Kutheni i-cryptography? Mna ngokwam ndinolwazi oluphangaleleyo ngayo. Ewe, ndifunde umsebenzi weklasikhi , kodwa kudala kakhulu; Ewe, ndiyawuqonda umahluko phakathi kwe-symmetric kunye ne-asymmetric encryption, ndiyawuqonda ukuba yintoni i-elliptic curves, kodwa yiloo nto. Ngaphaya koko, amathala eencwadi akhoyo e-cryptographic, kunye nesiko lawo elimnandi lokubandakanya igama elipheleleyo le-algorithm egameni lomsebenzi ngamnye kunye neqela labaqalisi abaphuma ngaphandle, lindinika i-butthurt eyoyikekayo njengomdwelisi.
Ngoko kutheni? Mhlawumbi ngenxa yokuba xa ufunda i-wave yangoku yeempapasho malunga nokukhuselwa kwedatha, ulwazi oluyimfihlo, njl., Ndifumana imvakalelo yokuba sigrumba kwindawo engafanelekanga, okanye ngakumbi ngakumbi, sizama ukusombulula iingxaki zentlalo ngokusisiseko ngoncedo lobugcisa. kuthetha (i-cryptography). Makhe sithethe ngale nto, andithembisi ukufunyanwa kwe-epoch-epoch, kunye nezindululo ezibambekayo, iingcinga ezingasebenziyo yileyo: ayinamsebenzi.
Intwana yembali, kancinane nje
Ngo-1976, iUnited States yamkela umgangatho womanyano we-symmetric encryption algorithms-DES. Yayiyi-algorithm yokuqala yoluntu kunye nemigangatho ye-cryptographic eyenziwe ngokuphendula kwiimfuno zeshishini ezikhulayo zokukhusela idatha.
Umdla wentshebe
I-algorithm ipapashwe ngempazamo. Yenzelwe ukuphunyezwa kwe-hardware kwaye yathathwa njengento enzima kakhulu kwaye ingasebenzi kakuhle ekuphunyezweni kwesoftware. Noko ke, uMthetho kaMoore wakhawuleza wabeka yonke into kwindawo yawo.
Kuya kubonakala - isiphelo sebali, sithathe, sifihle, sikhuphe, ukuba kuyimfuneko, ukwandisa ubude besitshixo. Mhlawumbi uyazi ngokuqinisekileyo ukuba abantu baseMelika bashiye iibhukhimakhi kuyo, ke kukho i-analogue yaseRashiya kuwe - , ekusenokwenzeka ukuba uyithemba nangaphantsi. Emva koko sebenzisa zombini, enye phezu kwenye. Ukuba uyakholelwa ukuba i-FBI kunye ne-FSB bamanyene ngenxa yakho kwaye batshintshiselana ngeebhukhimakhi zabo, ke ndineendaba ezimnandi kuwe-awuyiyo i-paranoid, unenkohliso ye-banal yobungangamsha.
Isebenza njani i-symmetric encryption? Bobabini abathathi-nxaxheba bayalazi isitshixo esifanayo, esikwabizwa ngokuba yi-password, kwaye yintoni efihliweyo kunye nayo inokukhutshwa ngayo. Iskimu sisebenza kakuhle kwiintlola, kodwa ayifanelekanga ngokupheleleyo kwi-Intanethi yanamhlanje, kuba esi sitshixo kufuneka sidluliselwe kwi-interlocutors nganye kwangaphambili. Ngexesha elithile, ngelixa iinkampani ezimbalwa ngokwentelekiso zikhusela idatha yazo xa zinxibelelana neqabane elaziwayo ngaphambili, ingxaki yasonjululwa ngoncedo lweekhuriya kunye ne-imeyile ekhuselekileyo, kodwa ke i-Intanethi yanda kwaye yangena emfanekisweni.
