ProHoster > Blog > internet nhau > Kuburitswa kwecryptographic library wolfSSL 5.0.0

Kuburitswa kwecryptographic library wolfSSL 5.0.0

Kuburitswa kutsva kwecompact cryptographic raibhurari wolfSSL 5.0.0 iripo, yakagadziridzwa kuti ishandiswe pa processor- uye ndangariro-inomanikidzirwa zvakamisikidzwa michina yakadai seInternet Yezvinhu Zvishandiso, smart home system, mota dzeruzivo masisitimu, marauta uye nharembozha. Iyo kodhi yakanyorwa mumutauro weC uye yakagoverwa pasi peGPLv2 rezinesi.

Iyo raibhurari inopa yakakwira-inoshanda mashandisirwo emazuva ano cryptographic algorithms, anosanganisira ChaCha20, Curve25519, NTRU, RSA, Blake2b, TLS 1.0-1.3 uye DTLS 1.2, iyo maererano nevagadziri inopeta kamakumi maviri pane kuita kubva kuOpenSSL. Inopa ese ayo akarerutswa API uye layer yekuenderana neOpenSSL API. Pane tsigiro yeOCSP (Online Certificate Status Protocol) uye CRL (Sitifiketi Revocation Rondedzero) yekutarisa kubvisirwa zvitupa.

Hunhu hutsva hwewolfSSL 5.0.0:

  • Yakawedzerwa rutsigiro rwepuratifomu: IoT-Safe (ine TLS rutsigiro), SE050 (ine RNG, SHA, AES, ECC uye ED25519 rutsigiro) uye Renesas TSIP 1.13 (yeRX72N microcontrollers).
  • Yakawedzerwa rutsigiro rwepost-quantum cryptography algorithms inoramba kusarudzwa pahuwandu hwekombuta: NIST Round 3 KEM mapoka eTLS 1.3 uye mahybrid NIST ECC mapoka akavakirwa paOQS (Open Quantum Safe, liboqs) chirongwa. Mapoka anoramba kusarudzwa pa quantum komputa akawedzerwawo kune layer kuti ave nechokwadi chekuenderana. Tsigiro yeNTRU neQSH algorithms yakamiswa.
  • Iyo module yeLinux kernel inopa rutsigiro rwekriptographic algorithms inoenderana neFIPS 140-3 chengetedzo standard. Chigadzirwa chakasiyana chinounzwa nekuitwa kweFIPS 140-3, iyo kodhi ichiri padanho rekuyedzwa, kuongorora uye kuongororwa.
  • Kusiyana kweRSA, ECC, DH, DSA, AES/AES-GCM algorithms, yakakurumidza kushandisa x86 CPU vector mirairo, yakawedzerwa kune module yeLinux kernel. Uchishandisa mirairo yevector, vanokanganisa vanobata vanokwidziridzwawo. Yakawedzera rutsigiro rwe subsystem yekutarisa mamodule uchishandisa masaini edhijitari. Zvinogoneka kuvaka yakamisikidzwa wolfCrypt crypto injini mu "-enable-linuxkm-pie" (chinzvimbo-chakazvimiririra) modhi. Iyo module inopa rutsigiro rweLinux kernels 3.16, 4.4, 4.9, 5.4 uye 5.10.
  • Kuti uve nechokwadi chekuenderana nemamwe maraibhurari uye maapplication, rutsigiro rwe libssh2, pyOpenSSL, libimobiledevice, rsyslog, OpenSSH 8.5p1 uye Python 3.8.5 yakawedzerwa kune iyo layer.
  • Yakawedzera chikamu chikuru chemaAPI matsva, anosanganisira EVP_blake2, wolfSSL_set_client_CA_list, wolfSSL_EVP_sha512_256, wc_Sha512*, EVP_shake256, SSL_CIPHER_*, SSL_SESSION_*, nezvimwe.
  • Yakagadzirisa kusakwana kuviri kunoonekwa sekusina kunaka: kusungirirwa paunenge uchigadzira DSA dhijitari siginecha ine mamwe ma paramita uye isiriyo yekusimbisa zvitupa zvine akawanda ezvimwe zvinhu mamwe mazita paunenge uchishandisa kumisa mazita.

Source: opennet.ru

Voeg