ProHoster > Блог > labaran intanet > Sakin LibreSSL 3.1.0 da Botan 2.14.0 dakunan karatu na sirri

Sakin LibreSSL 3.1.0 da Botan 2.14.0 dakunan karatu na sirri

Bude BSD Masu Haɓakawa gabatar saki na fakitin šaukuwa LibreSSL 3.1.0, wanda a cikinsa ake haɓaka cokali mai yatsa na OpenSSL, da nufin samar da babban matakin tsaro. Aikin LibreSSL yana mayar da hankali ne akan babban goyon baya ga ka'idodin SSL/TLS ta hanyar cire ayyukan da ba dole ba, ƙara ƙarin fasalulluka na tsaro, da mahimmancin tsaftacewa da sake yin aiki da tushe na lambar. Ana ɗaukar sakin LibreSSL 3.1.0 a matsayin sakin gwaji wanda ke haɓaka fasalulluka waɗanda za a haɗa su cikin OpenBSD 6.7.

Siffofin LibreSSL 3.1.0:

  • An gabatar da fara aiwatar da TLS 1.3 bisa sabon injin jiha da tsarin ƙasa don aiki tare da bayanai. Ta hanyar tsoho, ɓangaren abokin ciniki na TLS 1.3 ne kawai aka kunna don yanzu; ɓangaren uwar garken an shirya kunna shi ta tsohuwa a cikin sakin gaba.
  • An tsaftace lambar, an inganta nazarin ladabi da sarrafa ƙwaƙwalwar ajiya.
  • An fitar da hanyoyin RSA-PSS da RSA-OAEP daga OpenSSL 1.1.1.
  • An motsa aiwatarwa daga OpenSSL 1.1.1 kuma an kunna ta ta tsohuwa CMS (Syntax Saƙon Rubutun Rubutun). An ƙara umarnin "cms" zuwa aikin openssl.
  • Ingantacciyar dacewa tare da OpenSSL 1.1.1 ta hanyar mayar da wasu canje-canje.
  • An ƙara babban saitin sabbin gwaje-gwajen aikin sirri.
  • Halin EVP_chacha20() yana kusa da ilimin tarukan OpenSSL.
  • An ƙara ikon saita wurin saiti tare da takaddun shaida na izini.
  • A cikin openssl mai amfani, umarnin "req" yana aiwatar da zaɓin "-addext".

Bugu da ƙari, ana iya lura da shi sakin ɗakin karatu na sirri Tafiya 2.14.0, ana amfani dashi a cikin aikin NeoPG, cokali mai yatsa na GnuPG 2. Laburare yana ba da tarin tarin yawa shirye-sanya primitives, wanda aka yi amfani da shi a cikin ka'idar TLS, takaddun shaida na X.509, AEAD ciphers, TPMs, PKCS#11, kalmar sirri hashing, da post-quantum cryptography (sa hannu na tushen zanta da yarjejeniyar mahimmanci dangane da McEliece da NewHope). An rubuta ɗakin karatu a C++11 kuma kawota ƙarƙashin lasisin BSD.

Daga cikin canje-canje a cikin sabon fitowar Botan:

  • Ƙara aiwatar da yanayin GCM (Yanayin Galois/Counter), an haɓaka don masu sarrafa POWER8 ta amfani da umarnin vector na VPSUMD.
  • Don tsarin ARM da POWER, aiwatar da aiwatar da aikin permutation na AES tare da lokacin aiwatarwa akai-akai an haɓaka sosai.
  • An gabatar da sabon tsarin jujjuyawar modulo, wanda ya fi sauri kuma mafi kyawun kariya daga hare-haren tashoshi na gefe.
  • An inganta haɓakawa don hanzarta ECDSA/ECDH ta hanyar rage filin NIST.

source: budenet.ru

Add a comment