Asymmetric cryptography
apho kubandakanyeke izitshixo ezibini: uluntu, engagcinwa iyimfihlo kwaye idluliselwe kuye nabani na; Kwaye bucala, ekwaziwa ngumniniyo kuphela. Yintoni efihliweyo ngesitshixo sikawonke-wonke inokucocwa kuphela ngeyabucala, kwaye ngokuphambanayo. Ke, nabani na unokufumana isitshixo sikawonke-wonke somamkeli kwaye amthumele umyalezo, ngummkeli kuphela oya kuyifunda. Kubonakala ngathi ingxaki isonjululwe?
kodwa i-intanethi ayisebenzi ngaloo ndlela, ingxaki ivela ngamandla uqinisekiso ngakumbi, uqinisekiso lokuqala, yaye ngandlelβ ithile ingxaki eyahlukileyo ukungaziwa. Ngamafutshane, ndinokuqiniseka njani ukuba lo mntu ndithetha naye ngoyena mntu bendifuna ukuthetha naye? kanti isitshixo sikawonke-wonke endisisebenzisayo sesalomntu bendiza kuthetha naye? Ingakumbi ukuba ndiyaqala ukunxibelelana naye? Kwaye ungafaka njani ukuzithemba kwiqabane lakho ngelixa ugcina ukungaziwa? Sele ulapha, ukuba ujongisisa, unokuphawula ukuchasana kwangaphakathi.
Makhe sijonge ngokubanzi ukuba zeziphi iipateni zentsebenziswano phakathi kwabathathi-nxaxheba ezikhoyo kwaye zisetyenziswa ekusebenzeni:
- umncedisi - umncedisi (okanye ishishini - ishishini, kulo mongo bayinto enye): le yinkqubo elula yeklasikhi, apho i-symmetric cryptography yanele ngokwaneleyo, abathathi-nxaxheba bayazi yonke into malunga nomnye, kubandakanywa nabafowunelwa ngaphandle kwenethiwekhi. Nangona kunjalo, nceda uqaphele ukuba asithethi nangakuphi na ukungaziwa apha, kwaye inani labathathi-nxaxheba lilinganiselwe ngokungqongqo kwisibini. Oko kukuthi, esi siskimu esiphantse sibe sifanelekileyo kwinani elilinganiselweyo lonxibelelwano kwaye, kwimeko jikelele, ngokucacileyo asetyenziswa kancinci.
- umncedisi - ongaziwa (okanye ishishini - umxhasi): kukho i-asymmetry apha, enikezelwa ngempumelelo yi-cryptography ye-asymmetric. Inqaku eliphambili apha kukunqongophala koqinisekiso lomxhasi, umncedisi akakhathali nokuba utshintshiselana nabani ngedatha; ukuba ngesiquphe kufuneka, umncedisi uyaqhuba uqinisekiso lwesibini usebenzisa igama lokugqitha ekuvunywe ngalo kwangaphambili, kwaye ke yonke into yehla kwimeko yangaphambili. Kwelinye icala, umxhasi kubaluleke kakhulu uqinisekiso lomncedisi, ufuna ukuqiniseka ukuba idatha yakhe ifikelela ngqo kumntu oyithumele kuye, eli cala ekusebenzeni lisekelwe kwinkqubo yesatifikethi. Ngokubanzi, esi sikimu sikulungele kwaye sigutyungelwe ngokucacileyo yi-https: // protocol, kodwa amanqaku ambalwa anomdla avela ekudibaneni kwe-cryptography kunye ne-sociology.
- ukuthembela kumncedisi: nokuba ndithumele ulwazi oluthile emantla ngendlela ekhuselekileyo, ngokobuchwepheshe abantu bangaphandle banokufikelela kuyo. Le ngxaki ingaphandle ngokupheleleyo kwi-encryption, kodwa ndikucela ukuba ukhumbule le ngongoma, iya kuvela kamva.
- ukuthembela kwisatifikethi somncedisi: ulawulo lwezatifikethi lusekwe kwinto yokuba kukho into ethile ingcambu isatifikethi esifanelekileyo ngokupheleleyo ithemba. Ngokobuchwephesha, umhlaseli onempembelelo ngokwaneleyo [nceda uqwalasele igama elithi umhlaseli njengegama lobuchule, kwaye hayi njengenyeliso okanye isithuko kurhulumente okhoyo] unokutshintsha isatifikethi salo naliphi na inqanaba elisezantsi, kodwa kucingelwa ukuba inkqubo yoqinisekiso ifunwa ngumntu wonke. ngokulinganayo, i.e. lo mntu uqinisekiswayo uya kukhutshelwa ngaphandle ngoko nangoko kwaye zonke izatifikethi zakhe ziya kurhoxiswa. Ngoko kunjalo, kodwa qaphela ukuba inkqubo ayisekelwe kwiindlela zobugcisa, kodwa kuhlobo oluthile lwekhontrakthi yentlalontle. Ngendlela, malunga nokutshisaNjengenxalenye ye-doomsday pupation elindelekileyo ye-RuNet, ngaba kukho nabani na oye wahlalutya i-pupation enokwenzeka yesatifikethi sengcambu yaseRashiya kunye nemiphumo? Ukuba nabani na oye wafunda / wabhala kwesi sihloko, ndithumele amakhonkco, ndiya kubongeza, ndicinga ukuba isihloko sinomdla.
