Due to lack of better alternatives, TLS implementations have historically stored private keys and authentication credentials in software where they are more vulnerable to attack. In addition, the mathematics used for authentication and asymmetric key agreement were also done in software which is less feasible in small IoT devices that have limited code space and processing power.
The Hardware-TLS platform provides an interface between software TLS packages and the ATECC508A cryptographic co-processor. wolfSSL and OpenSSL implementations can now utilize hardware-based secure storage for private keys and authentication data and also allow resource-constrained IoT nodes to implement full elliptic curve authentication and Diffie-Hellman key agreement and session key derivation. With HW-TLS, TLS communications links can have hardened security even out to the smallest IoT edge node.
ATECC508A-wolfSSL ATECC508A crypto element hardened wolfSSL with private key protected storage and secure execution environments.
Download from wolfSSL: https://wolfssl.com/wolfSSL/Home.html
ATECC508A-OpenSSL ATECC508A crypto element hardened OpenSSL with private key protected storage and secure execution environments.
Download from OpenSSL: https://wiki.openssl.org/index.php/Binaries
Download from GitHub: https://github.com/CSO/cryptoauth-openssl-engine