I-Update Framework, indlela yokuhlola ngokuphephile nokulanda izibuyekezo

Darkcrizt

Imizuzu ye-4

Kwamenyezelwa ukukhishwa kwenguqulo entsha engu-1.0 ye-The Update Framework, eyaziwa kangcono ngokuthi yi-TUF futhi ebonakala ngokuba wuhlaka oluhlinzeka ngezindlela zokuhlola nokulanda izibuyekezo ngokuphepha.

Inhloso eyinhloko yephrojekthi ukuvikela iklayenti ekuhlaselweni okuvamile kumakhosombe nengqalasizinda, okuhlanganisa ukumelana nokukhuthazwa kwezibuyekezo ezingamanga ngabahlaseli abadalwe ngemva kokuthola ukufinyelela kokhiye ukuze kukhiqizwe amasiginesha edijithali noma ukufaka engcupheni inqolobane.

Mayelana ne-TUF

Le phrojekthi ithuthukisa inani lemitapo yolwazi, amafomethi wefayela, nezinsiza ezingahlanganiswa kalula ezinhlelweni ezikhona zokuvuselela izinhlelo zokusebenza, ezihlinzeka ngokuvikeleka uma kwenzeka ukuyekethisa okubalulekile ngabathuthukisi be-software. Ukuze usebenzise i-TUF, mane ungeze imethadatha edingekayo endaweni yokugcina futhi ushumeke izinqubo ezinikezwe ku-TUF zokulayisha nokuqinisekisa amafayela kukhodi yeklayenti.

Uhlaka lwe-TUF ithatha umsebenzi wokubheka isibuyekezo, ilanda ifayela leukuze ubuyekeze futhi uqinisekise ubuqotho bayo. Isistimu yokufaka isibuyekezo ayiphambani ngokuqondile nemethadatha eyengeziwe, eqinisekiswa futhi yalayishwa yi-TUF.

Ukuze kuhlanganiswe nezinhlelo zokusebenza kanye nokuvuselela izinhlelo zokufaka, i-API yezinga eliphansi lokufinyelela imethadatha nokusebenzisa iklayenti le-API ngclient eliphezulu, elilungele ukuhlanganiswa kohlelo lokusebenza, linikezwa.

Phakathi kokuhlaselwa i-TUF engakwazi ukumelana nayo yizo esikhundleni senguqulo ngaphansi kwesigubuzelo sezibuyekezo zokuvimba ukulungiswa ekubeni sengozini kwesofthiwe noma ukubuyisela umsebenzisi enguqulweni yangaphambili esengozini, kanye ukuthuthukiswa kwezibuyekezo ezinonya kusayinwe kahle kusetshenziswa ukhiye oncishisiwe, kuhlasela i-DoS kumakhasimende, njengokugcwalisa idiski ngesibuyekezo esingapheli.

Ukuvikelwa enkingeni yengqalasizinda yomthengisi wesofthiwe ifinyelelwa ngokugcina amarekhodi ahlukene angaqinisekiswa wesimo senqolobane noma isicelo.

I-Los Imethadatha eqinisekiswe yi-TUF ihlanganisa ulwazi olubalulekile okungathenjwa, ama-cryptographic hashes ukuhlola ubuqotho befayela, amasiginesha engeziwe edijithali ukuze kuqinisekiswe imethadatha, ulwazi lwenombolo yenguqulo, kanye nolwazi lokurekhoda impilo yonke. Okhiye abasetshenziselwa ukuqinisekiswa banesikhathi sokuphila esilinganiselwe futhi badinga ukubuyekezwa njalo ukuze bavikeleke ekusayineni ngokhiye abadala.

Ukunciphisa ubungozi bokufaka engozini lonke uhlelo kufinyelelwa ngokusebenzisa imodeli ye-split trust, lapho iqembu ngalinye lilinganiselwe kuphela endaweni elibhekene nayo ngokuqondile.

Uhlelo lusebenzisa isigaba sezindima ezinokhiye bazo, isibonelo, indima eyimpande isayina izikhiye zezindima ezibhekele imethadatha endaweni yokugcina, idatha mayelana nesikhathi sokwakhiwa kwezibuyekezo kanye nokwakhiwa okuqondiwe, futhi, indima enesibopho sokwakha isayina izindima ezihambisana nokugunyazwa kwesitifiketi. amafayela athunyelwe.

Ukuvikela ekuyekeni okubalulekile, isebenzisa indlela yokuhoxisa ukhiye osheshayo nokufaka esikhundleni. Ukhiye ngamunye ugxila kuphela amandla amancane adingekayo, futhi imisebenzi ye-notarization idinga ukusetshenziswa kwezihluthulelo eziningana (ukuvuza kokhiye owodwa akuvumeli ukuhlaselwa ngokushesha kweklayenti, futhi ukuphazamisa lonke uhlelo, kuyadingeka ukubamba izihluthulelo ze bonke Abahlanganyeli).

Iklayenti lingamukela kuphela amafayela adalwe kamuva kunamafayela atholwe ngaphambilini, futhi idatha ilandwa kuphela ngokuya ngosayizi oshiwo kumethadatha eqinisekisiwe.

Inguqulo eshicilelwe ye I-TUF 1.0.0 inikeza ukuqaliswa kwesethenjwa esibhalwe kabusha ngokuphelele kanye nenguqulo ezinzile yokucaciswa kwe-TUF ongayisebenzisa njengesibonelo esingaphandle kwebhokisi lapho udala okwakho ukusebenzisa noma uhlanganisa amaphrojekthi akho.

Ukuqaliswa okusha iqukethe ikhodi encane kakhulu (imigqa engu-1400 esikhundleni sika-4700), kulula ukuyigcina futhi inganwetshwa kalula, isibonelo, uma udinga ukungeza usekelo lwezitaki zenethiwekhi ezithile, izinhlelo zokugcina, noma ama-algorithms wokubethela.

Le phrojekthi ithuthukiswa ngaphansi kwe-Linux Foundation futhi isetshenziselwa ukuthuthukisa ukuphepha kokulethwa kwesibuyekezo kumaphrojekthi afana ne-Docker, i-Fuchsia, i-Automotive Grade Linux, i-Bottlerocket, ne-PyPI (ukufakwa kokuqinisekiswa kokulanda kanye nemethadatha ku-PyPI kulindeleke maduze).

Okokugcina, uma ungathanda ukwazi okwengeziwe ngakho, ungabheka imininingwane Kulesi sixhumanisi esilandelayo.


Shiya umbono wakho

Ikheli lakho le ngeke ishicilelwe. Ezidingekayo ibhalwe nge *

*

*

  1. Ubhekele imininingwane: Miguel Ángel Gatón
  2. Inhloso yedatha: Lawula Ugaxekile, ukuphathwa kwamazwana.
  3. Ukusemthethweni: Imvume yakho
  4. Ukuxhumana kwemininingwane: Imininingwane ngeke idluliselwe kubantu besithathu ngaphandle kwesibopho esisemthethweni.
  5. Isitoreji sedatha: Idatabase ebanjwe yi-Occentus Networks (EU)
  6. Amalungelo: Nganoma yisiphi isikhathi ungakhawulela, uthole futhi ususe imininingwane yakho.