Ndị na-agba ọsọ ahụ jiri akụkụ nke protocol OpenPGP mara kemgbe ihe karịrị afọ iri.
Anyị na-agwa gị ihe isi ihe bụ na ihe kpatara na ha enweghị ike imechi ya.
/Akụkụba/
Nsogbu netwọkụ
N'etiti June, amaghị gaa na netwọk nke sava igodo cryptographic , wuru na OpenPGP protocol. Nke a bụ ọkọlọtọ IETF (), nke a na-eji ezochi email na ozi ndị ọzọ. Emepụtara netwọk SKS afọ iri atọ gara aga iji kesaa asambodo ọha. Ọ gụnyere ngwaọrụ ndị dị ka maka izo ya ezo data na imepụta mbinye aka dijitalụ eletrọnịkị.
Ndị hackers mebiri asambodo nke ndị na-elekọta ọrụ GnuPG abụọ, Robert Hansen na Daniel Gillmor. Ibunye asambodo mebiri emebi site na ihe nkesa na-eme ka GnuPG daa—usoro ahụ na-akwụsịtụ. Enwere ihe mere ị ga-eji kwenye na ndị na-awakpo ahụ agaghị akwụsị ebe ahụ, na ọnụ ọgụgụ nke asambodo emebi emebi ga-abawanye. Ka ọ dị ugbu a, a ka amabeghị oke nsogbu ahụ.
Ihe kacha mkpa nke mwakpo ahụ
Ndị na-agba ọsọ na-eji ohere adịghị ike na protocol OpenPGP. Ndị obodo mara ya kemgbe ọtụtụ iri afọ. Ọbụna na GitHub kwekọrọ ekwekọ erigbu. Ma ka ọ dị ugbu a ọ dịghị onye ọ bụla ewerela ọrụ maka imechi "oghere" (anyị ga-ekwu maka ihe kpatara ya n'ụzọ zuru ezu mgbe e mesịrị).
Nhọrọ ole na ole sitere na blọọgụ anyị na Habré:
Dabere na nkọwapụta OpenPGP, onye ọ bụla nwere ike itinye mbinye aka dijitalụ na asambodo iji nyochaa onye nwe ya. Ọzọkwa, ọnụ ọgụgụ kacha elu nke mbinye aka adịghị ahazi n'ụzọ ọ bụla. Na ebe a nsogbu na-ebilite - netwọk SKS na-enye gị ohere itinye ihe ruru 150 puku mbinye aka na otu akwụkwọ, ma GnuPG anaghị akwado ọnụ ọgụgụ dị otú ahụ. Yabụ, mgbe ị na-ebugo asambodo ahụ, GnuPG (yana mmemme OpenPGP ndị ọzọ) kwụsịrị.
Otu n'ime ndị na -eji - mbubata asambodo were ya ihe dị ka nkeji iri. Asambodo ahụ nwere ihe karịrị 10 puku mbinye aka, na ibu ya bụ 54 MB:
$ gpg --homedir=$PWD --recv C4BC2DDB38CCE96485EBE9C2F20691179038E5C6
gpg: key F20691179038E5C6: 4 duplicate signatures removed
gpg: key F20691179038E5C6: 54614 signatures not checked due to missing keys
gpg: key F20691179038E5C6: 4 signatures reordered
gpg: key F20691179038E5C6: public key "Daniel Kahn Gillmor <[email protected]>" imported
gpg: no ultimately trusted keys found
gpg: Total number processed: 1
gpg: imported: 1
$ ls -lh pubring.gpg
-rw-r--r-- 1 filippo staff 17M 2 Jul 16:30 pubring.gpg
Iji mee ka ihe ka njọ, OpenPGP igodo sava anaghị ewepụ ozi asambodo. Emere nke a ka ị nwee ike were asambodo wee gbochie ngbanwe ha. Ya mere, ọ gaghị ekwe omume ikpochapụ ihe ndị mebiri emebi.
N'ezie, netwọk SKS bụ nnukwu "ihe nkesa faịlụ" nke onye ọ bụla nwere ike ide data. Iji gosi nsogbu ahụ, onye bi na GitHub n'afọ gara aga , nke na-echekwa akwụkwọ na netwọk nke sava igodo cryptographic.
Gịnị kpatara na emechighị adịghị ike ahụ?
Enweghị ihe kpatara imechi adịghị ike ahụ. Na mbụ, ejighị ya maka mwakpo hacker. Ọ bụ ezie na obodo IT Ndị mmepe SKS na OpenPGP kwesịrị ịṅa ntị na nsogbu ahụ.
Iji mee ihe ziri ezi, ọ dị mkpa iburu n'obi na na June ha ka ihe nkesa igodo nnwale . Ọ na-enye nchebe megide ụdị ọgụ ndị a. Agbanyeghị, ebe nchekwa data ya sitere na ọkọ, yana sava n'onwe ya abụghị akụkụ nke SKS. Ya mere, ọ ga-ewe oge tupu e nwee ike iji ya mee ihe.
/Akụkụba/
Banyere ahụhụ dị na sistemụ izizi, usoro mmekọrịta dị mgbagwoju anya na-egbochi idozi ya. Edeburu netwọkụ isi ihe nkesa dịka ihe akaebe maka tesis PhD Yaron Minsky. Ọzọkwa, a họọrọ otu asụsụ, OCaml, maka ọrụ ahụ. Site na Onye na-echekwa Robert Hansen, koodu ahụ siri ike nghọta, yabụ na ọ bụ naanị obere mmezi ka a na-eme ya. Iji megharịa ihe owuwu SKS, a ga-edegharị ya site na ọkọ.
N'ọnọdụ ọ bụla, GnuPG ekwenyeghị na a ga-edozi netwọkụ ahụ. Na post na GitHub, ndị mmepe dere ọbụna na ha anaghị akwado ịrụ ọrụ na SKS Keyserver. N'ezie, nke a bụ otu n'ime isi ihe kpatara ha ji malite mgbanwe gaa na igodo ọrụ ọhụrụ.openpgp.org. Anyị nwere ike na-ekiri n'ihu mmepe nke ihe omume.
Ihe ole na ole sitere na blọọgụ ụlọ ọrụ anyị:
isi: www.habr.com