ProHoster > Blog > litaba tsa inthanete > Phatlalatso ea Laeborari ea Botan Cryptographic 3.0.0

Phatlalatso ea Laeborari ea Botan Cryptographic 3.0.0

Laeborari ea li-cryptography ea Botan 3.0.0 e se e fumaneha bakeng sa ho sebelisoa morerong oa NeoPG, fereko ea GnuPG 2. Laeborari e fana ka pokello e kholo ea lintho tsa khale tse seng li entsoe tse sebelisoang ho protocol ea TLS, litifikeiti tsa X.509, li-ciphers tsa AEAD, li-module tsa TPM. , PKCS#11, password hashing le post-quantum cryptography (masaeno a thehiloeng hash le tumellano ea senotlolo e thehiloeng ho McEliece). Laeborari e ngotsoe ka C++ 'me e ajoa tlas'a laesense ea BSD.

Har'a liphetoho tse hlahang tokollong e ncha:

  • Motheo oa khoutu o lumella tšebeliso ea maemo a C++20 (pele C++ 11 e ne e sebelisoa); ka lebaka leo, litlhoko tsa bahlophisi li ekelitsoe - bonyane GCC 11, Clang 14 kapa MSVC 2022 e se e hlokeha bakeng sa kopano. bakeng sa li-compilers tsa HP le Pathscale li khaolitsoe, hammoho le merero ea Google NaCL le IncludeOS.
  • Ho entsoe karolo e kholo ea liphetoho tse khahlanong le ho lumellana ha morao. Lifaele tse ngata tsa lihlooho tse siiloeng ke nako li tlositsoe, mohlala, tse tobileng ho li-algorithms tse itseng (aes.h, joalo-joalo). Ts'ebetsong ea mesebetsi le li-algorithms tse neng li phatlalalitsoe e se e sa sebetse li tlositsoe (CAST-256, MISTY1, Kasumi, DESX, XTEA, PBKDF1, MCEIES, CBC-MAC, Tiger, NEWHOPE, CECPQ1). Ha re hlahisa entropy bakeng sa jenereithara ea nomoro ea pseudorandom, re ile ra khaotsa ho sebelisa /proc le /dev/random. Lihlopha tse ling (ka mohlala, Data_Store), libopeho le lipalo li tlositsoe ho API. Ho khutlisa le ho sebelisa matšoao a se nang letho ho emisitsoe moo ho khonehang.
  • Tšehetso e ekelitsoeng bakeng sa protocol ea TLS 1.3. Tšehetso ea TLS 1.0, TLS 1.1 le DTLS 1.0 e khaolitse. Tšehetso ea DSA, SRP, SEED, AES-128 OCB, CECPQ1, DHE_PSK le Camellia CBC cipher suites, li-cipher tse sa tsejoeng, le li-hashe tsa SHA-1 li tlositsoe ts'ebetsong ea TLS.
  • Tšehetso e ekelitsoeng bakeng sa algorithm ea Kyber post-quantum cryptography, e hanyetsanang le matla a sehlōhō khomphuteng ea quantum.
  • Tšehetso e ekelitsoeng bakeng sa algorithm ea Dilithium post-quantum cryptography bakeng sa ho sebetsa ka li-signature tsa dijithale.
  • Tšehetso e ekelitsoeng bakeng sa sebopeho sa elliptic curve point hashing sebelisa mokhoa oa SSWU (draft-irtf-cfrg-hash-to-curve).
  • Ts'ehetso e ekelitsoeng bakeng sa ts'ebetso ea BLAKE2b cryptographic hash.
  • Ho hlahisitsoe sebopeho se secha sa lenaneo T::new_object se khutlisetsang unique_ptr sebakeng sa "T*" e se nang letho.
  • E kentse mesebetsi e mecha le API: X509_DN::DER_encode, Public_Key::get_int_field, ideal_granularity, needs_entre_message, SymmetricAlgorithm::has_keying_material. E kentse sehlopha se seholo sa mesebetsi e mecha bakeng sa tšebeliso ea khoutu ea C (C89).
  • Ts'ebetsong ea algorithm ea Argon2 e sebelisa litaelo tsa AVX2.
  • Boholo ba litafole ts'ebetsong ea li-algorithms tsa Camellia, ARIA, SEED, DES le Whirlpool li fokotsehile.
  • Ts'ebetsong e ncha ea DES/3DES e sisintsoe, e sirelelitsoeng khahlano le mefuta e mengata ea litlhaselo tse lehlakoreng tse lekolang boemo ba cache.
  • Ts'ebetso ea SHACAL2 e ntlafalitsoe bakeng sa lits'ebetso tse ipapisitseng le meralo ea ARMv8 le POWER.
  • Khoutu ea ho bala li-parity bits, phetoho ea bcrypt/base64 le ho khetholla mofuta oa khoele ea ASN.1 e lokolotsoe ho tsoa lipatlisong tsa tafole 'me e se e ikemetse ho data e sebetsoang (e sebetsa ka nako e sa fetoheng)

Source: opennet.ru

Eketsa ka tlhaloso