Safe

All protocol processing is in 100% memory-safe Rust.

We learned from past protocol and implementation vulnerabilities to avoid repeating the same mistakes.

Fast

rustls outperforms OpenSSL and BoringSSL when used with aws-lc-rs.

See our technical reports on performance.

Flexible

Choice of cryptography providers, including aws-lc-rs, *ring* and with several FIPS140-approved options.

We have bindings for C/C++ and a limited drop-in replacement for OpenSSL libssl.