Ƙungiya na masu bincike na Jamus, masu haɓakawa da masu zane-zane sun buga farkon saki na aikin Rosenpass, wanda ke haɓaka VPN da kuma hanyar musanya mai mahimmanci wanda ke da tsayayya ga hacking akan kwamfutoci masu yawa. WireGuard VPN tare da daidaitattun algorithms da maɓallai ana amfani da su azaman jigilar kaya, kuma Rosenpass ya cika shi da kayan aikin musayar maɓalli waɗanda aka kiyaye su daga kutse a kan kwamfutoci masu yawa (watau Rosenpass kuma yana kare musanyar maɓalli ba tare da canza algorithms na aiki na WireGuard da hanyoyin ɓoyewa ba). Hakanan za'a iya amfani da Rosenpass daban daga WireGuard a cikin nau'in kayan aikin musanya na maɓalli na duniya wanda ya dace don kare wasu ƙa'idodi daga hare-hare akan kwamfutoci masu yawa.
An rubuta lambar kayan aikin a cikin Rust kuma ana rarraba ta ƙarƙashin lasisin MIT da Apache 2.0. Algorithms na ƙididdiga da ƙididdiga an aro daga liboqs da libsodium dakunan karatu, an rubuta su cikin yaren C. Tushen lambar da aka buga an sanya shi azaman aiwatar da tunani - dangane da ƙayyadaddun da aka bayar, za a iya haɓaka madadin nau'ikan kayan aikin ta amfani da wasu harsunan shirye-shirye. A halin yanzu ana ci gaba da aiki don tabbatar da ƙa'idar ƙa'idar, crypto-algorithms da aiwatarwa don ba da tabbacin ilimin lissafi na dogaro. A halin yanzu, ta amfani da ProVerif, an riga an yi nazarin alamar yarjejeniya da ainihin aiwatar da shi a cikin yaren Rust.
Ƙa'idar Rosenpass ta dogara ne akan ingantacciyar hanyar musayar maɓalli ta PQWG (Post-quantum WireGuard), wanda aka gina ta amfani da tsarin tsarin crypto na McEliece, wanda ke da juriya da ƙarfi akan kwamfuta mai ƙima. Makullin da Rosenpass ya samar ana amfani da shi ta hanyar WireGuard's pre-Shared key (PSK), yana ba da ƙarin Layer don tsaro haɗin haɗin VPN.
Rosenpass yana ba da tsarin baya mai gudana daban wanda aka yi amfani da shi don samar da maɓallan da aka riga aka ƙayyade na WireGuard da kuma amintar da musanyar maɓalli yayin aiwatar da musafaha ta amfani da dabarun ɓoye bayanan ƙididdiga. Kamar WireGuard, maɓallai masu ma'ana a cikin Rosenpass ana sabunta su kowane minti biyu. Don tabbatar da haɗin kai, ana amfani da maɓallan da aka raba (ana samar da maɓallai biyu na jama'a da na sirri a kowane gefe, bayan haka mahalarta suna canja wurin maɓallan jama'a zuwa juna).
source: budenet.ru