Cikana secure element, wanda kuma aka sani da tsaro tukunada, wani microprocessor ne mai hana cin zarafi da aka yi amfani da shi a cikin walat ɗin hardware don kare bayanan sirri da yin ayyukan cryptographic. Waɗannan katako suna da mahimmanci don adana bayanai amintacce da kuma sanya bayanai, kuma ana amfani da su a cikin samfuran daban-daban kamar IC katunan, SD katunan, SIM katunan, eSEs, madannai na tsaro na USB, da na'urori masu sawa.
Tsaron Cikana Secure Element
A 1999, Hukumar Kula da Ka'idoji ta Duniya (ISO) ta gabatar da ISO/IEC 15408, wanda aka fi sani da Ka'idojin Haɗin Kai (CC), don tantance tsaron IT. Wannan tsarin yana ba da jagororin ƙuntatawa don kimanta ayyukan tsaro na samfuran IT da tsarin, ta haka yana ƙarfafa amincewa ga masu amfani da tsaron tsarin yayin da yake rage buƙatar sake tantancewa.
Ana yin gwajin tsaro na tsaro a ƙarƙashin tsarin CC kuma ana ba su daraja ta lambobi daga EAL 1 zuwa EAL 7, wanda ke nuna matakin tabbacin tsaro. Matakan mafi girma suna nuna ƙarin buƙatun tsaro waɗanda aka cika daga fannoni daban-daban. Misali, samfuran EAL 4+ da EAL 5+ su ne ka'idoji a fannin kuɗi, yayin da samfuran EAL 6+ ake amfani da su don aikace-aikacen soja.
Abubuwan Mahimmanci na EAL 6+ Secure Elements
OneKey hardware wallets sun haɗa da EAL 6+ secure elements. Wannan EAL 6+ secure element yana da abubuwan mahimmanci masu zuwa:
Ayyukan Tsaro masu ƙarfi: Waɗannan sun haɗa da na'urorin sa ido na muhalli, binciken rashin aikin TRNG don hana rashin aiki, sanya bayanai a boye, rufe layin sadarwa, shigarwar reshe na bazuwar, hanyoyin jitter na agogo don kare tsallakewa, keɓantaccen rufi, binciken amincin bayanai, da sanya bayanai/layin sadarwa a boye don karewa daga kutse na jiki da bincike. Bugu da ƙari, akwai hanyar sarrafa damar gwaji don hana samun damar da ba a yarda ba.
True Random Number Generator (TRNG): TRNG ya ƙunshi tushen entropy, kewaye binciken kai, da kewaye na post-processing don tabbatar da aikin da ya dace da kuma bin hanyar AIS20/31 PTG.2.
Taimakon Algorithms na Cryptographic: Secure element yana goyan bayan TDES (wanda aka aiwatar da masu sarrafa kayan aikin hardware da kuma ɗakunan karatu na software, yana goyan bayan Triple-DES tare da hanyoyi biyu ko uku na 56-bit a yanayin ECB) da RSA (yana samar da hanyar RSA CRT don girman madannai daga 256 bits zuwa 4096 bits). Hakanan yana haɗa ayyuka don SHA-1, SHA-256, ECC, da AES.
Waɗannan sabbin katakon tsaro suna tabbatar da cewa madannai masu zaman kansu ana adana su a cikin yanayi mai kariya sosai, suna hana samun damar da ba a yarda ba da kuma kutse na jiki. Ta hanyar haɗa EAL 6+ secure elements, walat ɗin hardware suna ba masu amfani mafi girman matakin tabbacin tsaro, suna kare kadarorinsu na cryptocurrency daga barazanar dijital da ta jiki. Wannan tushen tsaro mai ƙarfi yana da mahimmanci don kiyaye amincewa da kwarin gwiwa a cikin sarrafawa da kare kadarorin dijital.