- ngokungathanga ngqo de-anonymization kumncedisi: kwakhona isihloko esibuhlungu, nokuba umncedisi akanalo ukubhaliswa ngokusemthethweni / ukuqinisekiswa, kukho iindlela ezininzi zokuqokelela ulwazi malunga nomxhasi kwaye ekugqibeleni uchonge. Kubonakala kum ukuba ingcambu yengxaki ikwi-http: // iprotocol ekhoyo kunye nabanye abafana nayo, njengoko bekulindelekile, bebengenakukubona kwangaphambili umsindo onjalo; kwaye kuyakwenzeka ukwenza iprotocol ehambelanayo ngaphandle kwezi punctures. Nangona kunjalo, oku kuchasene nazo zonke iindlela ezikhoyo zokwenza imali kwaye ke akunakwenzeka. Usazibuza, ngaba ukhona ozamile?
- engaziwa - engaziwa: abantu ababini badibana kwi-intanethi, (ukhetho - ludibene nje), (ukhetho - hayi ezimbini kodwa amawaka amabini), kwaye bafuna ukuxoxa ngezinto zabo, kodwa ngendlela yokuba Ubhuti omkhulu akazange akuva (ukhetho: umama akazange afumane, wonke umntu unokubaluleka kwakhe). Ungeva isigqebelo kwilizwi lam, kodwa kungenxa yokuba yile nto iyiyo. Masisebenzise i-postulate kaSchneier kule ngxaki (nayiphi na i-algorithm inokuqhekeka ukuba izibonelelo ezaneleyo zityalwe, oko kukuthi, imali kunye nexesha). Ukusuka kulo mbono, ukungena kwiqela elinjalo ngeendlela zentlalo akubonisi naluphi na ubunzima, singasathethi ngemali, oko kukuthi, amandla e-cryptographic of algorithm. unothi ngezona ndlela zintsonkothileyo zofihlo.
Nangona kunjalo, kule meko sinesiseko sesibini - ukungaziwa, yaye sibeka ithemba lethu kuye, nokuba wonke umntu uyasazi, kodwa akukho bani unokusifumana. Nangona kunjalo, ngezona ndlela zobugcisa zanamhlanje zokukhusela, ngaba ucinga ngokunzulu ukuba unalo ithuba? Mandikukhumbuze ukuba ngoku ndithetha kuphela ngokungaziwa; kubonakala ngathi sele sikuyekile ukukhuselwa kwedatha. Ukucaca, masivume ukuba igama lakho liyaziwa okanye idilesi yasekhaya okanye Idilesi ye-IP, abantu abaphendulayo abaphumelelanga ngokupheleleyo.
Ukuthetha nge-ip, kulapho oku ngasentla kungena khona ukuthembela kumncedisi, uyayazi i-IP yakho ngaphandle kwamathandabuzo. Kwaye apha yonke into idlala ngokuchasene nawe-ukusuka kwilukuluku lomntu kunye namampunge, ukuya kwimigaqo-nkqubo yeshishini kunye nokwenza imali okufanayo. Gcina nje ukhumbula ukuba i-VPS kunye ne-VPN zikwayiseva; kwi-cryptography theorists, ezi zishunqulelo ngandlela thile azibalulekanga; Ewe, kwaye ulawulo lomncedisi aludlali indima kwimeko yesidingo esikhulu. Oku kuquka uguqulelo oluntsonkothileyo ekupheleni-ukuya-ivakala kamnandi kwaye yomelele, kodwa umncedisi kusafuneka athathele igama lakhe kuyo.
Yintoni indima jikelele yomncedisi kumthunywa onjalo? Okokuqala, kuyinto encinci ukuba unoposi, ukuba umamkeli akakho ekhaya, ukuba eze kwakhona kamva. Kodwa kwakhona, kwaye oku kubaluleke kakhulu, le yindawo yokuhlangana, awukwazi ukuthumela ileta ngokuthe ngqo kumamkeli, uyithumele kumncedisi ukuze idluliselwe ngakumbi. Kwaye okona kubaluleke kakhulu, umncedisi uyaqhuba uqinisekiso oluyimfuneko, eqinisekisa kuwo wonke umntu ukuba nguwe, kwaye kuwe - ukuba i-interlocutor yakho ngokwenene iyimfuneko. Kwaye ukwenza oku usebenzisa ifowuni yakho.
