ntbTLS is a tiny TLS 1.2 only implementation designed to be used with Libgcrypt and LibKSBA. In particular, this library has no certificate verification code - this needs to be done by the caller. For example the GnuPG component dirmngr already has code to verify certificates (for CRL and OCSP checking) and thus ntbTLS is a good fit for accessing objects over the network.

The code for the library is based on the TLS protocol code from PolarSSL (now known as mbedTLS) with all crypto code replaced by Libgcrypt code and all older TLS and SSL protocol support removed. The library is used by the GnuPG version of Gpg4win since 2017.

See the download section for the latest tarball.

The development takes place in a Git repo:

git clone git://git.gnupg.org/ntbtls.git

For more information see our Git page.