ProHoster > Π‘Π»ΠΎΠ³ > wararka internetka > Siideynta maktabadda cryptographic wolfSSL 5.0.0

Siideynta maktabadda cryptographic wolfSSL 5.0.0

Siidaynta cusub ee maktabadda isafgaradka ah ee wolfSSL 5.0.0 ayaa diyaar ah, loo habeeyay isticmaalka qalabka processor-ka iyo xusuusta xaddidan sida Internetka aaladaha, nidaamyada guryaha smart, nidaamyada macluumaadka baabuurta, router-yada iyo taleefannada gacanta. Xeerku wuxuu ku qoran yahay luqadda C waxaana lagu qaybiyaa shatiga GPLv2.

Maktabadu waxay bixisaa hirgelinta waxqabadka sare ee algorithms cryptographic casriga ah, oo ay ku jiraan ChaCha20, Curve25519, NTRU, RSA, Blake2b, TLS 1.0-1.3 iyo DTLS 1.2, kuwaas oo sida laga soo xigtay horumariyayaashu 20 jeer ka badan yihiin hirgelinta OpenSSL. Waxay siisaa API la fududeeyay labadaba iyo lakabka la socon kara OpenSSL API. Waxaa jira taageero OCSP (Online Certificate Status Protocol) iyo CRL (Liiska Dib-u-noqoshada Shahaadada) ee hubinta burinta shahaadada.

Hal-abuurka ugu muhiimsan ee wolfSSL 5.0.0:

  • Taageerada madal lagu daray: IoT-Safe (oo leh taageero TLS), SE050 (oo leh RNG, SHA, AES, ECC iyo ED25519 taageero) iyo Renesas TSIP 1.13 (oo loogu talagalay RX72N microcontrollers).
  • Taageerada lagu daray algorithmaadka-ka dambe ee quantum-ka ee u adkeysanaya xulashada kumbuyuutarka tirada: NIST Round 3 kooxaha KEM ee TLS 1.3 iyo kooxaha NIST ECC ee isku-dhafka ah ee ku salaysan OQS (Open Quantum Safe, liboqs). Kooxaha u adkeysanaya doorashada kumbiyuutarka quantum-ka ayaa sidoo kale lagu daray lakabka si loo hubiyo in la isku waafaqo. Taageerada NTRU iyo QSH algorithms waa la joojiyay.
  • Qaybta Linux kernel waxa ay taageertaa algorithmaadka sirta ah ee u hogaansama heerka amniga FIPS 140-3. Badeeco gaar ah ayaa lagu soo bandhigay hirgelinta FIPS 140-3, koodka kaas oo weli ku jira marxaladda tijaabada, dib u eegista iyo xaqiijinta.
  • Kala duwanaanshiyaha RSA, ECC, DH, DSA, AES/AES-GCM algorithms, oo la dardargeliyay iyadoo la adeegsanayo tilmaamaha vector x86 CPU, ayaa lagu daray moduleka kernel-ka Linux. Isticmaalka tilmaamaha vector-ka, gacan-ku-qablayaasha ayaa sidoo kale la dedejiyaa. Taageero lagu daray nidaamka hoose ee hubinta cutubyada iyadoo la adeegsanayo saxeexyada dhijitaalka ah. Waa suurtogal in la dhiso matoorka crypto wolfCrypt ee ku dhex jira qaabka "-enable-linuxkm-pie" (madax-bannaanida booska). Module-ku wuxuu taageero siiya kernels Linux 3.16, 4.4, 4.9, 5.4 iyo 5.10.
  • Si loo hubiyo la jaanqaadka maktabadaha kale iyo codsiyada, taageerada libssh2, pyOpenSSL, libimobiledevice, rsyslog, OpenSSH 8.5p1 iyo Python 3.8.5 ayaa lagu daray lakabka.
  • Lagu daray qayb weyn oo APIs cusub ah, oo ay ku jiraan EVP_blake2, wolfSSL_set_client_CA_list, wolfSSL_EVP_sha512_256, wc_Sha512*, EVP_shake256, SSL_CIPHER_*, SSL_SESSION_*, iwm.
  • Laba dayacan oo go'an oo loo arko inay liitaan: daldalaad marka la abuurayo saxeexyada dhijitaalka ah ee DSA oo leh cabbiro gaar ah iyo xaqiijinta khaldan ee shahaadooyinka leh magacyo kala duwan oo shay ah marka la isticmaalayo xaddidaadaha magaca.

Source: opennet.ru

Add a comment