Iyo MLS end-to-end encryption protocol yakatomisikidzwa neIETF 

Nhau yakaburitswa kuti Komiti yeIETF (Internet Injiniya Task Force), iyo inovandudza mapuroteni uye dhizaini yeInternet, yakabvumidza kuburitswa kweiyo MLS standard (Messaging Layer Security), iyo inotsanangura protocol yekuronga kuguma-kusvika-kumagumo encryption mumashandisirwo ekutumira mameseji.

Unofanirwa kudaro Kukwidziridzwa kweMLS kuchabatanidza nzira dzekupedzisira-kusvika-kumagumo encryption yemeseji mumapoka anofukidza vaviri kana kupfuura vatori vechikamu uye inorerutsa kuita kwerutsigiro rwayo mukushandisa.

IETF yakatendera kuburitswa kweMessaging Layer Security (MLS), mwero mutsva wekuchengetedza-kusvika-kumagumo izvo zvinozoita kuti zvive nyore kune zvikumbiro kupa chengetedzo yepamusoro kune vashandisi vadzo. Kupera-kusvika-kumagumo encryption chinhu chinowedzera kukosha chekuchengetedza mumashandisirwo eInternet. Inochengeta ruzivo rwevashandisi rwakachengeteka, kunyangwe sevhisi yegore yavari kushandisa yakatyorwa.

Zvinyorwa zvinotsanangura dhizaini yeMLS uye protocol inoshandiswa kunyora mameseji zvakatumirwa kuti uongorore.

Kuitwa kwe MLS iri kuvandudzwa muC ++, Go, TypeScript, uye Rust. Kuvandudzwa kweMLS kunoenderana neruzivo rwemaprotocol aripo anoshandiswa kuchengetedza kutumira meseji, senge S/MIME, OpenPGP, Off the Record, uye Double Ratchet.

Kunyatso kugadzirira, kuita mashandiro, uye nzira dzekusimbisa dzinoitwa zvakafanana, uchishandisa nzira dzinoshandiswa mukugadzirira kweTLS 1.3 standard.

Maonero akadaro ichabvumira akati wandei anoenderana uye akaedzwa maitirwo eiyo protocol nokuti kana RFC yagadzirira. Kuitwa kweMLS parizvino kuri mukugadzirwa paWebex uye RingCentral yekutaurirana mapuratifomu, uye Wickr naMatrix vanorongawo kutamira kuMLS.

MLS yakavakirwa pazvidzidzo zvakanakisa kubva kuchizvarwa chazvino chekuchengetedza maprotocol. Kufanana neyakashandiswa zvakanyanya Double Ratchet protocol, MLS inogonesa kushanda kweasynchronous uye inopa epamberi chengetedzo maficha senge post-compromise chengetedzo. Uye, seTLS 1.3, MLS inopa huchokwadi hwakasimba, uye zvivakwa zvayo zvekuchengetedza zvakasimbiswa kuburikidza nekuyedzwa kwepamutemo. MLS inosanganisa akanakisa maficha eava akafanotangira uye anowedzera maficha senge kuyera kwakanaka kunhaurirano dzinosanganisira zviuru zvemidziyo pasina kupa chengetedzo.

Izvo zvinotaurwa kuti chinangwa chikuru kugadzira protocol itsva ndiko kubatana kwenzira dzekupedzisira-kusvika-kumagumo encryption uye kuunzwa kweimwe yakamisikidzwa protocol uye yakasimbiswa kuti inogona kushandiswa pachinzvimbo chezvibvumirano zvakasiyana zvakagadziriswa nevagadziri vakasiyana vanogadzirisa mabasa akafanana, asi zvisingaenderane.

Mukuwedzera kune izvi, zvinoonekwawo kuti MLS ichabvumira kushandiswa kwekugadzirira-kushandisa-kushandiswa kweprotocol yakatoedzwa mumashandisirwo akasiyana, pamwe nekuronga kuvandudza kwavo pamwe nekusimbisa.

Izvo zvakakosha kuti titaure kuti application level portability yakarongwa kuti ishandiswe pachokwadi, kiyi inotorwa uye kuvanzika nhanho (yekufambisa uye semantic level kuenderana kuri kunze kwechiyero chechiyero).

Nezve mabasa akagadziriswa neprotocol, zvinotevera zvakataurwa:

• Kuvanzika: mameseji anogona kuverengwa chete nenhengo dzeboka.
• Kuvimbika uye huchokwadi hunovimbisa: meseji yega yega inotumirwa nemutumwa ane chokwadi uye haigone kukanganiswa kana kuchinjwa munzira.
• Huchokwadi hwenhengo dzeboka: nhengo yega yega inokwanisa kuona chokwadi chedzimwe nhengo dzeboka.
• Asynchronous operation - Encryption kiyi inogona kuburitswa pasina kudiwa kwemapato ese ari online.
• Pamberi Pakuvanzika: kukanganisa mumwe wevatori vechikamu hakubvumidze kudzima mameseji akambotumirwa kuboka.
• Kudzivirirwa kwePost-compromise: Kukanganisa kwemumwe wevatori vechikamu hakubvumidze kunyorwa kwemeseji inozotumirwa kuboka mune ramangwana.
• Scalability: Kana zvichibvira, sublinear scalability maererano nekushandisa zviwanikwa zvichienderana nesaizi yedziva.

Finalmente Kana iwe uchida kuziva zvishoma nezvazvo, unogona kutarisa ruzivo mu chinotevera chinongedzo.