Iprojekthi ye-TFC (iNgxoxo ye-Tinfoil) iphakamise isixhobo se-hardware esinezibuko ze-USB ezi-3 ukudibanisa iikhomputha ezi-3 kunye nokudala inkqubo yemiyalezo ekhuselweyo ye-paranoid.
Ikhompyuter yokuqala isebenza njengesango lokuqhagamshela kwinethiwekhi kwaye iqalise inkonzo efihliweyo yeTor; ikhohlisa idatha esele ifihliwe.
Ikhomputha yesibini inamaqhosha e-decryption kwaye isetyenziselwa ukucima kunye nokubonisa imiyalezo efunyenweyo.
Ikhompyuter yesithathu inezitshixo zoguqulelo oluntsonkothileyo kwaye isetyenziselwa kuphela ukufihla kunye nokuthumela imiyalezo emitsha.
I-splitter ye-USB isebenza kwi-optocouplers kwi-"data diode" umgaqo kwaye idlulisa ngokwenyama idatha kuphela kwiindlela ezichaziweyo: ukuthumela idatha kwikhompyutheni yesibini kunye nokufumana idatha kwikhompyutheni yesithathu.
Ukuthomalalisa ikhompyuter yokuqala akuyi kukuvumela ukuba ufikelele kwizitshixo ze-encryption, idatha ngokwayo, kwaye ayiyi kukuvumela ukuba uqhubeke nokuhlaselwa kwezixhobo eziseleyo.
Xa ikhomputha yesibini iphazamiseka, umhlaseli uya kufunda imiyalezo kunye nezitshixo, kodwa akayi kukwazi ukudlulisela kwihlabathi langaphandle, ekubeni idatha ifunyenwe kuphela ngaphandle, kodwa ingathunyelwa ngaphandle.
Ukuba ikhomputha yesithathu iphazamisekile, umhlaseli unokuzenza umrhumi kwaye abhale imiyalezo egameni lakhe, kodwa akayi kukwazi ukufunda idatha evela ngaphandle (ekubeni iya kwikhompyutheni yesibini kwaye ikhutshwe apho).
I-Encryption isekelwe kwi-algorithm ye-256-bit XCha20-Poly1305, kunye nomsebenzi we-hash we-Argon2id ocothayo usetyenziselwa ukukhusela izitshixo nge-password. Utshintshiselwano oluphambili, i-X448 (i-Diffie-Hellman protocol esekelwe kwi-Curve448) okanye izitshixo ze-PSK (ezabiwe kwangaphambili) zisetyenziswa. Umyalezo ngamnye uhanjiswa kwimfihlo ephambili egqibeleleyo (i-PFS, i-Perfect Forward Secrecy) imodi esekelwe kwi-Blake2b hashes, apho ukuhambelana kwesinye sezitshixo zexesha elide akuvumeli ukuchithwa kweseshoni ebanjwe ngaphambili.
I-interface yesicelo ilula kakhulu kwaye ibandakanya iwindow eyahlulwe kwiindawo ezintathu - ukuthumela, ukufumana kunye nomgca womyalelo kunye nelogi yokunxibelelana kunye nesango. Ulawulo lwenziwa ngesethi ekhethekileyo yemiyalelo.
Inkqubo ikhowudi yeprojekthi ibhaliwe ePython kwaye ifumaneka phantsi kwelayisensi ye-GPLv3. Iisekethe zokuqhekeza zibandakanyiwe (PCB) kwaye ziyafumaneka phantsi kwelayisensi ye-GNU FDL 1.3, i-splitter inokudityaniswa kwiindawo ezikhoyo.
umthombo: linux.org.ru