I-ProHoster > Π‘Π»ΠΎΠ³ > izindaba ze-inthanethi > Ukukhishwa kwe-cryptographic library wolfSSL 5.0.0

Ukukhishwa kwe-cryptographic library wolfSSL 5.0.0

Ukukhishwa okusha komtapo wezincwadi ohlangene we-cryptographic wolfSSL 5.0.0 kuyatholakala, kulungiselelwe ukusetshenziswa kuma-processor- kanye namadivayisi ashumekiwe abambezeleke inkumbulo afana namadivayisi e-inthanethi Yezinto, amasistimu asekhaya ahlakaniphile, amasistimu olwazi lwezimoto, amarutha namaselula. Ikhodi ibhalwe ngolimi C futhi isatshalaliswa ngaphansi kwelayisensi ye-GPLv2.

Umtapo wolwazi uhlinzeka ngokusetshenziswa okuphakeme kokusebenza kwama-cryptographic algorithms esimanje, okuhlanganisa i-ChaCha20, i-Curve25519, i-NTRU, i-RSA, i-Blake2b, i-TLS 1.0-1.3 kanye ne-DTLS 1.2, okuthi ngokusho konjiniyela ihlangene ngokuphindwe izikhathi ezingu-20 kunokuqaliswa okuvela ku-OpenSSL. Ihlinzeka nge-API yayo eyenziwe lula kanye nesendlalelo sokusebenzisana ne-OpenSSL API. Kukhona ukusekelwa kwe-OCSP (Iphrothokholi Yesimo Sesitifiketi Se-inthanethi) kanye ne-CRL (Uhlu Lokuhoxiswa Kwesitifiketi) ukuze kuhlolwe ukuhoxiswa kwesitifiketi.

Ukuqanjwa okuyinhloko kwe-wolfSSL 5.0.0:

  • Usekelo lweplathifomu eyengeziwe: I-IoT-Safe (enokusekelwa kwe-TLS), i-SE050 (enokusekelwa kwe-RNG, SHA, AES, ECC kanye ne-ED25519) kanye ne-Renesas TSIP 1.13 (ye-RX72N microcontrollers).
  • Usekelo olungeziwe lwama-algorithms we-post-quantum cryptography amelana nokukhethwa kukhompuyutha ye-quantum: Amaqembu e-NIST Round 3 KEM we-TLS 1.3 kanye namaqembu ayi-hybrid NIST ECC asekelwe kuphrojekthi ye-OQS (Open Quantum Safe, liboqs). Amaqembu amelana nokukhethwa kukhompuyutha ye-quantum nawo engeziwe kungqimba ukuze kuqinisekiswe ukuhambisana. Usekelo lwe-algorithms ye-NTRU ne-QSH kunqanyuliwe.
  • Imojula ye-Linux kernel inikeza usekelo lwama-algorithms e-cryptographic athobelana nezinga lokuvikela le-FIPS 140-3. Umkhiqizo ohlukile wethulwa ngokusetshenziswa kwe-FIPS 140-3, ikhodi yayo isesigabeni sokuhlolwa, ukubuyekezwa nokuqinisekiswa.
  • Izinhlobonhlobo zama-algorithms e-RSA, ECC, DH, DSA, AES/AES-GCM, asheshiswe kusetshenziswa imiyalo ye-x86 CPU vector, yengezwe kumojula ye-Linux kernel. Ngokusebenzisa imiyalo ye-vector, izibambi eziphazamisayo nazo ziyasheshiswa. Kwengezwe usekelo lwesistimu engaphansi yokuhlola amamojula kusetshenziswa amasiginesha edijithali. Kungenzeka ukwakha injini ye-crypto ye-wolfCrypt eshumekiwe kumodi ye-β€œ-enable-linuxkm-pie” (isikhundla-ezimele). Imojula ihlinzeka ngosekelo lwe-Linux kernels 3.16, 4.4, 4.9, 5.4 kanye no-5.10.
  • Ukuqinisekisa ukuhambisana neminye imitapo yolwazi nezinhlelo zokusebenza, usekelo lwe-libssh2, i-pyOpenSSL, i-libimobiledevice, i-rsyslog, i-OpenSSH 8.5p1 ne-Python 3.8.5 yengezwe kusendlalelo.
  • Kwengezwe ingxenye enkulu yama-API amasha, afaka i-EVP_blake2, wolfSSL_set_client_CA_list, wolfSSL_EVP_sha512_256, wc_Sha512*, EVP_shake256, SSL_CIPHER_*, SSL_SESSION_*, njll.
  • Kulungiswe ubungozi obubili obuthathwa njengobubi: i-hang lapho udala amasiginesha edijithali ye-DSA enemingcele ethile nokuqinisekiswa okungalungile kwezitifiketi ezinamagama ahlukile ezinto eziningi lapho kusetshenziswa imikhawulo yokuqamba amagama.

Source: opennet.ru

Engeza amazwana