Mgbe afọ ise nke mmepe gachara, ewepụtara ntọhapụ nke GnuPG 2.4.0 (GNU Privacy Guard) Toolkit, dakọtara na OpenPGP (RFC-4880) na ụkpụrụ S/MIME, na-enye akụrụngwa maka izo ya ezo data, na-arụ ọrụ na electronic mbinye aka, isi. njikwa na ịnweta igodo nchekwa ọha.
A na-edobe GnuPG 2.4.0 dị ka ntọhapụ mbụ nke alaka ụlọ ọrụ kwụsiri ike, nke na-agụnye mgbanwe agbakọba n'oge nkwadebe nke mwepụta 2.3.x. Ahapụla alaka 2.2 na alaka ochie kwụsiri ike, nke a ga-akwado ruo njedebe nke 2024. Alaka GnuPG 1.4 na-aga n'ihu na-edobe ya dị ka usoro kpochapụwo nke na-eri obere akụrụngwa, dabara maka sistemụ agbakwunyere, yana dakọtara na algọridim nzuzo nzuzo.
Mgbanwe dị mkpa na GnuPG 2.4 ma e jiri ya tụnyere ngalaba kwụsiri ike gara aga 2.2:
- Agbakwunyela usoro ndabere iji mejuputa isi nchekwa data, na-eji SQLite DBMS maka nchekwa yana gosipụta igodo na-achọ ngwa ngwa. Iji mee ka ebe nchekwa ọhụrụ ahụ nwee ike, ị ga-emerịrị nhọrọ "use-keyboxd" na common.conf.
- Usoro ndabere tpm2d agbakwunyere iji kwe ka ibe TPM 2.0 chedo igodo nzuzo wee rụọ ọrụ nzuzo ma ọ bụ ọrụ mbinye aka dijitalụ n'akụkụ modul TPM.
- Agbakwunyela akụrụngwa gpg-kaadị ọhụrụ, nke enwere ike iji dị ka ihe na-agbanwe agbanwe maka ụdị kaadị smart niile akwadoro.
- Agbakwunyere akụrụngwa gpg-auth ọhụrụ maka nyocha.
- Agbakwunyere faịlụ nhazi ọhaneze ọhụrụ, common.conf, nke a na-eji mee ka usoro ndabere igodo igbe na-agbakwunyeghị ntọala na gpg.conf na gpgsm.conf iche.
- A na-enye nkwado maka ụdị igodo nke ise na mbinye aka dijitalụ, nke na-eji SHA256 algọridim kama SHA1.
- Algọridim ndabara maka igodo ọha bụ ed25519 na cv25519.
- Nkwado agbakwunyere maka ụdịdị nzuzo nzuzo AEAD OCB na EAX.
- Nkwado agbakwunyere maka akụkụ elliptik X448 (ed448, cv448).
- Ekwenyere iji aha otu na ndetu igodo.
- Agbakwunyere nhọrọ "--chuid" na gpg, gpgsm, gpgconf, gpg-card na gpg-connect-agent iji gbanwee ID onye ọrụ.
- N'elu ikpo okwu Windows, a na-emejuputa nkwado Unicode zuru oke na ahịrị iwu.
- Nhọrọ iwu agbakwunyere "--with-tss" iji họrọ ọba akwụkwọ TSS.
- gpgsm na-agbakwunye nkwado ECC bụ isi yana ikike ịmepụta asambodo EdDSA. Nkwado agbakwunyere maka ibelata data ezoro ezo site na iji paswọọdụ. Nkwado agbakwunyere maka mwepu AES-GCM. agbakwunyere nhọrọ ọhụrụ "--ldapserver" na "--show-certs".
- Onye nnọchite anya na-enye ohere iji uru "Label:" dị na faịlụ igodo iji hazie ngwa ngwa PIN. Nkwado etinyere maka ndọtị onye nnọchite ssh maka mgbanwe gburugburu ebe obibi. agbakwunyere ihe nṅomi Win32-OpenSSH site na onye nnọchite gpg. Iji mepụta mkpịsị aka mkpịsị aka nke igodo SSH, SHA-256 algọridim na-eji ndabara. agbakwunyere nhọrọ "--pinentry-formatted-passphrase" na "-check-sym-passphrase-pattern".
- Scd emelitere nkwado maka ịrụ ọrụ na ọtụtụ ndị na-agụ kaadị na akara ngosi. E tinyela ikike iji ọtụtụ ngwa nwere kaadi smart akọwapụtara. Nkwado agbakwunyere maka kaadị PIV, Telesec Signature Cards v2.0 na Rohde&Schwarz Cybersecurity. agbakwunyere nhọrọ ọhụrụ "--application-priority" na "--pcsc-Shared".
- Agbakwunyela nhọrọ "--show-configs" na ngwa gpgconf.
- Mgbanwe na gpg:
- Oke agbakwunyere "--list-filter" maka ịhọpụta ndepụta igodo, dịka ọmụmaatụ "gpg -k --list-filter 'select=revoked-f && sub/algostr=ed25519′".
- Iwu ọhụrụ na nhọrọ agbakwunyere: "--quick-update-pref", "show-pref", "show-pref-verbose", "-export-filter export-revocs", "-full-timestrings", "-min - rsa-ogologo", "-forbid-gen-key", "--override-compliance-check", "-force-sign-key" na "--no-auto-trust-New-key".
- Nkwado agbakwunyere maka ibubata ndetu mwepu akwụkwọ omenala.
- Nkwenye nke mbinye aka dijitalụ agbagoro ugboro iri ma ọ bụ karịa.
- Nsonaazụ nkwenye ugbu a dabere na nhọrọ “--sender” yana ID nke onye okike mbinye aka.
- Agbakwunyere ike mbupụ igodo Ed448 maka SSH.
- Naanị ụdị OCB ka anabatara maka izo ya ezo AEAD.
- A na-anabata ntọhapụ na-enweghị igodo ọha ma ọ bụrụ na etinyere kaadị smart.
- Maka ed448 na cv448 algọridim, enyerela ike imepụta igodo nke ụdị nke ise ugbu a n'ike.
- Mgbe ị na-ebubata site na ihe nkesa LDAP, nhọrọ nke-sigs-naanị nwere nkwarụ na ndabara.
- gpg anaghịzi eji 64-bit ngọngọ algọridim maka izo ya ezo. Amachibidoro iji 3DES, ma kwupụta AES dị ka algọridim kacha nta akwadoro. Iji gbanyụọ mmachi ahụ, ịnwere ike iji nhọrọ "--allow-old-cipher-algos".
- Ewepụla akụrụngwa symcryptrun (ihe mkpuchi emechiela n'elu akụrụngwa Chiasmus dị na mpụga).
- Ụzọ nchọta igodo PKA akwụsịla ma wepụrụ nhọrọ ndị metụtara ya.
isi: opennet.ru