IMinerva: uthotho lwezinto ezisemngciphekweni ekuphunyezweni kwe-ECDSA / i-EdDSA

Darkcrizt

Imizuzu ye4

Minerva

Abaphandi abavela kwiYunivesithi yaseMasaryk baveze ulwazi kubalulekile malunga nokuba semngciphekweni kwi ezahlukeneyo iUkuphunyezwa kwe-ECDSA / i-EdDSA yedijithali yokutyikitywa kwesiginesha, evumela ukubuyisa ixabiso lesitshixo sangasese ngokusekwe kuhlalutyo lolwazi oluvuza kwiindawo ezithile ezibonakala xa kusetyenziswa iindlela zohlalutyo ngamajelo omntu wesithathu. Ukuba semngciphekweni kubhalwe ikhowudi eMinerva.

Ezona projekthi zidumileyo echaphazela indlela yokuhlasela ecetywayo zezi I-OpenJDK, i-OracleJDK (CVE-2019-2894) kunye nethala leencwadi libgcrypt (CVE-2019-13627) esetyenziswe kwiGnuPG. Iingxaki zezi ikwakho nakumathala eencwadi IMatrixSSL, i-Crypto ++, i-wolfCrypt, i-elliptical, i-jsrsasign, i-Python-ECDSA, i-ruby_ecdsa, i-fastecdsa kunye namakhadi smart I-Athena IDProtect, iKhadi leTecSec elinezixhobo, i-SafeNet eToken 4300, i-Valid S / A IDflex V.

Ukongeza kubuthathaka obukhankanyiweyo okwangoku abachaphazeleki I-OpenSSL, iBotan, i-mbedTLS, kunye ne-BoringSSL. IMozilla NSS, iLibreSSL, iNettle, iBearSSL, i-cryptlib, i-OpenSSL kwimo ye-FIPS. IMicrosoft .NET crypto, Linux kernel libkcapi, Sodium, kunye neGnuTLS kusafuneka zivavanywe.

Sifumene ukumiliselwa okuphulukana nobude besikali ngexesha lokuphindaphindwa kwesikali kwi-ECC. Oku kuvuza kunokubonakala ngathi yinto encinci kuba ubude bunenani elincinci kakhulu lolwazi olukhoyo kwisikali. Nangona kunjalo, kwimeko yokutyikitywa kwe-ECDSA / i-EdDSA, ukucoca ubude obungacwangciswanga banele ngokwaneleyo ukufumana kwakhona isitshixo sangasese esisetyenzisiweyo emva kokujonga amakhulu ambalwa ukuya kumawaka ambalwa atyikityo kwimiyalezo eyaziwayo, ngenxa yokusetyenziswa kweendlela ezithile .

Siyakholelwa ekubeni onke la makhadi angentla achaphazelekile ngenxa yokuba babelana ngecandelo le-ECDSA (imodyuli eyi-FIPS 214), echazwa njenge-Athena OS2 ECDSA755 Component ngaphakathi Insease Secure AT90SC A1.0 (Firmware). Sivavanye ubungozi kuphela kwikhadi le-Athena IDProtect ene-CPLC kunye nedatha ye-ATR

Ingxaki ibangelwa kukwazi ukumisela amaxabiso amaxabiso athile Ngexesha lokuphindaphindwa ngesikali ngexesha lokurhweba nge-ECC. Iindlela ezingathanga ngqo, ezinje ngokuqikelela ukulibaziseka ekwenzeni izibalo, zisetyenziselwa ukukhupha ulwazi.

Uhlaselo ludinga ukufikelela kumamkeli ongafikelelekiyo apho utyikityo lwedijithali luveliswa khona (uhlaselo olukude alufakwanga ngaphandle, kodwa luyinkimbinkimbi kwaye ludinga isixa esikhulu sedatha kuhlalutyo, yiyo loo nto kunokuthathwa njengokungenakwenzeka).

Ngaphandle kobungakanani obuncinci bokuvuza, kwi-ECDSA inkcazo yeebhitithi ezimbalwa ezinolwazi malunga nokuqaliswa kwevektha (nonce) yanele ukwenza uhlaselo ngokulandelelana kokubuyisela isitshixo sabucala esipheleleyo.

Ngokwababhali bendlela, ukubuyisela ngempumelelo isitshixo, uhlalutyo lwamakhulu aliqela ukuya kumawaka amawaka eesiginitsha ezivelisiweyo zanele yemiyalezo eyaziwa ngumhlaseli. Umzekelo, ukumisela isitshixo sangasese esisetyenzisiweyo kwi-Athena IDProtect smart card esekwe kwi-Inside Secure AT90SC chip, kusetyenziswa i-elliptic curve secp256r1, i-11 lamawaka atyikityiweyo. Ixesha lokuhlaselwa lilonke liyimizuzu engama-30.

Ikhowudi yethu yokuhlasela kunye nobungqina bengcinga iphefumlelwe yindlela yeBrumley & Tuveri.

Ingxaki sele ilungisiwe kwi-libgcrypt 1.8.5 kunye ne-wolfCrypt 4.1.0, ezinye iiprojekthi azikavelisi uhlaziyo. Kuyenzeka ukuba kulandelwe ukulungiswa komngcipheko kwiphakheji ye-libgcrypt kulwabiwo kula maphepha: Debian, Ubuntu, RHEL, Fedora, vulaSUSE / SUSE, FreeBSD, IArch.

Abaphandi baphinde bavavanya amanye amakhadi kunye neelayibrari, apho oku kulandelayo kungakhuselekanga:

  • I-OpenSSL 1.1.1d
  • IBhunga leCastle 1.58
  • UkukruqulaSSL 974f4dddf
  • i-libtomcrypt 1.18.2
  • IBotan 2.11.0
  • IMicrosoft CNG
  • I-mbedTLS 2.16.0
  • Intel IPP-Crypto

Cards

  • I-ACS ACOSJ 40K
  • Intlawulo ye-A22CR
  • IG & D SmartCafe 6.0
  • IG & D SmartCafe 7.0
  • Inkcazo: Infineon CJTOP 80K INF SLJ 52GLA080AL M8.4
  • I-Infineon SLE78 JCard yendalo iphela
  • I-NXP JCOP31 v2.4.1
  • I-NXP JCOP CJ2A081
  • I-NXP JCOP v2.4.2 R2
  • I-NXP JCOP v2.4.2 R3
  • I-SIMOME yeTAYSYS SIMOME

Ukuba ufuna ukwazi ngakumbi malunga nohlaselo olusetyenzisiweyo kunye nobuthathaka obufunyenweyo, ungakwenza oko kwi ukulandela ikhonkco. Izixhobo ezisetyenziselwa ukuphindaphinda uhlaselo ziyafumaneka ukhuphelo.


Shiya uluvo lwakho

Idilesi yakho ye email aziyi kupapashwa. ezidingekayo ziphawulwe *

*

*

  1. Uxanduva lwedatha: UMiguel Ángel Gatón
  2. Injongo yedatha: Ulawulo lwe-SPAM, ulawulo lwezimvo.
  3. Umthetho: Imvume yakho
  4. Unxibelelwano lwedatha: Idatha ayizukuhanjiswa kubantu besithathu ngaphandle koxanduva lomthetho.
  5. Ukugcinwa kweenkcukacha
  6. Amalungelo: Ngalo naliphi na ixesha unganciphisa, uphinde uphinde ucime ulwazi lwakho.