Awucingi ukuba umthunywa wakho wazi kakhulu ngawe? Hayi, hayi, ngokuqinisekileyo siyamkholelwa (kwaye ngendlela, ifowuni yethu ngexesha elifanayo, hmm), kodwa i-cryptographers iyasiqinisekisa ukuba oku kulilize, ukuba asinakuthemba nabani na.
Awuqinisekanga? Kodwa kukho ubunjineli obufanayo bezentlalo, ukuba unekhulu labanxibelelanisi kwiqela, kuya kufuneka ucinge ukuba i-50% yazo ziintshaba, i-49% iyinto engento, iyisidenge okanye ayinankathalo. Kwaye ipesenti enye eseleyo, kungakhathaliseki ukuba unamandla kangakanani kwiindlela zokhuseleko lolwazi, kunokwenzeka ukuba awukwazi ukuxhathisa isazi sengqondo esihle kwingxoxo.
Ekuphela kwesicwangciso esikhuselayo sibonakala ngathi silahlekile phakathi kwezigidi zamaqela afanayo, kodwa oku akusekho ngathi, kwakhona malunga nabanqolobi abathile abangenasidingo sodumo lwe-intanethi okanye ukwenza imali.
Ewe, kubonakala kum ukuba ndaqinisekisa ngandlela-thile (hayi, andizange ndiqinisekise, ndingqinela nje) iingcamango zam ezibukhali malunga nokukhuselwa kwedatha kwimodeli yanamhlanje yoluntu. Izigqibo zilula kodwa zibuhlungu - akufuneki sithembele kuncedo olungaphezulu oluvela kwi-encryption yedatha kunokuba sele sinalo, i-cryptography yenze yonke into enokuyenza, kwaye yenze kakuhle, kodwa imodeli yethu ye-Intanethi iphikisana ngokupheleleyo nomnqweno wethu wobumfihlo kwaye uyayichitha yonke imizamo yethu. . Ngapha koko, andikhe ndiphoxeke kwaye ndingathanda ukuthetha into eqaqambileyo ngoku, kodwa andazi ukuba yintoni.
Zama ukujonga kwicandelo elilandelayo, kodwa ndiyakulumkisa-kukho iingcamango ezingabalulekanga ngokwesayensi, kodwa zinokuqinisekisa umntu, kwaye zimonwabise umntu.
Ngaba kunokwenzeka ukwenza nantoni na?
Ewe, umzekelo, cinga ngesi sihloko, ngokufanelekileyo ngokukhulula ingqondo yakho kunye nokulahla ucalucalulo. Umzekelo, makhe sigqibe ngokupheleleyo masincame ukungaziwa, kungakhathaliseki ukuba isenokuvakala imbi kangakanani na. Wonke umntu makanikwe isitshixo esikhethekileyo sikawonke-wonke ukususela ekuzalweni, kunye nesitshixo sabucala esihambelanayo, kunjalo. Akukho sidingo sokundikhwaza kwaye ubethe ngeenyawo zakho, ihlabathi elifanelekileyo oku kulula kakhulu - apha unencwadana yakho yokundwendwela, inombolo yesazisi serhafu, kunye nenombolo yefowuni kwibhotile enye. Ngaphezu koko, ukuba wongeza isatifikethi somntu kule nto, ufumana isiqinisekisi/igama lokungena jikelele; kunye nonobhala wepokotho onekhono lokuqinisekisa nawaphi na amaxwebhu. Unokwenza inkqubo yemigangatho emininzi - kuphela isitshixo sikawonke-wonke kunye nesatifikethi sifumaneka esidlangalaleni, kubahlobo (uluhlu lwezitshixo ezincanyathiselwe apha) ungenza ifowuni yakho ifumaneke kwaye yintoni enye abayithembayo abahlobo, kunokubakho nzulu ngakumbi. amanqanaba, kodwa oku sele kuthetha ukuthembela ngokungeyomfuneko kumncedisi .
