Sanad ka dib horumarka sii daynta mashruuca , kaas oo soo saara fargeeto ah nidaamka sirta qaybta qaybta diskka TrueCrypt, jiritaankaaga. VeraCrypt waxay caan ku tahay beddelka RIPEMD-160 algorithm ee loo adeegsaday TrueCrypt ee SHA-512 iyo SHA-256, kordhinta tirada xashiishka, fududaynta habka dhismaha Linux iyo macOS, baabi'inta la aqoonsaday inta hawsha lagu guda jiro Koodadka isha TrueCrypt. Isla mar ahaantaana, VeraCrypt waxay bixisaa hab waafaqsan qaybaha TrueCrypt waxayna ka kooban tahay qalab loogu beddelo qaybaha TrueCrypt qaabka VeraCrypt. Koodhka uu sameeyay mashruuca VeraCrypt hoosta shatiga Apache 2.0, oo laga soo amaahday TrueCrypt lagu bixiyay Ruqsadda TrueCrypt 3.0.
Siideynta cusub:
- Qaybaha aan nidaamka ahayn, dhererka erayga sirta ah ee ugu badan ayaa la kordhiyay ilaa 128 xaraf gudaha UTF-8 codaynta. Si loo hubiyo in ay la jaanqaadaan nidaamyada hore, waxaa lagu daray ikhtiyaar si loo xaddido cabbirka sirta ah ee ugu badan 64 xaraf;
- Taageerada maktabadda ayaa lagu daray beddelka tilmaamaha CPU RDRAND , taas oo u adeegsata jitter-ka soo saarista hardware-ka ee lambarrada been-abuurka ah, iyada oo ku saleysan tixgelinta leexinta waqtiga dib-u-fulinta ee tilmaamo gaar ah oo ku saabsan CPU (CPU execution time jitter), taas oo ku xiran arrimo badan oo gudaha ah waana aan la saadaalin karin iyada oo aan la xakameyn karin CPU;
- Hagaajinta waxqabadka ayaa loo sameeyay qaabka XTS ee nidaamyada 64-bit ee taageera tilmaamaha SSE2. Hagaajinta celcelis ahaan waxay kordhisay wax soo saarka 10%;
- Koodh lagu daray si loo go'aamiyo haddii CPU ay taageerto tilmaamaha RDRAND/RDSEED iyo soo-saareyaasha Hygon. Dhibaatooyinka ogaanshaha taageerada AVX2/BMI2 waa la xalliyey;
- Linux, ikhtiyaarka "-import-token-keyfiles" ayaa lagu daray CLI, oo ku habboon habka aan is-dhexgalka ahayn;
- Linux iyo macOS, hubinta helitaanka meel bannaan oo nidaamka faylka ah si loo dejiyo weelka faylka la abuuray ayaa lagu daray. Si aad u joojiso jeegga, calanka "--no-size-check" ayaa la bixiyaa;
- Daaqadaha, hab ayaa loo hirgeliyay kaydinta furayaasha iyo furayaasha sirta ah ee xusuusta qaab sir ah iyadoo la adeegsanayo ChaCha12 cipher, t1ha hash iyo CSPRNG oo ku salaysan ChaCha20. Sida caadiga ah, qaabkani waa naafo, maadaama ay kor u kacday qiyaastii 10% mana ogola in nidaamka la geliyo qaabka hurdada. Daaqadaha, ka ilaalinta qaar ka mid ah weerarrada soo saarista xusuusta ayaa sidoo kale lagu daray, iyadoo lagu saleynayo hirgelinta gudaha hab lagu xaddido gelitaanka xusuusta isticmaalayaasha aan lahayn xuquuqda maamulaha. Furaha lagu daray ka hor inta aan la xidhin, ka hor inta aan dib loo kicin, ama (ikhtiyaar ahaan) marka la isku xidho qalab cusub. Horumar ayaa lagu sameeyay bootloader-ka UEFI. Taageero lagu daray isticmaalka CPU RDRAND iyo tilmaamaha RDSEED sidii il dheeri ah oo entropy ah. Qaabka buurta oo lagu daray iyada oo aan warqad lagu meelayn qaybta.
Source: opennet.ru