Kungiyar IETF (Internet Engineering Task Force), wacce ke haɓaka ka'idojin Intanet da gine-gine, ta fara aiwatar da daidaita tsarin sunan yankin GNS (GNU Name System) wanda aikin ya haɓaka. a matsayin gaba ɗaya rarrabawa da maye gurbin hujjoji don DNS. A halin yanzu daftarin farko na ma'auni, bayan tabbatarwa wanda za a kafa RFC, wanda zai sami matsayi na "Ma'auni na Gabatarwa".
za a iya amfani da gefe da gefe tare da DNS da kuma amfani a cikin gargajiya aikace-aikace kamar yanar gizo browser. Ana tabbatar da mutunci da rashin canzawar bayanan ta hanyar amfani da na'urori na sirri. Ba kamar DNS ba, GNS yana amfani da jadawali da aka ba da umarni maimakon tsarin sabar kamar itace. Ƙididdigar suna yana kama da DNS, amma ana yin buƙatu da amsa ta hanyar sirri - kumburin sarrafa buƙatun bai san wanda ake aika da amsa ba, kuma nodes na wucewa da masu sa ido na ɓangare na uku ba za su iya yanke buƙatun da martani ba.
An ƙaddara yankin DNS a cikin GNS ta amfani da gungun maɓallan jama'a da na sirri bisa lankwasa elliptical . Amfani da Curve25519 wasu suna la'akari da shi a matsayin wani mataki mai ban mamaki, tun da ECDSA suna amfani da wasu nau'o'in lankwasa na elliptic, kuma idan aka haɗa su da Curve25519 yawanci suna amfani da algorithm na sa hannu na dijital. , , mafi aminci da sauri fiye da ECDSA. Daga ra'ayi na ƙarfin rubutun kalmomi, zaɓin girman maɓalli kuma abin tambaya ne - 32 bytes maimakon 64 bytes, yawanci ana amfani dashi don Ed25519, da kuma amfani. boye-boye mai ma'ana ta amfani da AES da biyun algorithms a cikin yanayin CFB.
An bayyana wannan hanyar ta hanyar buƙatar aiwatar da maɓallan matsayi, yana ba da damar yin amfani da tushen maɓalli na jama'a don cire maɓallin jama'a na yara, yin amfani da dukiyar layi na Curve25519. Wannan fasalin yana ba ku damar samun maɓallan jama'a na yara ba tare da sanin maɓallin tushen sirri ba. Wannan dabara kuma a cikin Bitcoin. An zaɓi girman maɓalli 32-byte don ba da damar maɓalli ya shiga cikin rikodin DNS guda ɗaya.
Bugu da ƙari, ana iya lura da shi tsarin aiki , ƙira don gina amintattun cibiyoyin sadarwar P2P. Cibiyoyin sadarwar da aka ƙirƙira ta amfani da GNUnet ba su da maki guda na gazawa kuma suna iya ba da garantin rashin keta bayanan sirri na masu amfani, gami da kawar da yuwuwar cin zarafi daga sabis na leƙen asiri da masu gudanarwa tare da samun dama ga nodes na cibiyar sadarwa. An yi alamar sakin a matsayin yana ɗauke da manyan canje-canjen ƙa'ida wanda ke karya daidaituwar baya tare da nau'ikan 0.12.x.
GNUnet yana goyan bayan ƙirƙirar hanyoyin sadarwar P2P akan TCP, UDP, HTTP/HTTPS, Bluetooth da WLAN, kuma yana iya aiki a yanayin F2F (Aboki-da-aboki). Ana tallafawa zirga-zirgar NAT, gami da amfani da UPnP da ICMP. Don magance jeri na bayanai, yana yiwuwa a yi amfani da tebur zanta da aka rarraba (DHT). Ana samar da kayan aikin tura cibiyoyin sadarwar raga. Don ba da zaɓi da soke haƙƙoƙin samun dama, ana amfani da sabis ɗin musayar sifa mai tantancewa , GNS (Tsarin Sunan GNU) da ɓoyayyen tushen sifa ().
Tsarin yana da ƙarancin amfani da albarkatu kuma yana amfani da tsarin gine-gine masu yawa don samar da keɓance tsakanin abubuwan haɗin gwiwa. Ana ba da kayan aiki masu sassauƙa don kiyaye rajistan ayyukan da tattara ƙididdiga. Don haɓaka aikace-aikacen ƙarshen amfani, GNUnet yana ba da API don yaren C da ɗaure don wasu harsunan shirye-shirye. Don sauƙaƙe ci gaba, an ba da shawarar yin amfani da madaukai da matakai maimakon zaren. Ya haɗa da ɗakin karatu na gwaji don tura cibiyoyin sadarwar gwaji ta atomatik wanda ke rufe dubun dubatar takwarorinsu.
