Pulogalamu ya ProHoster > Blog > nkhani zapaintaneti > Kutulutsidwa kwa laibulale ya cryptographic wolfSSL 5.0.0

Kutulutsidwa kwa laibulale ya cryptographic wolfSSL 5.0.0

Kutulutsidwa kwatsopano kwa laibulale ya compact cryptographic laibulale yolfSSL 5.0.0 ilipo, yokongoletsedwa kuti igwiritsidwe ntchito pazida zophatikizika ndi zotsekereza kukumbukira monga zida za intaneti ya Zinthu, makina apanyumba anzeru, makina azidziwitso zamagalimoto, ma routers ndi mafoni am'manja. Khodiyo imalembedwa m'chinenero cha C ndikugawidwa pansi pa layisensi ya GPLv2.

Laibulaleyi imapereka magwiridwe antchito apamwamba a ma aligorivimu amakono a cryptographic, kuphatikiza ChaCha20, Curve25519, NTRU, RSA, Blake2b, TLS 1.0-1.3 ndi DTLS 1.2, zomwe malinga ndi omwe akupanga ndizophatikizika ka 20 kuposa kukhazikitsidwa kwa OpenSSL. Imapereka API yake yophweka komanso yosanjikiza kuti igwirizane ndi OpenSSL API. Pali chithandizo cha OCSP (Online Certificate Status Protocol) ndi CRL (Mndandanda Wochotsa Satifiketi) powona kuchotsedwa kwa satifiketi.

Zatsopano zazikulu za wolfSSL 5.0.0:

  • Zowonjezera zothandizira papulatifomu: IoT-Safe (ndi chithandizo cha TLS), SE050 (yokhala ndi RNG, SHA, AES, ECC ndi ED25519 thandizo) ndi Renesas TSIP 1.13 (ya RX72N microcontrollers).
  • Thandizo lowonjezera la ma algorithms a post-quantum cryptography omwe amalephera kusankha pakompyuta yochulukira: magulu a NIST Round 3 KEM a TLS 1.3 ndi magulu osakanizidwa a NIST ECC kutengera pulojekiti ya OQS (Open Quantum Safe, liboqs). Magulu omwe amatsutsana ndi kusankhidwa pa kompyuta ya quantum nawonso awonjezedwa ku gawoli kuti atsimikizire kuti akugwirizana. Thandizo la ma algorithms a NTRU ndi QSH lathetsedwa.
  • Ma module a Linux kernel amapereka chithandizo cha ma cryptographic algorithms omwe amagwirizana ndi FIPS 140-3 chitetezo muyezo. Chogulitsa china chimaperekedwa ndi kukhazikitsidwa kwa FIPS 140-3, code yomwe idakali pa siteji ya kuyesa, kuwunikira ndi kutsimikizira.
  • Zosintha za RSA, ECC, DH, DSA, AES/AES-GCM ma aligorivimu, ofulumizitsidwa pogwiritsa ntchito x86 CPU vekitala malangizo, awonjezedwa ku gawo la Linux kernel. Pogwiritsa ntchito malangizo a vector, zosokoneza zimafulumizitsanso. Thandizo lowonjezera la kagawo kakang'ono kowunika ma module pogwiritsa ntchito siginecha ya digito. Ndizotheka kupanga injini yophatikizidwa ya wolfCrypt crypto mu "-enable-linuxkm-pie" (malo odziyimira pawokha). Gawoli limapereka chithandizo cha Linux kernels 3.16, 4.4, 4.9, 5.4 ndi 5.10.
  • Kuonetsetsa kuti zikugwirizana ndi malaibulale ena ndi mapulogalamu, chithandizo cha libssh2, pyOpenSSL, libimobiledevice, rsyslog, OpenSSH 8.5p1 ndi Python 3.8.5 yawonjezedwa pamtanda.
  • Onjezani gawo lalikulu la ma API atsopano, kuphatikiza EVP_blake2, wolfSSL_set_client_CA_list, wolfSSL_EVP_sha512_256, wc_Sha512*, EVP_shake256, SSL_CIPHER_*, SSL_SESSION_*, ndi zina.
  • Kukonza ziwopsezo ziwiri zomwe zimawonedwa ngati zabwinobwino: kupachika popanga masiginecha a digito a DSA okhala ndi magawo ena ndikutsimikizira kolakwika kwa ziphaso zokhala ndi mayina angapo azinthu mukamagwiritsa ntchito ziletso za mayina.

Source: opennet.ru

Kuwonjezera ndemanga