Ngesi sikimu, ubumfihlo bolwazi olugqithisiweyo lufezekiswa ngokuzenzekelayo (nangona kwelinye icala, kutheni, kwihlabathi elifanelekileyo?), U-Alice ubhala into kuBob, kodwa akukho mntu uya kuyifunda ngaphandle kukaBob ngokwakhe. Bonke abathunywa bafumana ngokuzenzekelayo ukubethelwa kokuphela kokuphela, indima yabo iyancitshiswa kwiibhokisi zeposi kwaye, ngokomgaqo, akukho zikhalazo malunga nomxholo. Kwaye iiseva ngokwazo ziyatshintshana, ungathumela ngenye, okanye ngenye, okanye nangothotho lweeseva, njenge-imeyile. Ungayithumela ngokuthe ngqo kumamkeli ukuba i-IP yakhe iyaziwa, ngaphandle kokunxibelelana nabangeneleli konke konke. Akunjalo? Kulusizi nje ukuba kungafuneki siphile kweli xesha limnandi - hayi mna okanye wena. Nn-ewe, kwakhona ndithetha ngezinto ezibuhlungu.
Okulandelayo, ukugcinwa phi konke oku? Ewe, phezulu kwentloko yam, yenza inkqubo evulekileyo yolawulo, into efana ne-DNS yangoku, kuphela enamandla ngakumbi kwaye ibanzi. Ukuze ungathwali umthwalo kwiingcambu zabalawuli be-DNS ngezongezo kunye nohlengahlengiso, unokwenza ubhaliso lwasimahla, ukukhangela okufunekayo kuphela kokwahlukileyo. Njenga >> " Molo, singabantu abahlanu, intsapho ye-Ivanov. Nanga amagama ethu/iziqhulo, nanga izitshixo zikawonke-wonke. Ukuba nabani na uyabuza, nceda usithumelele yona. Kwaye nalu uluhlu lwekhulu elinamakhulu amahlanu oomakhulu abasuka kwindawo yethu kunye nezitshixo zabo, ukuba baceliwe, bathumele kuthi nathi.Β«
Kufuneka wenze nje ufakelo kunye noqwalaselo lweseva yasekhaya ilula kakhulu kwaye iluncedo, ukuze nabani na akwazi ukuyiqonda ukuba uyafuna, kwakhona, akukho mntu uya kuphinda alayishe naziphi na iiseva ezisemthethweni zikarhulumente.
Yeka!, kodwa urhulumente unento yokwenza nayo ngoko?
Kodwa ngoku unokubuyisela ngononophelo ukungaziwa. Ukuba nabani na unokuzenzela isitshixo sobuqu kwaye aqinisekise ngesatifikethi somntu ngamnye kwaye azifakele umncedisi we-CA okwinqanaba elisezantsi, okanye abuze ummelwane, okanye kumncedisi kawonke-wonke, kutheni le nto yonke le officialdom ifuneka? Kwaye ke akukho mfuneko yokuba uncanyathiselwe kumlinganiswa wokwenyani, ubumfihlo obupheleleyo, ukhuseleko kunye nokungaziwa. Kwanele ukuba ekuqaleni kwe-hierarchy kukho umntu othembekileyo, kakuhle, sikholelwa kwi-TM okanye Masibhale i-Encrypt, kunye ne-DNS eyaziwayo yoluntu engakathumeli nabani na kwi-steppe. Kubonakala ngathi akufanele kubekho naziphi na izikhalazo ezivela kubaphathi be-bureaucrats, oko kukuthi, ngokuqinisekileyo kuya kubakho izikhalazo, kodwa ekugqibeleni?
Mhlawumbi ngenye imini inkqubo enjalo, okanye into efanayo, iya kwenziwa. Kwaye ngokuqinisekileyo, asinamntu esinokuthembela kuye ngaphandle kwethu; akukho nalinye lamazwe aziwayo kum aya kwakha inkqubo enjalo. Ngethamsanqa, iTelegram esele ikhona, i2p, iTor, kwaye mhlawumbi nomnye umntu endilibeleyo, ibonisa ukuba akukho nto ingenakwenzeka. Le yinethiwekhi yethu, kwaye kufuneka siyixhobise ukuba asinelisekanga yimeko yangoku yemicimbi.
Brrr, ndigqibe ngempazamo ngenqaku elibuhlungu. Ngapha koko, andikuthandi oku, ngandlelβ ithile ndikhetha ukuphoxa.
I-PS: oku konke, kunjalo, i-pink snot kunye namaphupha amantombazana
PPS: kodwa ukuba ngequbuliso umntu ugqiba kwelokuba azame, ndigcinele isiteketiso nceda, ndiyiqhelile
PPPS: kwaye ukuphunyezwa kubonakala kulula ngendlela
umthombo: www.habr.com