Baya ga GNS, ana kuma haɓaka aikace-aikacen da aka yi da yawa bisa fasahar GNUnet:
- Sabis don raba fayil ɗin da ba a san shi ba, wanda baya ba ku damar bincika bayanai saboda canja wurin bayanai kawai a cikin rufaffen tsari kuma baya ba ku damar waƙa da wanda ya buga, bincika da zazzage fayilolin godiya ta hanyar amfani da ka'idar GAP.
- Tsarin VPN don ƙirƙirar ayyuka masu ɓoye a cikin yankin ".gnu" da tura IPv4 da IPv6 tunnels akan hanyar sadarwar P2P. Bugu da ƙari, ana tallafawa tsarin fassarar IPv4-to-IPv6 da IPv6-zuwa-IPv4, da kuma ƙirƙirar IPv4-over-IPv6 da IPv6-over-IPv4 tunnels.
- Sabis na Taɗi na GNUnet don yin kiran murya akan GNUnet. Ana amfani da GNS don gano masu amfani; ana watsa abubuwan da ke cikin zirga-zirgar murya ta hanyar ɓoyewa. Har yanzu ba a bayar da bayanin sirri ba - sauran takwarorinsu na iya bin hanyar haɗin kai tsakanin masu amfani biyu kuma su tantance adiresoshin IP ɗin su.
- Dandali don gina cibiyoyin sadarwar jama'a masu rarraba , ta amfani da yarjejeniya da kuma tallafawa rarraba sanarwa a cikin yanayin multicast ta amfani da ɓoye-ɓoye na ƙarshe-zuwa-ƙarshe ta yadda masu amfani kawai za su iya samun damar saƙonni, fayiloli, taɗi da tattaunawa (waɗanda ba a yi magana da saƙonnin ba, gami da masu kula da kumburi, ba za su iya karanta su ba. );
- Tsarin don tsara rufaffen imel , wanda ke amfani da GNUnet don kariyar metadata kuma yana tallafawa daban-daban don tabbatar da mahimmanci;
- Tsarin biyan kuɗi , wanda ke ba da sirri ga masu siye amma bin diddigin ma'amalar masu siyarwa don bayyana gaskiya da rahoton haraji. Yana goyan bayan aiki tare da kudade daban-daban na yanzu da kuɗin lantarki, gami da daloli, Yuro da bitcoins.
Manyan sabbin abubuwa a cikin GNUnet 0.13:
- An sanya rajistar ta aiki (GNUnet Assigned Numbers Authority), alhakin sanya sunaye da adireshi na GNUnet.
- Aiwatar da tsarin sunan yankin da ba a san shi ba GNS an daidaita shi da , da IETF ta gabatar. An inganta kayan aikin NSS “block” An ƙara sabbin tutoci na RARIYA don bayanan da ba a buga su kai tsaye ƙarƙashin alamar da aka bayar ba, amma mai warwarewa ya dawo da su. Ƙara gargadi ga gnunet-namestore mai amfani lokacin ƙara shigarwar TLSA ko SRV a wajen shigarwar. .
- A cikin maɓalli na soke tsarin (GNS/REVOCATION), aikin canza zuwa amfani da Argon2 hashing algorithm.
- A cikin sabis ɗin musanyar abubuwan ganowa (RECLAIM), an ƙara girman tikitin zuwa ragi 256.
- Kayan aikin sufuri, wanda ke amfani da ka'idar UDP don canja wurin bayanai, an motsa shi zuwa nau'in gwaji saboda matsalolin kwanciyar hankali;
- Tsarin fayil ɗin maɓallin ECDSA da hanyar keɓance maɓalli masu zaman kansu suna haɗe tare da wasu ɗakunan karatu (tsofaffin maɓallai ba za su ƙara yin aiki ba).
- Ana amfani da ɗakin karatu azaman aiwatar da algorithms na ɓoyewa bisa lanƙwasa elliptic .
- An ƙara ikon gina kayan aiki tare da ɗakin karatu na CURL, baya da alaƙa da gnutls.
- An dawo da sabar haɗin kai ta ci gaba .
- Abubuwan dogara sun haɗa da libmicrohttpd, libjansson da libsodium.
source: budenet.ru