there since 2006. And what that means is anybody can go use it, they can evaluate it, they can try it, they can give feedback, they can submit pull requests, things like that, that they might want to contribute, go back, right? We also get universities and things like that that review it, they analyze it. And are you related or using or partnering with the trusted execution environment, the team? Is that something else? Yeah, so the trusted execution environment is a more generic term for things like SGX or Trustone. Currently we support the SGX, which is an Intel thing, and then ARM has a new chip, it's Cortex-M33, which is also known as the ARM V8M. And it has Trustone support, and that is something that we'll be starting very, very soon. So it's starting to come out, right? There's a few things happening with that? There are chips that are coming out with it. The simulator's been available for a long time. There's several chips out there that support it, so yeah. And do you have a demo right here? I do. The demo I have here is an SDF32-F7. So this is a Cortex-M7. It's running at 216 megahertz. It's a pretty beefy chip because it's got two megs of RAM and like 256K of flash, or I have that backwards. Two megs of flash, 256K of RAM. And this chip actually, it's the F77-ZI, and it supports the crypto hardware acceleration, specifically symmetric, so that's AES, Triple Des, SHA-1, SHA-256, stuff like that. But it's RV7 still, but they have hardware encryption stuff. How many chips have hardware encryption in the V7 world? So it's up to the manufacturer to decide to add it because it's peripheral. So there are many chips out there that support it. Like the Psock, right? Yeah, yeah, so I think you're talking about the Cypress one. If you work at that? Yeah, so we will be adding support for that. We have those in-house and it's something we'll be adding. I mean, I can list pretty much every chip manufacturer has some type of crypto hardware option, and our goal is to add support for all those. And right now we have, I mean, I guess I can start listing them off. So with the SDM32, they have a symmetric crypto hardware acceleration. NXB has a couple, they call the MMCAU, this is part of the kinetics line. The kinetics K82 has an LTC, which actually does the asymmetric ECC and RSA as well. And then the IMX6 has the CAM, which we all support. We also support SO microchip. They have the PIC32MZ and the IMX, which support crypto hardware. It's also symmetric. And then we have external chips that we support, such as like an Infineon TPM2.0. And then there's also an at-mail part that does the ECC508608, those chips. Because it's quite important that the IOT has to be secure in the future. You don't want to have people hacking all these IOT things. Exactly, yeah. And you're going to be in the center of all that? Yeah, so that's where our products does very well. Because we're tailored for embedded. It's very configurable, which means we use less flash, less RAM, as modular. So yeah. What is your business model? Yeah, so the business model is open source GPLv2, but we also sell commercial license. So if somebody wants to ship a product and they don't want to use GPL, then they buy a commercial license. So what do you show here with the benchmark? Do you show that it's fast or? Yeah, exactly. So I'm just using, this is OpenSTM32. It's a free e-clius-based IDE. Yeah. And let's see. So basically, this project, you can go to our GitHub, Wolfus-to-Sell repository. And there's an example. It's located inside the IDE OpenSTM32 folder. Yeah, I guess it's hard to see. Yeah. OK. And when you build and run this, there is a console. So this board is pretty nice, because it has the debugger and it has a UART connection, both off the debug side. And so I'm just connecting with cool term. I'm able to execute. And by default, what we have is we have a WolfCrypt test and a benchmark and a TLS client example. And so what I'm going to demonstrate is running the benchmark. And so this benchmark runs through each crypto algorithm. So it's going through AES and all the different key sizes. And then it'll do the digest, like, shot through the six. And the performance we're seeing is about 10 times the speed of just software-only, right? 10 times the speed. Yeah. Yeah, so it's the cyber-sector stuff. Exactly, yeah. So for example. Because you don't want to have everything slow down just because you want to add security, right? That would be ideal, yeah. So that's why they do it in high-risk security, too? Absolutely. Because that way for security is for speed? Yeah, exactly. So like an AES 128, I mean, we're seeing 11 megabytes per second for an AES 128. All right, let's say AES 128 and GCM. That's actually even faster. It's 21 megabytes per second. Now, if you do the same thing with software, you're getting, I think I might have the wrong one. One, two, three, GCM, yeah. So that's 21 megabytes per second in software. It's not looking so good. It's kilobytes. Yeah, 37 kilobytes per second. Three orders of magnitude faster. I will say that this build was not optimized for performance on that one because there's some tables and some things we can do to speed up that on software. Cool, so how is it to be an ST partner? It's very good. In fact, I see a lot of adoption of the STM32 parts. And they've been really good to us as a partner. They always provide hardware. Yeah.