Kungani i-cryptography? Mina ngokwami ββnginolwazi olukha phezulu ngakho. Yebo, ngifunde umsebenzi wakudala , kodwa kudala kakhulu; Yebo, ngiyawuqonda umehluko phakathi kokubethela kwe-symmetric kanye ne-asymmetric, ngiyaqonda ukuthi amajika ayi-elliptic ayini, kodwa yilokho kuphela. Ngaphezu kwalokho, imitapo yolwazi ye-cryptographic ekhona, enomkhuba wayo omuhle wokufaka igama eliphelele le-algorithm egameni lomsebenzi ngamunye kanye nenqwaba yeziqalisi eziphumayo, inginikeza i-butthurt embi njengomhleli wezinhlelo.
Pho kungani? Mhlawumbe ngenxa yokuthi lapho ngifunda igagasi lamanje lokushicilelwe mayelana nokuvikelwa kwedatha, ulwazi oluyimfihlo, njll., ngiba nomuzwa wokuthi simba endaweni engafanele, noma ngokuqondile, sizama ukuxazulula izinkinga zomphakathi ngosizo lwezobuchwepheshe. kusho (i-cryptography). Ake sikhulume ngalokhu, angithembisi ukutholwa kwenkathi, kanye neziphakamiso ezibambekayo, imicabango eyize imane nje: ayisebenzi.
Ingcosana yomlando, kancane nje
Ngo-1976, i-United States yamukela indinganiso ye-Federal for symmetric encryption algorithms - DES. Bekuyi-algorithm yokuqala yomphakathi kanye nesezingeni eliphansi le-cryptographic eyakhiwe ukuphendula izimfuno zebhizinisi ezikhulayo zokuvikelwa kwedatha.
Ilukuluku lentshebe
I-algorithm ishicilelwe ngephutha. Yenzelwe ukusetshenziswa kwezingxenyekazi zekhompuyutha futhi yabhekwa njengeyinkimbinkimbi kakhulu futhi ingasebenzi kahle ekusetshenzisweni kwesofthiwe. Nokho, uMthetho kaMoore washeshe wabeka yonke into endaweni yawo.
Kungase kubonakale - ukuphela kwendaba, thatha, ukubethela, ukufihla, uma kunesidingo, ukwandisa ubude bokhiye. Mhlawumbe uyazi ngokuqinisekile ukuthi amaMelika ashiye amabhukumaka kuwo, khona-ke kukhona i-analogue yaseRussia kuwe - , okungenzeka ukuthi uyethemba kancane. Bese usebenzisa kokubili, eyodwa phezu komunye. Uma ukholelwa ukuthi i-FBI ne-FSB bahlangene ngenxa yakho futhi bashintshanisa amabhukumaka abo, khona-ke ngikuphathele izindaba ezinhle - awuyona i-paranoid, unokukhohlisa okungalungile kobukhulu.
Ngabe ukubethela kwe-symmetric kusebenza kanjani? Bobabili ababambiqhaza bawazi ukhiye ofanayo, owaziwa nangokuthi igama-mfihlo, futhi lokho okubethelwe ngawo kungaphinda kususwe ukubethela ngawo. Uhlelo lusebenza kahle ezinhlolini, kodwa alufaneleki neze i-Intanethi yesimanje, ngoba lesi sihluthulelo kufanele sidluliselwe ku-interlocutor ngamunye kusengaphambili. Isikhathi esithile, nakuba izinkampani ezimbalwa uma kuqhathaniswa zivikela idatha yazo lapho zixhumana nozakwethu owaziwayo ngaphambili, inkinga yaxazululwa ngosizo lwezithunywa neposi elivikelekile, kodwa i-Inthanethi yabe isisabalele futhi yangena esithombeni.
I-cryptography ye-asymmetric
lapho kuhileleke okhiye ababili: umphakathi, okungagcinwa kuyimfihlo futhi kwaziswa noma ubani; Futhi okuyimfihlo, okwaziwa ngumnikazi wayo kuphela. Okubethelwe ngokhiye osesidlangalaleni kungasuswa ukubethela ngomunye oyimfihlo, futhi okuphambene nalokho. Ngakho-ke, noma ubani angathola ukhiye womphakathi womamukeli futhi amthumele umlayezo, umamukeli kuphela ozoyifunda. Kubonakala sengathi inkinga isixazululiwe?
