ProHoster > Π‘Π»ΠΎΠ³ > xov xwm hauv internet > Tso tawm LibreSSL 3.1.0 thiab Botan 2.14.0 cryptographic tsev qiv ntawv

Tso tawm LibreSSL 3.1.0 thiab Botan 2.14.0 cryptographic tsev qiv ntawv

OpenBSD Project Developers hais tawm tso tawm ib tsab portable ntawm lub pob LibreSSL 3.1.0, nyob rau hauv uas lub diav rawg ntawm OpenSSL tab tom tsim, txhawm rau muab kev ruaj ntseg ntau dua. Txoj haujlwm LibreSSL tau tsom mus rau kev txhawb nqa zoo rau SSL / TLS raws tu qauv los ntawm kev tshem tawm cov haujlwm tsis tsim nyog, ntxiv cov yam ntxwv kev ruaj ntseg ntxiv, thiab ua kom huv thiab rov ua haujlwm ntawm lub hauv paus code. LibreSSL 3.1.0 tso tawm yog suav tias yog kev sim tso tawm uas tsim cov yam ntxwv uas yuav suav nrog hauv OpenBSD 6.7.

Nta ntawm LibreSSL 3.1.0:

  • Thawj qhov kev siv ntawm TLS 1.3 yog npaj los ntawm lub xeev lub tshuab tshiab thiab lub subsystem rau kev ua haujlwm nrog cov ntaub ntawv. Los ntawm lub neej ntawd, tsuas yog cov neeg siv khoom ib feem ntawm TLS 1.3 tau qhib rau tam sim no; cov neeg rau zaub mov ib feem tau npaj kom qhib los ntawm lub neej ntawd hauv kev tso tawm yav tom ntej.
  • Cov cai tau raug ntxuav, raws tu qauv parsing thiab kev tswj nco tau raug txhim kho.
  • Txoj hauv kev RSA-PSS thiab RSA-OAEP tau hloov los ntawm OpenSSL 1.1.1.
  • Kev nqis tes ua tau txav los ntawm OpenSSL 1.1.1 thiab qhib los ntawm lub neej ntawd CMS (Cryptographic Message Syntax). Cov lus txib "cms" tau raug ntxiv rau cov khoom siv openssl.
  • Txhim kho kev sib raug zoo nrog OpenSSL 1.1.1 los ntawm kev xa rov qab qee qhov kev hloov pauv.
  • Ntxiv cov txheej txheem loj ntawm cov kev xeem cryptographic tshiab.
  • Tus cwj pwm ntawm EVP_chacha20() yog ze rau cov lus hais ntawm OpenSSL.
  • Ntxiv lub peev xwm los teeb tsa qhov chaw ntawm lub teeb nrog cov ntawv pov thawj txoj cai.
  • Hauv cov khoom siv openssl, cov lus txib "req" siv qhov "-addext" kev xaiv.

Ntxiv rau, nws tuaj yeem sau tseg tso tawm cryptographic tsev qiv ntawv 2.14.0, siv nyob rau hauv qhov project NeoPG, ib rab diav rawg ntawm GnuPG 2. Lub tsev qiv ntawv muab cov ntawv sau loj npaj ua primitives, siv nyob rau hauv TLS raws tu qauv, X.509 daim ntawv pov thawj, AEAD ciphers, TPMs, PKCS#11, password hashing, thiab post-quantum cryptography (hash-raws li kos npe thiab cov lus pom zoo raws li McEliece thiab NewHope). Lub tsev qiv ntawv tau sau hauv C ++ 11 thiab nkag rau hauv raws li BSD daim ntawv tso cai.

Ntawm cov kev hloov Hauv qhov teeb meem tshiab ntawm Botan:

  • Ntxiv kev siv ntawm hom GCM (Galois / Counter Mode), nrawm rau POWER8 processors siv VPSUMD vector qhia.
  • Rau ARM thiab POWER systems, kev ua haujlwm ntawm vector permutation ua haujlwm rau AES nrog lub sijhawm ua tiav tas li tau nrawm nrawm.
  • Ib qho tshiab modulo inversion algorithm tau raug npaj, uas yog sai dua thiab zoo dua tiv thaiv kev tawm tsam sab-channel.
  • Optimizations tau ua kom ceev ECDSA / ECDH los ntawm kev txo NIST teb.

Tau qhov twg los: opennet.ru

Ntxiv ib saib