ProHoster > Blog > litaba tsa inthanete > Amazon e phatlalalitse laeborari e bulehileng ea li-cryptographic bakeng sa puo ea Rust

Amazon e phatlalalitse laeborari e bulehileng ea li-cryptographic bakeng sa puo ea Rust

Amazon e hlahisitse laeborari ea aws-lc-rs cryptographic, e reretsoeng ho sebelisoa lits'ebetsong tsa Rust mme e lumellana le API le laebrari ea ring Rust. Khoutu ea projeke e ajoa tlasa laesense ea Apache 2.0 le ISC. Laeborari e tšehetsa lipolanete tsa Linux (x86, x86-64, aarch64) le macOS (x86-64).

Ts'ebetsong ea ts'ebetso ea li-cryptographic ho aws-lc-rs e ipapisitse le laeborari ea AWS-LC (AWS libcrypto), e ngotsoeng ka C++ 'me ka lehlakoreng le leng e ipapisitse le khoutu e tsoang ho projeke ea BoringSSL (lehlomela le hlokometsoeng ke Google la OpenSSL). Ho feta moo, ho hlahisitsoe liphutheloana tse peli tsa boemo bo tlase ba crate: aws-lc-sys (litlamo tsa boemo bo tlase tse iketselitsoeng ka boiketsetso holim'a AWS-LC) le aws-lc-fips-sys (litlamo tsa boemo bo tlase tse thehiloeng ho FFI (Foreign Function Interface) ), ho hlahisa AWS-LC API.

Laeborari ea AWS-LC e kenyelletsa ts'ebetsong e netefalitsoeng ka molao ea SHA-2, HMAC, AES-GCM, AES-KWP, HKDF, ECDH, le li-algorithms tsa ECDSA tse fihlelang litlhoko tsa litsamaiso tsa sephiri tse ka sebelisoang ke mekhatlo ea mmuso United States. le Canada. Ho theha setlamo sa Rust ho tsamaisoa ke tlhoko ea ho ba le lilaebrari tsa crypto tse lumellanang le FIPS tse ka sebelisoang mererong ea Rust. Laebraring ea li-aws-lc-rs, Amazon e ile ea etsa qeto ea ho kopanya Ring API, e tloaelehileng le e tloaelehileng har'a baetsi ba mananeo a Rust, le ts'ebetsong e netefalitsoeng ea li-algorithms ho tloha laebraring ea AWS-LC e lumellanang le litlhoko tsa FIPS.

Tšebeliso ea laeborari ea AWS-LC joalo ka motheo e boetse e entse hore ho khonehe ho sebelisa lintlafatso tsohle tse ntlafalitsoeng ke Amazon ho aws-lc-rs. Mohlala, AWS-LC e fana ka likhetho bakeng sa li-algorithms tsa ChaCha20-Poly1305 le NIST P-256 tse ntlafalitsoeng ka thoko bakeng sa li-processor tsa ARM, 'me lintlafatso tse kholo tsa sistimi ea x86 li entsoe ho potlakisa ts'ebetso ea li-signature tsa dijithale tsa ECDSA. Ha ho lekoa ts'ebetso ea liprothokholo tsa TLS 1.2 le 1.3, laebrari ea aws-lc-rs e atlehile haholo ho feta sephutheloana sa rustls mabapi le ts'ebetso, e bonts'a phokotso ea nako ea ho seta ea khokahano le keketseho ea tlhahiso (ho feta habeli litekong tsa ECDSA).

Amazon e phatlalalitse laeborari e bulehileng ea li-cryptographic bakeng sa puo ea Rust


Source: opennet.ru

Eketsa ka tlhaloso