Masaryk University Vanotsvagurudza Vakazivisa Ruzivo Importante nezve kusagadzikana mu siyana iMaitirwo eECSASA / EdDSA dijitari siginecha chizvarwa algorithm, iyo inobvumidza kudzoreredza kukosha kweyakavanzika kiyi zvichienderana nekuongororwa kweruzivo kudonhedza pamunhu mabiti anoonekwa kana uchishandisa nzira dzekuongorora kuburikidza neyechitatu-bato nzira Izvo zvinokuvadzwa zvakaverengerwa Minerva.
Iwo anozivikanwa mapurojekiti izvo zvinokanganisa iyo nzira yekurwisa yekurwisa ndeye OpenJDK, OracleJDK (CVE-2019-2894) uye raibhurari libgcrypt (CVE-2019-13627) inoshandiswa muGnuPG. Matambudziko acho zvakare inotapurwa nemaraibhurari MatrixSSL, Crypto ++, wolfCrypt, elliptical, jsrsasign, Python-ECDSA, ruby_ecdsa, fastecdsa uyezve mamwe smart makadhi Athena IDProtect, TecSec Yakashongedzwa Kadhi, SafeNet eToken 4300, Inoshanda S / A IDflex V.
Pamusoro pekusasimba kwakataurwa panguva ino ivo havana kukanganiswa OpenSSL, Botan, mbedTLS, uye BoringSSL. Mozilla NSS, LibreSSL, Nettle, BearSSL, cryptlib, OpenSSL mune FIPS nzira. Microsoft .NET crypto, Linux kernel libkcapi, Sodium, uye GnuTLS zvichiri kuyedzwa.
Isu tawana mashandisiro anorasikirwa nehurefu hweiyo scalar panguva yekuwedzera kwescalar muECC. Uku kudonha kunogona kuita senge miniscule sezvo hurefu hwakareba hune ruzivo diki kwazvo rwuripo muscalar. Nekudaro, mune iyo ECDSA / EdDSA siginecha chizvarwa, kusefa kureba zvishoma kweiyo zvisina kujairika nonce kwakakwanira kuzadzikiswa kwakazara kweyakavanzika kiyi inoshandiswa mushure mekucherechedza mazana mashoma kusvika kuzviuru mashoma masiginecha mumameseji anozivikanwa, nekuda kwekushandisa kwe mamwe maitiro.
Tinotenda kuti makadhi ese apfuura anokanganiswa nekuti anogovera chinhu chakajairika cheECDSA (module 214 module), iyo inorondedzerwa seAthena OS2 ECDSA755 Chikamu chiri Mukati Chengetedzo AT90SC A1.0 (Firmware). Isu takaedza kushomeka chete paAthena IDProtect kadhi ine CPLC uye ATR data
Dambudziko rinokonzereswa nekugona kuona ega ega kukosha panguva yekuwanza ne scalar panguva yekutengesa ECC. Nzira dzisiri dzakananga, sekufungidzira kunonoka pakuita kuverenga, dzinoshandiswa kutora zvishoma ruzivo.
Kurwisa kunoda mukana usina mukana kune iye Anogamuchira umo siginicha yedhijitari inogadzirwa (kurwisa kuri kure hakubviswi, asi kwakaomarara uye kunoda huwandu hwakawanda hwedata kuti uongororwe, saka zvinogona kutarisirwa sezvisingaiti).
Zvisinei nehukuru hudiki hwekudonha, kune ECDSA tsananguro yemabhureti mashoma ane ruzivo nezve yekutanga vector (nonce) inokwana kuita kurwisa kuti sequentially kudzoreredza yakavanzika yakavanzika kiyi.
Zvinoenderana nevanyori venzira iyi, yekubudirira kiyi kudzoreredza, kuongororwa kwemazana akati wandei kuzviuru zvemazana akagadzirwa masiginecha edhijitari zvakakwana kune mameseji anozivikanwa kune anorwisa. Semuenzaniso, kuona yakasarudzika kiyi inoshandiswa muAthena IDProtect smart kadhi inoenderana neInside Yakachengeteka AT90SC chip, uchishandisa iyo elliptic curve secp256r1, 11 zviuru zvemasaini edhijitari akaongororwa. Yakazara nguva yekurwisa yaive maminetsi makumi matatu.
Yedu yekurwisa kodhi uye humbowo hwepfungwa yakafemerwa neBrumley & Tuveri nzira.
Dambudziko ratogadziriswa mu libgcrypt 1.8.5 uye wolfCrypt 4.1.0, mamwe mapurojekiti haasati aunza zvinyorwa. Izvo zvakare zvinokwanisika kutsvaga iyo yekusagadzikana kugadzirisa mune libgcrypt package mune zvinogoverwa pane aya mapeji: Debian, Ubuntu, RHEL, Fedora, vhuraSUSE / SUSE, FreeBSD, Arch.
Vatsvakurudzi vakaedzawo mamwe makadhi uye maraibhurari, ayo anotevera asiri panjodzi.
- OpenSSL 1.1.1d
- Bouncy Castle 1.58
- BoringSSL 974f4dddf
- libtomcrypt 1.18.2
- Boot 2.11.0
- Microsoft CNG
- mbedTLS 2.16.0
- Intel IPP-Crypto
Makadhi
- DHW ACOSJ 40K
- Feitian A22CR
- G & D SmartCafe 6.0
- G & D SmartCafe 7.0
- Infineon CJTOP 80K INF SLJ 52GLA080AL M8.4
- Infineon SLE78 Yese JCard
- NXP JCOP31 v2.4.1
- NXP JCOP CJ2A081
- NXP JCOP v2.4.2 R2
- NXP JCOP v2.4.2 R3
- SIMOME TaiSYS Vault
Kana iwe uchida kuziva zvakawanda nezve kurwiswa kunoshandiswa uye kushomeka kwakaonekwa, unogona kuzviita mu inotevera chinongedzo. Maturusi anoshandiswa kudzokorora kurwisa anowanikwa kurodha pasi.