Nokho i-inthanethi ayisebenzi ngaleyo ndlela, inkinga iqhamuka ngamandla ubuqiniso futhi ikakhulukazi, ukuqinisekiswa kokuqala, futhi ngomqondo othile inkinga ephambene ukungaziwa. Ngamafuphi, ngingaqiniseka kanjani ukuthi umuntu engikhuluma naye ungumuntu ngempela ebengihlose ukukhuluma naye? kanti ukhiye womphakathi engiwusebenzisayo empeleni ungowomuntu ebengizokhuluma naye? Ikakhulukazi uma ngiqala ngqa ukuxhumana naye? Futhi ungakugxilisa kanjani ukuzethemba kumlingani wakho kuyilapho ugcina ukungaziwa? Kakade lapha, uma ubhekisisa kahle, ungabona ukuphikisana kwangaphakathi.
Ake sibheke ngokwejwayelekile ukuthi yimaphi amaphethini okusebenzelana phakathi kwabahlanganyeli akhona futhi asetshenziswa ekusebenzeni:
- iseva - iseva (noma ibhizinisi - ibhizinisi, kulo mongo bayinto efanayo): lesi yisimiso esilula kunazo zonke, lapho i-cryptography ye-symmetric yanele ngokwanele, ababambiqhaza bazi konke ngomunye nomunye, kuhlanganise noxhumana nabo ngaphandle kwenethiwekhi. Kodwa-ke, sicela uqaphele ukuthi asikhulumi ngisho nganoma yikuphi ukungaziwa lapha, futhi inani labahlanganyeli likhawulelwe kokubili. Okusho ukuthi, lolu wuhlelo olucishe lufane nenani elilinganiselwe kakhulu lokuxhumana futhi, esimweni esijwayelekile, ngokusobala alusebenzi kangako.
- iseva - engaziwa (noma ibhizinisi - iklayenti): kukhona i-asymmetry ethile lapha, ehlinzekwa ngempumelelo nge-cryptography ye-asymmetric. Iphuzu elibalulekile lapha ukuntuleka kokuqinisekiswa kweklayenti; iseva ayinandaba nokuthi ihwebelana nobani ngedatha; uma kudingekile ngokuzumayo, iseva iyaqhuba ukuqinisekiswa kwesibili usebenzisa iphasiwedi okuvunyelwene ngayo ngaphambili, bese yonke into yehlela esimweni sangaphambilini. Ngakolunye uhlangothi, iklayenti kubaluleke kakhulu ukuqinisekiswa kweseva, ufuna ukuqiniseka ukuthi idatha yakhe ifinyelela ngqo kumuntu ayithumele kuye, lolu hlangothi ekusebenzeni lusekelwe ohlelweni lwesitifiketi. Ngokuvamile, lolu hlelo lumbozwe kalula futhi ngokusobala yi-https:// protocol, kodwa amaphuzu ambalwa athakazelisayo avela empambanweni ye-cryptography ne-sociology.
- thembela kuseva: noma ngabe ngithumele ulwazi oluthile enyakatho ngendlela ephephe ngokuphelele, ngokobuchwepheshe abantu bangaphandle banokufinyelela kulo. Le nkinga ingaphandle ngokuphelele kobubanzi bokubethela, kodwa ngicela ukuthi ukhumbule leli phuzu, lizovela kamuva.
