PKCS # 11 (Cryptoki) yog tus qauv tsim los ntawm RSA Laboratories rau kev sib koom ua haujlwm nrog cryptographic tokens, daim npav ntse, thiab lwm yam khoom siv zoo sib xws uas siv cov kev sib koom ua ke sib koom ua ke uas tau siv los ntawm cov tsev qiv ntawv.
PKCS # 11 tus qauv rau Lavxias teb sab crypto txiaj tau txais kev txhawb nqa los ntawm pawg kws tshaj lij txuj ci "Cryptographic Information Protection" ().
Yog tias peb tham txog tokens nrog kev txhawb nqa rau Lavxias teb sab cryptography, ces peb tuaj yeem tham txog software tokens, software thiab hardware tokens thiab hardware tokens.
Cryptographic tokens muab ob qho tib si khaws cov ntawv pov thawj thiab cov khub tseem ceeb (public thiab ntiag tug cov yawm sij) thiab kev ua haujlwm ntawm kev ua haujlwm cryptographic raws li PKCS # 11 tus qauv. Qhov tsis muaj zog txuas ntawm no yog qhov khaws cia ntawm tus yuam sij ntiag tug. Yog tias tus yuam sij pej xeem ploj lawm, koj tuaj yeem rov qab tau nws siv tus yuam sij ntiag tug lossis nqa los ntawm daim ntawv pov thawj. Kev poob / kev puas tsuaj ntawm tus yuam sij ntiag tug muaj qhov tshwm sim loj heev, piv txwv li, koj yuav tsis tuaj yeem decrypt cov ntaub ntawv encrypted nrog koj tus yuam sij rau pej xeem, thiab koj yuav tsis muaj peev xwm sau npe hauv hluav taws xob (ES). Txhawm rau tsim kom muaj kev kos npe hauv hluav taws xob, koj yuav tsum tsim kom muaj tus khub tseem ceeb tshiab thiab, rau qee cov nyiaj, tau txais daim ntawv pov thawj tshiab los ntawm ib qho ntawm cov ntawv pov thawj.
Saum toj no peb tau hais txog software, firmware thiab hardware tokens. Tab sis peb tuaj yeem xav txog lwm hom cryptographic token - huab.
Hnub no koj yuav tsis surprise leej twg Cov. Txhua huab flash drives yuav luag zoo ib yam li cov huab token.
Qhov tseem ceeb ntawm no yog kev ruaj ntseg ntawm cov ntaub ntawv khaws cia hauv huab token, feem ntau yog cov yuam sij ntiag tug. Huab token puas tuaj yeem muab qhov no? Peb hais - YOG!
Yog li cas huab token ua haujlwm li cas? Thawj kauj ruam yog sau npe tus neeg siv khoom hauv huab token. Txhawm rau ua qhov no, yuav tsum muaj cov khoom siv hluav taws xob uas tso cai rau koj nkag mus rau huab thiab sau npe koj tus ID nkag mus / npe menyuam yaus hauv nws:
Tom qab sau npe hauv huab, tus neeg siv yuav tsum pib nws lub cim, uas yog teeb tsa lub cim cim npe thiab, qhov tseem ceeb tshaj plaws, teeb tsa SO-PIN thiab tus neeg siv tus lej PIN. Cov kev hloov pauv no yuav tsum tau ua dhau ntawm kev ruaj ntseg / encrypted channel nkaus xwb. Cov khoom siv pk11conf yog siv los pib lub token. Txhawm rau encrypt cov channel, nws tau thov kom siv encryption algorithm Magma-CTR (GOST R 34.13-2015).
Txhawm rau txhim kho tus yuam sij pom zoo raws li kev tsheb khiav ntawm tus neeg siv khoom thiab cov neeg rau zaub mov yuav raug tiv thaiv / encrypted, nws tau thov kom siv cov txheej txheem pom zoo TK 26 - .
Nws tau thov kom siv raws li tus password raws li qhov sib koom tus yuam sij yuav raug tsim tawm . Txij li thaum peb tab tom tham txog Lavxias teb sab cryptography, nws yog ib qho tsim nyog los tsim cov passwords ib zaug siv cov txheej txheem CKM_GOSTR3411_12_256_HMAC, CKM_GOSTR3411_12_512_HMAC los yog CKM_GOSTR3411_HMAC.
Kev siv cov txheej txheem no ua kom ntseeg tau tias kev nkag mus rau tus kheej token cov khoom hauv huab los ntawm SO thiab USER PIN cov lej tsuas yog muaj rau cov neeg siv uas tau teeb tsa lawv siv cov khoom siv hluav taws xob. pk11 ua.
Ntawd yog nws, tom qab ua tiav cov kauj ruam no, huab token tau npaj siv. Txhawm rau nkag mus rau huab token, koj tsuas yog yuav tsum tau nruab LS11CLOUD lub tsev qiv ntawv ntawm koj lub PC. Thaum siv huab token hauv daim ntawv thov ntawm Android thiab iOS platforms, muaj SDK sib raug. Nws yog lub tsev qiv ntawv no uas yuav tau teev tseg thaum txuas cov huab token hauv Redfox browser lossis sau rau hauv cov ntaub ntawv pkcs11.txt rau. Lub tsev qiv ntawv LS11CLOUD kuj cuam tshuam nrog lub token hauv huab los ntawm kev ruaj ntseg channel raws li SESPAKE, tsim thaum hu rau PKCS#11 C_Initialize muaj nuj nqi!
Ntawd yog tag nrho, tam sim no koj tuaj yeem xaj daim ntawv pov thawj, nruab rau hauv koj lub token huab thiab mus rau tsoomfwv cov kev pabcuam lub vev xaib.
Tau qhov twg los: www.hab.com