Ngemva konyaka wentuthuko ukukhululwa kwephrojekthi , ethuthukisa imfoloko yohlelo lokubethela lwe-TrueCrypt disk partition, ubukhona bakho. I-VeraCrypt iyaphawuleka ngokushintsha i-algorithm ye-RIPEMD-160 esetshenziswe ku-TrueCrypt nge-SHA-512 kanye ne-SHA-256, ikhulisa inani lokuphindaphinda kwe-hashing, yenza inqubo yokwakha ibe lula ye-Linux ne-macOS, iqede. ekhonjwe ngesikhathi senqubo Amakhodi omthombo we-TrueCrypt. Ngesikhathi esifanayo, i-VeraCrypt inikeza imodi yokuhambisana nezihlukanisi ze-TrueCrypt futhi iqukethe amathuluzi okuguqula izingxenye ze-TrueCrypt zibe ifomethi ye-VeraCrypt. Ikhodi yakhiwe iphrojekthi ye-VeraCrypt ngaphansi kwelayisensi ye-Apache 2.0, futhi ibolekwe kwa-TrueCrypt ihlinzekwe ngaphansi kwelayisensi ye-TrueCrypt 3.0.
Ekukhishweni okusha:
- Ezingxenyeni ezingezona zesistimu, ubude bephasiwedi obukhulu bunyusiwe baba yizinhlamvu ezingu-128 ekubhalweni ngekhodi kwe-UTF-8. Ukuqinisekisa ukuhambisana namasistimu amadala, inketho yengeziwe ukuze kukhawulwe umkhawulo kasayizi wephasiwedi ube yizinhlamvu ezingama-64;
- Ukwesekwa kwelabhulali kwengezwe njengenye isiyalo se-CPU RDRAND , esebenzisa i-jitter ukukhiqiza i-hardware yezinombolo zezinombolo ezingahleliwe, ngokusekelwe ekucabangeleni ukuchezuka kwesikhathi sokwenza kabusha sesethi ethile yemiyalelo ku-CPU (CPU execution time jitter), okuncike ezintweni eziningi zangaphakathi futhi okungalindelekile ngaphandle kokulawula ngokomzimba phezu kwe-CPU;
- Ukuthuthukiswa kokusebenza kwenzelwe imodi ye-XTS kumasistimu angu-64-bit asekela imiyalelo ye-SSE2. Ukuthuthukiswa ngokwesilinganiso kukhuphule umkhiqizo ngo-10%;
- Ikhodi eyengeziwe ukuze kutholwe ukuthi i-CPU iyayisekela yini imiyalo ye-RDRAND/RDSEED namaphrosesa we-Hygon. Izinkinga zokuthola ukwesekwa kwe-AVX2/BMI2 sezixazululiwe;
- Ku-Linux, inketho ethi “--import-token-keyfiles” yengezwe ku-CLI, ehambisana nemodi engahlangani;
- Ku-Linux ne-macOS, isheke lokutholakala kwesikhala samahhala ohlelweni lwamafayela ukuze kufakwe isiqukathi sefayela esidaliwe sengeziwe. Ukuze ukhubaze isheke, ifulegi elithi “--no-size-check” liyanikezwa;
- Ku-Windows, kusetshenziswe imodi yokugcina okhiye namagama ayimfihlo enkumbulweni ngendlela ebethelwe kusetshenziswa i-ChaCha12 cipher, t1ha hash kanye ne-CSPRNG esekelwe ku-ChaCha20. Ngokuzenzakalelayo, le modi ikhutshaziwe, njengoba ikhuphuka phezulu cishe ngo-10% futhi ayivumeli isistimu ukuthi ifakwe kumodi yokulala. Ku-Windows, ukuvikeleka kokunye ukuhlaselwa kokukhipha inkumbulo kungeziwe, ngokusekelwe kulokho okusetshenziswe kuyo indlela yokukhawulela ukufinyelela kumemori kubasebenzisi abangenawo amalungelo omlawuli. Kungezwe ukusula ukhiye ngaphambi kokuvala, ngaphambi kokuqalisa kabusha, noma (ngokuzithandela) lapho uxhuma idivayisi entsha. Ukuthuthukiswa kwenziwe ku-UEFI boot loader. Ukwesekwa okwengeziwe kokusebenzisa i-CPU RDRAND kanye nemiyalelo ye-RDSEED njengomthombo owengeziwe we-entropy. Kwengezwe imodi yokukhweza ngaphandle kokunikeza incwadi ekuhlukaniseni.
Source: opennet.ru