- ukwethemba isitifiketi seseva: i-hierarchy yezitifiketi isekelwe eqinisweni lokuthi kukhona okuthile impande isitifiketi esifanele ngokuphelele ukwethemba. Ngobuchwepheshe, umhlaseli onethonya ngokwanele [sicela ucabangele igama elithi umhlaseli njengetemu lobuchwepheshe, futhi hhayi njengokunyundela noma inhlamba kuhulumeni okhona] angangena esikhundleni sesitifiketi sanoma yiliphi izinga eliphansi, kodwa kucatshangwa ukuthi isistimu yesitifiketi idingwa yiwo wonke umuntu. ngokulinganayo, i.e. lesi sitifiketi sizokhishwa inyumbazane ngokushesha futhi zonke izitifiketi zakhe zizohoxiswa. Ngakho kunjalo, kodwa namanje phawula ukuthi uhlelo alusekelwe ezindleleni zobuchwepheshe, kodwa kuhlobo oluthile lwenkontileka yomphakathi. Ngendlela, mayelana nokushisaNjengengxenye yosuku lwembubhiso olulindelekile lwe-RuNet, ingabe ukhona oseke wahlaziya ukuthi kungenzeka yini ukuphunyuka kwesitifiketi sempande yaseRussia kanye nemiphumela? Uma kukhona ofunde/obhale ngalesi sihloko, ngithumele izixhumanisi, ngizozengeza, ngicabanga ukuthi isihloko siyathakazelisa
- ngokungaqondile ukungadalulwa kuseva: futhi kuyindaba ebuhlungu, ngisho noma iseva ingenakho ukubhaliswa okusemthethweni/ukuqinisekisa, ziningi izindlela zokuqoqa ulwazi mayelana neklayenti futhi ekugcineni limhlonze. Kimina kubonakala sengathi umsuka wenkinga usesivumelwaneni esikhona se-http:// nezinye ezifana nayo, njengoba bekulindelekile, bekungeke kubone kusengaphambili ukucasuka okunjalo; kanye nokuthi kungenzeka ukuthi kwakhiwe umthetho olandelwayo ofanayo ngaphandle kwalezi zimbobo. Nokho, lokhu kungqubuzana nazo zonke izinqubo ezikhona zokwenza imali ngakho-ke akunakwenzeka. Usazibuza, ngabe ukhona owake wayizama?
- engaziwa - engaziwa: abantu ababili bahlangana ku-inthanethi, (inketho - bahlangane), (inketho - hhayi izinkulungwane ezimbili kodwa ezimbili), futhi bafuna ukuxoxa ngezinto zabo, kodwa ngendlela yokuthi Ubhuti Omkhulu akezwanga (okukhethwa kukho: umama akazange athole, wonke umuntu unokubaluleka kwakhe). Ungase uzwe indida ezwini lami, kodwa lokho kungenxa yokuthi yilokho okuyikho. Masisebenzise i-postulate ka-Schneier enkingeni (noma iyiphi i-algorithm ingaqhekeka uma izinsiza ezanele zitshaliwe, okungukuthi, imali nesikhathi). Kusukela kulo mbono, ukungena eqenjini elinjalo ngezindlela zomphakathi akumeleli noma yibuphi ubunzima, ingasaphathwa imali, okungukuthi, amandla e-cryptographic we-algorithm. uziro ngezindlela eziyinkimbinkimbi kakhulu zokubethela.
Nokho, kuleli cala sinesisekelo sesibili - ukungaziwa, futhi sibeka wonke amathemba ethu kuye, ngisho noma wonke umuntu esazi, kodwa akekho ongasithola. Nokho, ngezindlela zesimanje zobuchwepheshe zokuvikela, ingabe ucabanga ngempela ukuthi unalo ithuba? Ake ngikukhumbuze ukuthi manje ngikhuluma kuphela ngokungaziwa; kubonakala sengathi sesikuqedile ngokugculisayo ukuvikela idatha. Ukuze kucace, masivumelane ukuthi uma igama lakho laziwa noma ikheli lasekhaya noma Ikheli le-IP, ukuphuma kwehlulekile ngokuphelele.
Uma sikhuluma nge-ip, yilapho okungenhla kuqala khona thembela kuseva, uyazi i-IP yakho ngaphandle kokungabaza. Futhi lapha yonke into idlala ngokumelene nawe - kusukela ekufuneni ukwazi kwabantu okulula kanye nobuze, izinqubomgomo zebhizinisi kanye nokwenza imali okufanayo. Vele ukhumbule ukuthi i-VPS ne-VPN nazo zingamaseva; kumathiyori we-cryptography, lezi zifinyezo azinamsebenzi ngandlela thize; Yebo, futhi igunya leseva alidlali indima uma kunesidingo esikhulu. Lokhu kuhlanganisa nokubethela ngasemaphethelweni - kuzwakala kumnandi futhi kuqinile, kodwa iseva kusafanele ithathele izwi layo ngakho.
Ithini indima ejwayelekile yeseva kusithunywa esinjalo? Okokuqala, kuyinto encane kumuntu ophethe iposi, uma umamukeli engekho ekhaya, ukuba abuye kamuva. Kodwa futhi, futhi lokhu kubaluleke kakhulu, leli iphuzu lomhlangano, awukwazi ukuthumela incwadi ngokuqondile kumamukeli, uyithumele kuseva ukuze idluliselwe phambili. Futhi okubaluleke kakhulu, iseva iyaqhuba ubuqiniso obudingekayo, eqinisekisa kuwo wonke umuntu ukuthi unguye, futhi nakuwe - ukuthi umxhumanisi wakho nguye ngempela omdingayo. Futhi ukwenza lokhu esebenzisa ifoni yakho.
