Mamembala a Google Security Team asindikiza laibulale yotseguka, Paranoid, yopangidwa kuti izindikire zinthu zofooka za cryptographic, monga makiyi a anthu ndi siginecha za digito, zopangidwa mu hardware yovuta (HSM) ndi mapulogalamu a mapulogalamu. Khodiyo idalembedwa mu Python ndikugawidwa pansi pa layisensi ya Apache 2.0.
Pulojekitiyi ingakhale yothandiza pakuwunika mosadukiza kagwiritsidwe ntchito ka ma aligorivimu ndi malaibulale omwe adziwa mipata ndi zofooka zomwe zimakhudza kudalirika kwa makiyi opangidwa ndi siginecha ya digito ngati zinthu zomwe zikutsimikiziridwa zimapangidwa ndi zida zomwe sizingatsimikizidwe kapena zida zotsekedwa zomwe zimayimira bokosi lakuda. Laibulale imathanso kusanthula manambala achinyengo kuti atsimikizire kudalirika kwa jenereta yawo, komanso kuchokera mgulu lalikulu lazinthu zakale, zindikirani zovuta zomwe zidadziwika kale chifukwa cha zolakwika zamapulogalamu kapena kugwiritsa ntchito majenereta osadalirika a pseudorandom.
Mukamagwiritsa ntchito laibulale yomwe mukufuna kuti muwone zomwe zili mu chipika chapagulu cha CT (Certificate Transparency), chomwe chimaphatikizapo zambiri za ziphaso zopitilira mabiliyoni 7, palibe makiyi ovutitsa anthu otengera ma elliptic curves (EC) ndi siginecha ya digito yozikidwa pa algorithm ya ECDSA. , koma makiyi a anthu ovuta adapezeka potengera ndondomeko ya RSA. Makamaka, makiyi osadalirika 3586 adadziwika omwe adapangidwa ndi code yokhala pachiwopsezo chosakhazikika CVE-2008-0166 mu phukusi la OpenSSL la Debian, makiyi 2533 okhudzana ndi chiwopsezo cha CVE-2017-15361 mu library ya Infineon, ndi makiyi 1860 Chiwopsezo chokhudzana ndi kusaka kwagawo lalikulu kwambiri (GCD). Zambiri za satifiketi zovuta zomwe zikugwiritsidwabe ntchito zatumizidwa kwa oyang'anira certification kuti awachotse.
Source: opennet.ru