Amazon tau tshaj tawm cov tsev qiv ntawv cryptographic aws-lc-rs, uas yog npaj rau siv hauv Rust daim ntaub ntawv thiab yog API-tshaj nrog lub nplhaib Rust tsev qiv ntawv. Txoj haujlwm code raug faib raws li Apache 2.0 thiab ISC cov ntawv tso cai. Lub tsev qiv ntawv txhawb Linux (x86, x86-64, aarch64) thiab macOS (x86-64) platforms.
Kev siv cryptographic ua haujlwm hauv aws-lc-rs yog ua raws li AWS-LC lub tsev qiv ntawv (AWS libcrypto), sau hauv C ++ thiab dhau los ua raws li cov cai los ntawm BoringSSL qhov project (a Google-tso offshoot ntawm OpenSSL). Tsis tas li ntawd, ob lub pob crate qis tau npaj siab: aws-lc-sys (auto-generated low-level bindings over AWS-LC) and aws-lc-fips-sys (low-level bindings based on FFI (Foreign Function Interface) ), reproducing AWS-LC API.
Lub tsev qiv ntawv AWS-LC suav nrog kev ua pov thawj tseeb ntawm SHA-2, HMAC, AES-GCM, AES-KWP, HKDF, ECDH, thiab ECDSA algorithms uas ua tau raws li qhov yuav tsum tau ua rau cov txheej txheem cryptographic uas tuaj yeem siv los ntawm tsoomfwv cov koomhaum hauv Tebchaws Meskas. thiab Canada. Tsim kom muaj kev sib txuas ntawm xeb yog tsav los ntawm qhov xav tau kom muaj FIPS-raws li cov tsev qiv ntawv crypto uas tuaj yeem siv rau hauv cov haujlwm Rust. Hauv cov tsev qiv ntawv aws-lc-rs, Amazon tau txiav txim siab los ua ke Ring API, uas paub zoo thiab feem ntau ntawm Rust programmers, thiab txheeb xyuas qhov kev siv ntawm algorithms los ntawm AWS-LC lub tsev qiv ntawv uas ua raws li FIPS cov cai.
Kev siv lub tsev qiv ntawv AWS-LC los ua lub hauv paus tseem ua rau nws muaj peev xwm siv tag nrho cov kev txhim kho tshwj xeeb tsim los ntawm Amazon hauv aws-lc-rs. Piv txwv li, AWS-LC muab kev xaiv rau ChaCha20-Poly1305 thiab NIST P-256 algorithms uas tau cais ua kom zoo rau ARM processors, thiab kev ua kom zoo tshaj plaws rau x86 systems tau ua kom ceev cov txheej txheem ECDSA digital kos npe. Thaum kuaj kev ua haujlwm ntawm TLS 1.2 thiab 1.3 cov txheej txheem, cov tsev qiv ntawv aws-lc-rs ua tau zoo dua cov pob rustls raws li kev ua tau zoo, ua kom pom ob qho tib si txo qis hauv kev sib txuas lub sijhawm thiab kev nce ntxiv (ntau dua ob zaug hauv ECDSA kev xeem).
Tau qhov twg los: opennet.ru