Awucabangi ukuthi isithunywa sakho sazi okuningi ngawe? Cha, cha, yebo siyamkholelwa (futhi ngendlela, ifoni yethu ngesikhathi esifanayo, hmm), kodwa abadwebi be-cryptographers bayasiqinisekisa ukuthi lokhu kuyize, ukuthi asikwazi ukuthemba noma ubani nhlobo.
Awuqinisekanga? Kodwa kukhona ubunjiniyela obufanayo bezenhlalakahle, uma unabaxhumanisi abayikhulu eqenjini, kufanele ucabange ukuthi ama-50% azo ayizitha, ama-49% angaba yize, ayiziphukuphuku, noma angenandaba. Futhi iphesenti elilodwa elisele, kungakhathaliseki ukuthi uqine kangakanani ezindleleni zokuphepha kolwazi, cishe awukwazi ukumelana nochwepheshe wezengqondo engxoxweni.
Okuwukuphela kwecebo lokuzivikela kubonakala sengathi ukulahleka phakathi kwezigidi zamaqembu afanayo, kodwa lokhu akusekho ngathi, futhi mayelana nezinhloli zamaphekula ezingenasidingo sodumo noma ukwenza imali ku-inthanethi.
Nokho, kubonakala kimi ukuthi ngandlela-thile ngafakazela (cha, angizange ngifakazele, ngivele ngafakazela) imicabango yami enzima mayelana nokuvikelwa kwedatha kumodeli yesimanje yomphakathi. Iziphetho zilula kodwa ziyadabukisa - akufanele sithembele osizweni oluningi oluvela ekubethelweni kwedatha kunalokho esesivele sinalo, i-cryptography yenze konke ebingakwenza, futhi yenze kahle, kodwa imodeli yethu ye-inthanethi iphikisana ngokuphelele nesifiso sethu sobumfihlo futhi ichitha yonke imizamo yethu. . Eqinisweni, angilokothi ngibe nenhliziyo embi futhi ngingathanda ngempela ukusho okuthile okukhanyayo manje, kodwa angazi nje ukuthi yini.
Zama ukubheka esigabeni esilandelayo, kodwa ngiyakuxwayisa - kukhona amaphupho angelona isayensi anombala werose, kodwa angase aqinisekise othile, futhi okungenani ahlekise othile.
Kungenzeka yini ukwenza noma yini?
Ngokwesibonelo, cabanga ngalesi sihloko, mhlawumbe ngokukhulula ukwazi kwakho futhi ulahle ubandlululo. Ngokwesibonelo, ake okwesikhashana ngokuphelele asidele ukungaziwa, kungakhathaliseki ukuthi kuzwakala kubi kangakanani. Vumela wonke umuntu anikezwe ukhiye osesidlangalaleni oyingqayizivele kusukela ekuzalweni, kanye nokhiye oyimfihlo ohambisanayo, kunjalo. Asikho isidingo sokungimemeza futhi ushaye phansi ngezinyawo zakho, umhlaba okahle lokhu kulula kakhulu - lapha unepasipoti yakho, inombolo kamazisi yentela, kanye nenombolo yocingo ebhodleleni elilodwa. Ngaphezu kwalokho, uma ungeza isitifiketi esisodwa kulokhu, uthola isiqinisekisi/ukungena ngemvume kwendawo yonke; kanye ne-pocket notary enekhono lokuqinisekisa noma yimiphi imibhalo. Ungenza isistimu ibe ngamaleveli amaningi - ukhiye womphakathi nesitifiketi kuphela ezitholakala esidlangalaleni, kubangani (uhlu lokhiye olunamathiselwe lapha) ungenza ifoni yakho itholakale nokuthi yini enye abathembayo abangani, kungase kube nokujula nakakhulu. amazinga, kodwa lokhu vele kusho ukwethemba okungadingekile kuseva .
