U-Filippo Valsorda, umdwebi we-cryptographer obhekele ukuvikeleka kolimi lokuhlela lwe-Go kwa-Google, ushicilele ukukhishwa kokuqala okuzinzile kwensiza entsha yokubethela idatha, Iminyaka (Empeleni Ukubethela Okuhle). Insiza ihlinzeka ngesixhumi esibonakalayo somugqa womyalo esilula sokubethela amafayela kusetshenziswa i-symmetric (iphasiwedi) kanye ne-asymmetric (ukhiye womphakathi) ama-cryptographic algorithms. Ikhodi yephrojekthi ibhalwe ku-Go futhi isatshalaliswa ngaphansi kwelayisensi ye-BSD. Izakhiwo zilungiselelwe iLinux, iFreeBSD, iMacOS neWindows.
Imisebenzi eyisisekelo ifakiwe kulabhulali engasetshenziswa ukuhlanganisa ukusebenza okunikezwa insiza ezinhlelweni zakho. Ngokwehlukana, ngaphakathi kohlaka lwephrojekthi yokufutheka, okunye ukuqaliswa kwensiza efanayo nomtapo wolwazi, obhalwe ngolimi lwe-Rust, uyathuthukiswa. Ekubetheleni, kusetshenziswa ama-algorithms afakazelwe: I-HKDF (I-HMAC-based Extract-and-Expand Key Derivation Function), SHA-256, HMAC (Hash-based Message Authentication Code), X25519, Scrypt and ChaCha20-Poly1305 AEAD.
Phakathi kwezici ze-Age, okulandelayo kuyagqama: ikhono lokusebenzisa okhiye basesidlangalaleni abahlangene be-512-bit, abadluliswa kalula ngebhodi lokunamathisela; isixhumi esibonakalayo somugqa womyalo esilula asigcwaliswa kakhulu ngezinketho; ukuntuleka kwamafayela okumisa; Amathuba okusetshenziswa emibhalweni nasekuhlanganisweni nezinye izinsiza ngokwakha uchungechunge lwezingcingo ngesitayela se-UNIX. Kokubili ukukhiqiza okhiye bakho abahlangene nokusebenzisa okhiye be-SSH abakhona (“ssh-ed25519”, “ssh-rsa”) kuyasekelwa, okuhlanganisa nokusekelwa kwamafayela e-Github.keys. $ age-keygen -o key.txt Ukhiye osesidlangalaleni: age1ql3z7hjy58pw3hyww5ayyfg7zqgvc7w3j2elw2zmrj2kg5sfn9bqmcac8p $ tar cvz ~/data | Ubudala -r Age1ql3z7HHY58pw3hyww5pw7hywww7.zqmelr3bqmrd2bqmrf2p.TAR.TST.TAR.TS.GH.GZ $ .jpg > example.jpg.age $ age -d -i ~/.ssh/id_ed2 example.jpg.age > example.jpg
Kunemodi yokubethela ifayela yabamukeli abaningi ngesikhathi esisodwa, lapho ifayela libethelwa kanyekanye kusetshenziswa okhiye abambalwa basesidlangalaleni futhi uhlu ngalunye lwabamukeli lungakwazi ukulisusa. Amathuluzi ahlinzekwa nokubethela kwefayela okusekelwe ku-symmetric kanye nokuvikela amafayela okhiye abayimfihlo ngokuwabhala ngekhodi kusetshenziswa iphasiwedi. Isici esiwusizo ukuthi uma ufaka iphasiwedi engenalutho ngesikhathi sokubethela, insiza izokhiqiza ngokuzenzakalelayo futhi inikeze iphasiwedi eqinile. $ age -p secrets.txt > secrets.txt.age Faka umushwana wokungena (shiya kungenalutho ukuze ukhiqize ngokuzenzakalela ovikelekile): Usebenzisa umushwana wokungena ozenzakalelayo "release-response-step-brand-wrap-ankle-pair-unusual-sword-train" . $ age -d secrets.txt.age > secrets.txt Faka umushwana wokungena: $ age-keygen | Ubudala -p> key.age.age Esidlangalaleni: Iminyaka1YHM4GFTWFMRPZ87TDSLM530WRX6M79YY9F2HDZTAHNEHNEHNEHNEHNEHNEHPQRJPYX0 FAKA INCWADI YOKUMBIZA (Shiya Kungenalutho Ukuze Uzikhiqizele Ngokuzenzakalela i-aCure One): Usebenzisa i-Autogened-MEHEST-WAAST-SPFU INPUT-Actress".
Izinhlelo zesikhathi esizayo zihlanganisa ukwakhiwa kwe-backend yokugcina amagama ayimfihlo kanye neseva yezikhiye ezabiwe (PAKE), ukusekelwa kokhiye be-YubiKey, ikhono lokukhiqiza okhiye abakhumbuleka kalula ngendlela yesethi yamagama, nokudala. yensiza yokukhweza ubudala yokukhweza amafayela abethelwe noma izingobo zomlando ku-FS.
Source: opennet.ru