Emva konyaka wophuhliso ukukhutshwa kweprojekthi , ephuhlisa ifolokhwe yenkqubo yofihlo lwediski ye TrueCrypt, ubukho bakho. I-VeraCrypt iphawuleka ngokutshintsha i-RIPEMD-160 algorithm esetyenziswe kwi-TrueCrypt nge-SHA-512 kunye ne-SHA-256, ukwandisa inani lokuphindaphinda kwe-hashing, ukwenza lula inkqubo yokwakha ye-Linux kunye ne-macOS, ukuphelisa. ichongiwe ngexesha lenkqubo Iikhowudi zomthombo weTrueCrypt. Kwangaxeshanye, iVeraCrypt ibonelela ngemowudi yokuhambelana nezahlulo zeTrueCrypt kwaye iqulethe izixhobo zokuguqula izahlulo zeTrueCrypt kwifomathi yeVeraCrypt. Ikhowudi ephuhliswe yiprojekthi yeVeraCrypt phantsi kwelayisensi ye-Apache 2.0, kwaye ibolekwe kwi-TrueCrypt inikwe phantsi kwelayisensi yeTrueCrypt 3.0.
Kukhupho olutsha:
- Kwizahlulo ezingezizo zesistim, ubude bobude begama eligqithisiweyo bunyuswe ukuya kumagama angama-128 kwi-encoding ye-UTF-8. Ukuqinisekisa ukuhambelana neenkqubo ezindala, ukhetho longezwe ukunciphisa ubungakanani begama eligqithisiweyo kwiimpawu ezingama-64;
- Inkxaso yethala leencwadi yongezwe njengenye indlela yomyalelo we-CPU RDRAND , esebenzisa i-jitter kwi-hardware ukuveliswa kwamanani e-pseudo-random, esekelwe ekuthatheni ingqalelo ukutenxa kwixesha lokuphunyezwa kwakhona kweseti ethile yemiyalelo kwi-CPU (CPU execution time jitter), exhomekeke kwizinto ezininzi zangaphakathi kwaye engalindelekanga ngaphandle kolawulo lomzimba kwi-CPU;
- Ukulungiswa komsebenzi kwenziwe kwimowudi ye-XTS kwiisistim ze-64-bit ezixhasa imiyalelo ye-SSE2. Ukuphucula ngokomndilili kwandise imveliso nge-10%;
- Ikhowudi eyongeziweyo ukufumanisa ukuba i-CPU ixhasa i-RDRAND / RDSEED imiyalelo kunye neeprosesa ze-Hygon. Iingxaki zokufumana inkxaso ye-AVX2 / BMI2 zisonjululwe;
- Kwi-Linux, i-"--import-token-keyfiles" inketho yongezwe kwi-CLI, ehambelana nemo engasebenziyo;
- Kwi-Linux kunye ne-macOS, itshekhi yokufumaneka kwendawo yasimahla kwinkqubo yefayile ukulungiselela isikhongozeli sefayile esenziweyo yongeziwe. Ukukhubaza itshekhi, iflegi "--no-size-check" inikezelwe;
- KwiWindows, imowudi iphunyeziwe yokugcina izitshixo kunye neephasiwedi kwimemori kwifom efihliweyo usebenzisa i-ChaCha12 cipher, i-t1ha hash kunye ne-CSPRNG esekelwe kwi-ChaCha20. Ngokungagqibekanga, le ndlela ivaliwe, njengoko inyuka ngaphezulu kwe-10% kwaye ayivumeli inkqubo ukuba ibekwe kwindlela yokulala. KwiWindows, ukukhuselwa kolunye uhlaselo lokutsalwa kwememori longeziwe, ngokusekwe ekuphunyezweni kwi indlela yokuthintela ufikelelo kwimemori kubasebenzisi abangenawo amalungelo omlawuli. Kongezwe ukucocwa kwesitshixo phambi kokuvala, phambi kokuba uqalise, okanye (ukhetho) xa uqhagamshela isixhobo esitsha. Uphuculo lwenziwe kwi-UEFI bootloader. Inkxaso eyongeziweyo yokusebenzisa i-CPU RDRAND kunye nemiyalelo ye-RDSEED njengomthombo owongezelelweyo we-entropy. Imo eyongeziweyo yokunyuka ngaphandle kokwabela unobumba kwisahlulelo.
umthombo: opennet.ru