Trusted Firmware Logo

MBed TLS v3.4.0 Released!

Shebu Kuriakose| Thursday, April 13, 2023|2 min read


The Mbed TLS project has released v3.4.0 and v2.28.3 LTS in March 2023. v3.4.0 includes several enhancements, bug fixes and security fixes. v2.28.3 released from the Mbed TLS 2.28 Long Term Support (LTS) branch includes the latest bug fixes and security fixes.

Refer to the release notes for a complete list of changes in the releases. Here are some of the highlights of v3.4.0:


  1. PSA Crypto driver dispatch layer for EC J-PAKE enabling alternative software or hardware implementations via. PSA Crypto drivers.

  2. Support disabling of ECDSA or EC J-PAKE implementation when PSA drivers for ECDSA or EC J-PAKE is present reducing memory usage. Enhancements required to similarly support interruptible ECDSA operations.

  3. PSA Crypto support for interruptible sign and verify hash operations.

  4. Improvements to integration of PSA Crypto (Mbed Crypto) with its clients (e.g. Trusted Firmware-M).

  5. Support for AES with the Armv8-A Cryptographic Extension on Aarch64 added. This makes AES constant-time, and improves performance by 3-5x.

What’s Next?

During H1’2023, focus will remain on some of the remaining areas of TLS and X.509 using PSA Crypto such as TLS and X.509 working when the library is built without software implementations of crypto operations (if crypto hardware supports those operations). Reducing memory usage of PSA Crypto (Mbed Crypto), PBKDF2 PSA API implementation are also areas the project plans to spend time on. Look at the project roadmap for further details.

We welcome community participation in ongoing and future work items in the project that can be found here. Subscribe to the mailing list to start participating in the design and development of the project. The bi-weekly Mbed TLS Technical Forums are also an opportunity to understand major developments in the project.

Recent Posts

post image
MISRA Compliance Jumpstart

Monday, October 30, 2023

White Paper: Jumpstarting MISRA compliance via the integration of static analysis into Open Source CI systems: best practices and key elements from

post image
MCUboot v2.0.0 Release!

Monday, October 30, 2023

MCUboot v2.0.0 Release

post image
Trusted Firmware OP TEE Release 4.0.0

Friday, October 20, 2023

Trusted Firmware OP TEE: v4.0.0 Release

post image
MBed TLS 3.5.0 Released with new and smaller ECC implementation!

Thursday, October 19, 2023

Introduction The Mbed TLS project has released version 3.5.0 in October 2023. The release includes several code size optimizations including a new small footprint secp256r1 implementation accessible via PSA Crypto APIs. 3.5.0 also includes feature enhancements, bug fixes and security fixes. 2.28.5 released from the Mbed TLS...

post image
Trusted Services 1.0.0 released!

Friday, October 13, 2023

Introduction Building on the Beta version of the Trusted Services release, v1.0.0 is the first stable release of the project. The release comprises PSA Services that can be deployed on Cortex-A devices to meet PSA Certified requirements and, necessary build and test infrastructure and documentation.