Filippo Valsorda, oo ah cryptographer mas'uul ka ah amniga luqadda barnaamijka Go ee Google, ayaa daabacay siideyntii ugu horreysay ee xasilloon ee utility sirta xogta cusub, Da'da (Dhab ahaan Sireeynta Wanaagsan). Utility wuxuu bixiyaa interface fudud oo khadka taliska ah oo loogu talagalay sirta faylasha iyadoo la adeegsanayo summetric (password) iyo asymmetric (furaha dadweynaha) algorithms cryptographic. Xeerka mashruuca wuxuu ku qoran yahay Go waxaana lagu qaybiyaa shatiga BSD. Dhismayaasha waxaa loo diyaariyey Linux, FreeBSD, macOS iyo Windows.
Hawlaha aasaasiga ah waxay ku jiraan maktabad loo isticmaali karo in lagu dhex daro shaqada ay bixiso utility barnaamijyadaada. Si gooni ah, qaabka mashruuca cadhada, hirgelinta beddelka ah ee isticmaalka iyo maktabad la mid ah, oo ku qoran luqadda Rust, ayaa la sameeyay. Sirta, algorithms-yada la xaqiijiyay ayaa loo isticmaalaa: HKDF (HMAC-ku-salaysan Soosaar-iyo-Balaadhinta Farsamaynta Furaha), SHA-256, HMAC (Koodhka Xaqiijinta Farriimaha Xash-ku-salaysan), X25519, Scrypt iyo ChaCha20-Poly1305 AEAD.
Waxaa ka mid ah sifooyinka Da'da, kuwan soo socda ayaa soo baxay: awoodda isticmaalka furayaasha dadweynaha ee 512-bit, si fudud loogu wareejinayo sanduuqa; interface fudud oo khadka taliska ah oo aan ka badnayn xulashooyinka; la'aanta faylasha qaabeynta; Suurtagalnimada isticmaalka qoraallada iyo marka lagu daro yutiilitida kale iyadoo la dhisayo silsilad wicitaano ah qaabka UNIX. Labadaba abuurista furayaashaada is haysta iyo adeegsiga furayaasha SSH ee jira ("ssh-ed25519", "ssh-rsa") waa la taageerayaa, oo ay ku jirto taageerada faylasha Github.keys. $ age-keygen -o key.txt Furaha guud: da'da1ql3z7hjy58pw3hyww5ayyfg7zqgvc7w3j2elw2zmrj2kg5sfn9bqmcac8p $ tar cvz ~/data | da'da -r age1ql3z7hjy58pw3hyww5ayyfg7zqgvc7w3j2elw2zmrj2kg5sfn9bqmcac8p > data.tar.gz.age $ da' --decrypt -i key.txt data.tar.gz.age > data.tar.g/25519. > tusaale.jpg.age $ age -d -i ~/.ssh/id_ed25519 tusaale.jpg.age > tusaale.jpg
Waxaa jira hab sir ah oo fayl ah oo loogu talagalay dad badan oo qaata hal mar, kaas oo faylka si isku mid ah loo sifeeyay iyada oo la adeegsanayo furayaal badan oo dadweyne oo mid kasta oo ka mid ah liiska qaataha ayaa kala saari kara. Aaladaha waxa kale oo la bixiyaa sirta ku salaysan faylalka sirta ah iyo ilaalinta faylalka muhiimka ah ee gaarka ah iyadoo la adeegsanayo sir sir ah. Muuqaal faa'iido leh ayaa ah in haddii aad geliso erayga sirta ah ee maran inta lagu jiro sirta, utility wuxuu si toos ah u soo saari doonaa oo bixin doonaa erayga sirta ah ee xooggan. $ age -p secrets.txt > secrets.txt.age Geli erayga sirta ah (ka tag faaruq si aad u soo saarto mid sugan): Isticmaalka erayga sirta ah ee iskii u dhashay . $ age -d secrets.txt.age > siraha.txt Geli erayga sirta ah: $ age-keygen | Da'da -p> key.age.age Dadweynaha: Da'da1YHM4GFTWFMRPZ87TDSLM530WRX6M79YYG9F2HDZTAHNEHNEHNEHNEHNEHNEHNEHPQRJPYX0 GALI KORDHAC (Ka tag faaruq si aad u Aasaasiga u sameysid aCure One): Isticmaalka ST-SPRASTIN-AKUURIGA AH HAL-GALINTA-Aktarada".
Qorshayaasha mustaqbalka waxaa ka mid ah abuurista dhabarka kaydinta ereyada sirta ah iyo server-ka furayaasha la wadaago (PAKE), taageerada furayaasha YubiKey, awoodda in la abuuro furayaal si fudud loo xasuusan karo oo qaab erayo ah, iyo abuurista Utility- Mount utility ee ku dhejinta faylalka sir ah ama kaydka FS.
Source: opennet.ru