Ngalolu hlelo, ubumfihlo bolwazi oludlulisiwe lufinyelelwa ngokuzenzakalelayo (nakuba ngakolunye uhlangothi, kungani, emhlabeni okahle?), U-Alice ubhalela u-Bob okuthile, kodwa akekho oyoke afunde ngaphandle kukaBob ngokwakhe. Zonke izithunywa zithola ngokuzenzakalelayo ukubethela kokuphela-kuya-ekupheleni, indima yazo yehliselwa emabhokisini eposi futhi, empeleni, angeke kube khona izikhalazo mayelana nokuqukethwe. Futhi amaseva ngokwawo ayashintsheka, ungathumela ngenye, noma ngenye, noma ngoxhaxha lwamaseva, njenge-imeyili. Ungakwazi futhi ukuthumela ngokuqondile kumamukeli uma i-IP yakhe yaziwa, ngaphandle kokuxhumana nhlobo nabaxhumanisi. Akukuhle lokho? Kuyadabukisa ukuthi ngeke kudingeke siphile kulesi sikhathi esimnandi - hhayi mina noma ngawe. Nn-yebo, futhi ngikhuluma ngezinto ezibuhlungu.
Okulandelayo, ungakugcina kuphi konke lokhu? Hhayi-ke, phezulu kwekhanda lami, dala isistimu ye-hierarchical evulekile, into efana ne-DNS yamanje, enamandla kuphela futhi ebanzi. Ukuze ungathwali abalawuli be-DNS impande ngezengezo nokulungiswa, ungenza ukubhaliswa kwamahhala, isheke elidingekayo kuphela elokuhluka. Like >> " Sawubona, singabantu abahlanu, umndeni Ivanov. Nanka amagama/iziteketiso zethu, nazi okhiye basesidlangalaleni. Uma noma ubani ebuza, sicela usithumelele yona. Futhi nalu uhlu logogo abayikhulu namakhulu amahlanu abavela endaweni yethu nokhiye babo, uma bebuzwa, basithumelele nathi.Β«
Udinga nje ukwenza ukufakwa nokucushwa kweseva enjalo yasekhaya kube lula kakhulu futhi kube lula, ukuze noma ubani akwazi ukukuthola uma efuna, futhi, akekho ozophinde alayishe noma yimaphi amaseva asemthethweni kahulumeni.
Yiyeke!, kodwa umbuso uhlangene ngani ngakho?
Kodwa manje ungakwazi ukubuyisela ngokucophelela ukungaziwa. Uma noma ubani engazikhiqizela ukhiye womuntu siqu futhi awuqinisekise ngesitifiketi ngasinye futhi azifakele iseva ye-CA yezinga eliphansi, noma abuze umakhelwane, noma kwiseva ethile yomphakathi, kungani kudingeka konke lokhu okusemthethweni? Futhi-ke asikho isidingo sokunamathela kumlingiswa wangempela, ubumfihlo obuphelele, ukuphepha nokungaziwa. Kwanele ukuthi ekuqaleni kwesigaba sobukhosi kukhona umuntu onokwethenjelwa, kahle, sikholelwa ku-TM noma Masibhale Ngemfihlo, futhi ama-DNS omphakathi awaziwayo akakathumeli muntu ku-steppe. Kubonakala sengathi akufanele kube khona izikhalazo ezivela kubaphathi noma, okungukuthi, ngokuqinisekile kuzoba nezikhalazo, kodwa kuze kube sekupheleni?
Mhlawumbe ngolunye usuku uhlelo olunjalo, noma into efanayo, izokwakhiwa. Futhi-ke, asinaye umuntu esingathembela kuye ngaphandle kwethu; asikho izifundazwe engizaziyo ezokwakha uhlelo olunjalo. Ngenhlanhla, iTelegram ekhona kakade, i2p, Tor, futhi mhlawumbe omunye umuntu engimkhohliwe, ibonisa ukuthi akukho lutho olungenakwenzeka. Lena inethiwekhi yethu, futhi kufanele siyihlomise uma singanelisekile ngesimo samanje sezindaba.
Brrr, ngigcine ngephutha ngenothi elidabukisayo. Eqinisweni, angikuthandi lokhu, ngandlela-thile ngithanda ukubhuqa.
PS: Konke lokhu, kunjalo, i-pink snot namaphupho amantombazane
I-PPS: kodwa uma kungazelelwe othile enquma ukuyizama, ngigcinele isiteketiso ngiyakucela, sengikujwayele
I-PPPS: futhi ukuqaliswa kubonakala kulula ngendlela
Source: www.habr.com