Amazon yakhazikitsa aws-lc-rs, laibulale ya cryptographic yopangidwa kuti igwiritsidwe ntchito mu Rust application komanso yogwirizana pamlingo wa API ndi laibulale ya Rust ring. Khodi ya polojekitiyi imagawidwa pansi pa Apache 2.0 ndi ISC. Laibulale imathandizira ntchito pamapulatifomu a Linux (x86, x86-64, aarch64) ndi macOS (x86-64).
Kukhazikitsidwa kwa ntchito za cryptographic mu aws-lc-rs kumachokera ku laibulale ya AWS-LC (AWS libcrypto), yolembedwa mu C ++ ndipo, motengera code yochokera ku polojekiti ya BoringSSL (foloko ya OpenSSL yothandizidwa ndi Google). Kuphatikiza apo, mapaketi awiri otsika amapangidwa: aws-lc-sys (odzipangira okha zomangira zapansi pa AWS-LC) ndi aws-lc-fips-sys (zokulunga zotsika kutengera FFI (Foreign Function Interface) , kupanganso AWS-LC API.
Laibulale ya AWS-LC imaphatikizapo kukhazikitsidwa kotsimikizika kwa SHA-2, HMAC, AES-GCM, AES-KWP, HKDF, ECDH, ndi ma algorithms a ECDSA omwe amakwaniritsa zofunikira pamakina obisika omwe angagwiritsidwe ntchito ndi mabungwe aboma ku United States ndi Canada. Kupanga dongosolo la chilankhulo cha dzimbiri kunayendetsedwa ndi kufunikira kwa malaibulale ogwirizana ndi FIPS-crypto omwe angagwiritsidwe ntchito m'mapulojekiti a Rust. Mu laibulale ya aws-lc-rs, Amazon idaganiza zophatikizira Ring API yodziwika bwino komanso yofala pakati pa opanga mapulogalamu a Rust ndikutsimikizira kukhazikitsidwa kwa ma algorithms kuchokera ku laibulale ya AWS-LC yomwe imagwirizana ndi zofunikira za FIPS.
Kugwiritsa ntchito laibulale ya AWS-LC ngati maziko kunapangitsanso kugwiritsa ntchito kukhathamiritsa kwapadera kopangidwa ndi Amazon mu aws-lc-rs. Mwachitsanzo, AWS-LC imapereka mitundu yosiyanasiyana ya ChaCha20-Poly1305 ndi NIST P-256 ma aligorivimu omwe amakonzedwa padera pa mapurosesa a ARM, komanso kukhathamiritsa kwakukulu kwa makina a x86 omwe amafulumizitsa kusaina kwa siginecha ya digito ya ECDSA. Poyesa ma protocol a TLS 1.2 ndi 1.3, laibulale ya aws-lc-rs idachita bwino kwambiri kuposa phukusi la rustls, kuwonetsa kuchepetsedwa kwa nthawi yolumikizira kulumikizana komanso kuchulukira kwazomwe zimachitika (kuposa kuwirikiza kawiri pamayeso a ECDSA).
Source: opennet.ru