ukukhululwa komtapo wolwazi we-cryptographic , esetshenziswe kuphrojekthi , imfoloko ye-GnuPG 2. Umtapo wolwazi uhlinzeka ngeqoqo elikhulu , esetshenziswa kuphrothokholi ye-TLS, izitifiketi ze-X.509, ama-cipher e-AEAD, ama-TPM, i-PKCS#11, i-hashing yephasiwedi, kanye ne-post-quantum cryptography. Umtapo wolwazi ubhalwe ku-C++11 futhi ngaphansi kwelayisensi ye-BSD.
Phakathi kwe ekukhishweni okusha:
- Kwengezwe i-Argon2 password hashing kanye nemisebenzi yokukhiqiza ukhiye esekelwe kuphasiwedi isebenzisa i-Argon2 ne-Bcrypt;
- Usekelo olungeziwe lwezinhlelo zokugcina izitifiketi ze-Windows ne-Linux. I-System_Certificate_Store API isetshenzisiwe, isebenza phezu kwezitolo zezitifiketi eziqondene ne-Windows, macOS ne-Linux. Kwengezwe i-trust_roots CLI ukuhlola izitolo zezitifiketi zesistimu;
- Kwengezwe ungqimba ukuze kuqinisekiswe ukuhambisana ne-libsodium (sodium.h);
- Ukwesekwa okwengeziwe kokuthumela imilayezo ye-DTLS HelloVerifyRequest ohlangothini lweseva;
- Ukusakaza kwe-TLS okusetshenzisiwe okuhambisana ne-boost::asio::ssl;
- Kunikezwe ukwesekwa kokuhlolwa kwe-TLS kusetshenziswa i-test suite evela ku-BoringSSL;
- Ukusebenza kwemodi engeziwe ;
- Ukuqaliswa kwe-XMSS (I-Extended Merkle Signature Scheme) kuhambisana ne-RFC 8391;
- Ukwesekwa okwengeziwe kwesandiso se-support_versions se-TLS 1.3;
- Kwengezwe ukuqaliswa okuhambisana ne-RFC 25519 kwe-Ed8032ph.
Source: opennet.ru