I-ProHoster > Π‘Π»ΠΎΠ³ > izindaba ze-inthanethi > Isu Elisha Eliseceleni Lokuhlasela Isiteshi Sokubuyisela Okhiye Be-ECDSA

Isu Elisha Eliseceleni Lokuhlasela Isiteshi Sokubuyisela Okhiye Be-ECDSA

Abacwaningi baseNyuvesi. I-Masaryk kungamboziwe ulwazi mayelana ubuthakathaka ekusetshenzisweni okuhlukahlukene kwe-algorithm yokudala isiginesha yedijithali ye-ECDSA/EdDSA, ekuvumela ukuthi ubuyisele inani lokhiye oyimfihlo ngokusekelwe ekuhlaziyweni kokuvuza kolwazi mayelana nezingcezu ngazinye ezivelayo lapho kusetshenziswa izindlela zokuhlaziya zezinkampani zangaphandle. Ubungozi buqanjwe ngekhodi ethi Minerva.

Amaphrojekthi aziwa kakhulu athintwa indlela yokuhlasela ehlongozwayo yi-OpenJDK/OracleJDK (CVE-2019-2894) kanye nomtapo wolwazi. I-Libgcrypt (CVE-2019-13627) isetshenziswe ku-GnuPG. Iphinde ibe sengozini I-MatrixSSL, I-Crypto++, wolfCrypt, i-elliptic, jsrsasign, i-python-ecdsa, ruby_ecdsa, fastecdsa, lula-ecc kanye ne-Athena IDProtect smart cards. Akuhloliwe, kodwa amakhadi e-Valid S/A IDflex V, SafeNet eToken 4300 kanye ne-TecSec Armored Card, asebenzisa imojula evamile ye-ECDSA, nawo amenyezelwa njengangase sengozini.

Inkinga isivele ilungisiwe ekukhishweni kwe-libgcrypt 1.8.5 kanye ne-wolfCrypt 4.1.0, amaphrojekthi asele awakakhiqizi izibuyekezo. Ungakwazi ukulandelela ukulungiswa kokuba sengozini kuphakheji ye-libgcrypt ekusatshalalisweni kulawa makhasi: Debian, Ubuntu, RHEL, Fedora, vulaSUSE / SUSE, I-FreeBSD, Arch.

Ukuba sengozini ayingenwa kalula I-OpenSSL, i-Botan, i-mbedTLS ne-BoringSSL. Ayikahlolwa i-Mozilla NSS, LibreSSL, Nettle, BearSSL, cryptlib, OpenSSL kumodi ye-FIPS, Microsoft .NET crypto,
libkcapi kusuka ku-Linux kernel, i-Sodium ne-GnuTLS.

Inkinga ibangelwa ikhono lokunquma amanani amabhithi angawodwana ngesikhathi sokuphindaphinda kwe-scalar emisebenzini ye-elliptic curve. Izindlela ezingaqondile, njengokulinganisa ukubambezeleka kokubala, zisetshenziselwa ukukhipha ulwazi oluncane. Ukuhlasela kudinga ukufinyelela okungenanjongo kumsingathi lapho kukhiqizwa khona isiginesha yedijithali (hhayi ngaphandle kanye nokuhlasela okukude, kodwa kuyinkimbinkimbi kakhulu futhi kudinga inani elikhulu ledatha ukuze kuhlaziywe, ngakho-ke kungabhekwa njengento engenakwenzeka). Okokulayisha iyatholakala amathuluzi asetshenziselwa ukuhlasela.

Naphezu kobukhulu obuncane bokuvuza, ku-ECDSA ukutholwa ngisho nezingcezu ezimbalwa ngolwazi mayelana nevektha yokuqalisa (nonce) kwanele ukwenza ukuhlasela ukuze kutholwe wonke ukhiye oyimfihlo ngokulandelana kwawo. Ngokusho kwababhali bendlela, ukubuyisela ngempumelelo ukhiye, ukuhlaziya amasignesha edijithali angamakhulu ambalwa kuya ezinkulungwaneni ezimbalwa ezenzelwe imilayezo eyaziwa umhlaseli kwanele. Isibonelo, amasiginesha edijithali ayizinkulungwane eziyi-90 ahlaziywa kusetshenziswa ijika eliyielliptic le-secp256r1 ukuze kutholwe ukhiye oyimfihlo osetshenziswe kukhadi elihlakaniphile le-Athena IDProtect elisuselwa ku-Inside Secure AT11SC chip. Isikhathi esiphelele sokuhlasela bekuyimizuzu engama-30.

Source: opennet.ru

Engeza amazwana