Filippo Valsorda, onye na-ahụ maka nchekwa nke asụsụ mmemme Go na Google, ebipụtala ntọhapụ izizi nke ngwa nzuzo data ọhụrụ, Age (N'ezie Ezi Encryption). Ngwa ahụ na-enye interface ahịrị iwu dị mfe maka izo ya ezo faịlụ site na iji symmetric (paswọọdụ) na asymmetric (igodo ọha) algọridim cryptographic. Edere koodu oru ngo na Go wee kesaa n'okpuru ikikere BSD. A na-akwado ụlọ maka Linux, FreeBSD, macOS na Windows.
Agụnyere ọrụ ndị bụ isi n'ọbá akwụkwọ enwere ike iji tinye ọrụ ndị ọrụ ahụ na-enye n'ime mmemme gị. Iche iche, n'ime usoro nke ọrụ iwe iwe, a na-emepụta ihe ọzọ mmejuputa iwu na ụlọ akwụkwọ, nke e dere n'asụsụ Rust. Maka izo ya ezo, a na-eji algọridim egosipụtara: HKDF (HMAC dabeere na Extract-and-Expand Key Derivation Function), SHA-256, HMAC (koodu ozi dabere na Hash), X25519, Scrypt na ChaCha20-Poly1305 AEAD.
N'ime atụmatụ nke Age, ihe ndị a pụtara: ikike iji kọmpat 512-bit igodo ọha, na-ebufe ngwa ngwa site na bọọdụ; mfe iwu ahịrị interface bụghị juputara na nhọrọ; enweghị nhazi faịlụ; Enwere ike iji ya mee ihe na scripts yana jikọtara ya na akụrụngwa ndị ọzọ site na ịmepụta usoro oku na ụdị UNIX. Ha abụọ na-emepụta igodo kọmpat nke gị yana iji igodo SSH dị ("ssh-ed25519", "ssh-rsa") na-akwado, gụnyere nkwado maka faịlụ Github.keys. $ age-keygen -o key.txt Igodo ọha: age1ql3z7hjy58pw3hyww5ayyfg7zqgvc7w3j2elw2zmrj2kg5sfn9bqmcac8p $ tar cvz ~/data | age -r age1ql3z7hjy58pw3hyww5ayyfg7zqgvc7w3j2elw2zmrj2kg5sfn9bqmcac8p > data.tar.gz.age $ age --decrypt -i key.txt data.tar.gz.age > data.tar.gz/25519 afọ. > example.jpg.age $ age -d -i ~/.ssh/id_ed25519 example.jpg.age > example.jpg
Enwere ọnọdụ ezoro ezo faịlụ maka ọtụtụ ndị nnata n'otu oge, nke a na-ezobe faịlụ ahụ n'otu oge site na iji ọtụtụ igodo ọha na nke ọ bụla n'ime ndepụta ndị nnata nwere ike wepụ ya. A na-enyekwa ngwaọrụ maka izo ya ezo faịlụ gbadoro ụkwụ na paswọọdụ yana maka ichekwa faịlụ igodo nzuzo site na iji okwuntughe zoo ha. Akụkụ bara uru bụ na ọ bụrụ na itinye paswọọdụ oghere n'oge ezoro ezo, ọrụ ahụ ga-ewepụta ma nye paswọọdụ siri ike. $ age -p secrets.txt > secrets.txt.age Tinye okwuntughe (hapụ ihe efu ka imepụta nke echedoro): Iji passphrase emepụtara akpaaka "release-response-step-brand-wrap-ankle-pair-unusual-sword-train" . $ age -d secrets.txt.age > secrets.txt Tinye akpaokwu: $ age-keygen | Age -p> key.age.age Ọhaneze: Age1YHM4GFTWFMRPZ87TDSLM530WRX6M79YYGF9HDZTAHNEHNEHNEHNEHNEHNEHNEHPQRJPYX2 ENTER PASSPHRASE (Hapụ ihe efu gaa na Autogenate aCure One): Iji ST-BOD PassphASTRASNNKE OTU-INPUT-Omee".
Atụmatụ maka ọdịnihu gụnyere ịmepụta azụ azụ maka ịchekwa okwuntughe na ihe nkesa maka igodo nkekọrịta (PAKE), nkwado maka igodo YubiKey, ike ịmepụta igodo dị mfe icheta n'ụdị okwu, na ihe okike. nke akụrụngwa afọ-elu maka ịkwanye faịlụ ezoro ezo ma ọ bụ ebe nchekwa na FS.
isi: opennet.ru