diff options
Diffstat (limited to 'files/zh-cn/nss/overview/index.html')
| -rw-r--r-- | files/zh-cn/nss/overview/index.html | 71 |
1 files changed, 0 insertions, 71 deletions
diff --git a/files/zh-cn/nss/overview/index.html b/files/zh-cn/nss/overview/index.html deleted file mode 100644 index d452abed79..0000000000 --- a/files/zh-cn/nss/overview/index.html +++ /dev/null @@ -1,71 +0,0 @@ ---- -title: Overview of NSS -slug: NSS/Overview -translation_of: Mozilla/Projects/NSS/Overview ---- -<h1 id="Open_Source_Crypto_Libraries">Open Source Crypto Libraries</h1> - -<h3 id="Proven_Application_Security_Architecture" name="Proven_Application_Security_Architecture">Proven Application Security Architecture</h3> - -<p>If you want to add support for SSL, S/MIME, or other Internet security standards to your application, you can use Network Security Services (NSS) to implement all your security features. NSS provides a complete open-source implementation of the crypto libraries used by AOL, Red Hat, Google, and other companies in a variety of products, including the following:</p> - -<ul> - <li><a class="external" href="https://www.mozilla.org/products/">Mozilla products</a>, including <a class="external" href="https://www.mozilla.com/firefox/">Firefox</a>, <a class="external" href="https://www.mozilla.com/thunderbird/">Thunderbird</a>, <a href="https://seamonkey-project.org/">SeaMonkey</a>, and <a href="https://support.mozilla.org/en-US/products/firefox-os">Firefox OS</a>.</li> - <li>AOL Instant Messenger (AIM)</li> - <li>Open source client applications such as <a class="external" href="https://wiki.gnome.org/Apps/Evolution">Evolution</a>, <a href="https://pidgin.im/">Pidgin</a>, <a href="https://www.openoffice.org/">Apache OpenOffice</a>, and <a href="https://www.libreoffice.org">LibreOffice</a>.</li> - <li>Server products from <a class="external" href="https://www.redhat.com/en/technologies">Red Hat</a>: <a class="external" href="https://www.redhat.com/en/technologies/cloud-computing/directory-server">Red Hat Directory Server</a>, <a class="external" href="https://www.redhat.com/en/technologies/cloud-computing/certificate-system">Red Hat Certificate System</a>, and the <a class="external" href="https://directory.fedoraproject.org/docs/389ds/administration/mod-nss.html">mod_nss</a> SSL module for the Apache web server.</li> - <li>Server products from Oracle (formerly Sun Java Enterprise System), including <a href="https://www.oracle.com/industries/communications/enterprise/products/messaging-server/index.html">Oracle Communications Messaging Server</a> and <a href="http://www.oracle.com/technetwork/middleware/id-mgmt/overview/index-085178.html">Oracle Directory Server Enterprise Edition</a>.</li> - <li><a href="https://www.suse.com/products/server/">SUSE Linux Enterprise Server</a> supports NSS and the <a class="external" href="https://documentation.suse.com/sles/11-SP4/html/SLES-all/cha-apache2.html#sec-apache2-nss">mod_nss</a> SSL module for the Apache web server.</li> -</ul> - -<p>NSS includes a framework to which developers and OEMs can contribute patches, such as assembler code, to optimize performance on their platforms. NSS 3.x has been certified on 18 platforms.</p> - -<p>For more detailed information about NSS, see <a class="external" href="https://wiki.mozilla.org/NSS">wiki.mozilla.org</a> and <a href="NSS_FAQ">NSS FAQ</a>.</p> - -<p>Source code for a Java interface to NSS is available in the Mozilla CVS tree. For details, see <a class="external" href="JSS">Network Security Services for Java</a>.</p> - -<p>NSS makes use of Netscape Portable Runtime (<a href="/en-US/docs/Mozilla/Projects/NSPR">NSPR</a>), a platform-neutral open-source API for system functions designed to facilitate cross-platform development. Like NSS, NSPR has been battle-tested in multiple products. For more information, see the <a class="external" href="https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSPR">NSPR Project Page</a>.</p> - -<h3 id="Interoperability_and_Open_Standards" name="Interoperability_and_Open_Standards">互操作性和开放标准</h3> - -<p>你可以使用NSS去支持一系列安全标准在你的应用中,包括如下:</p> - -<ul> - <li><a href="en/Glossary#SSL">SSL v3</a>. 安全套接层协议允许在客户端和服务端相互认证,并且是一个被认证和编码的链接建立.</li> - <li>TLS v1.3 (<a href="https://tools.ietf.org/html/rfc8446">RFC 8446</a>), <a href="https://tools.ietf.org/html/rfc5246">TLS v1.2 (RFC 5246</a>), <a href="https://tools.ietf.org/html/rfc4346">TLS v1.1 (RFC 4346</a>), <a class="external" href="https://www.ietf.org/rfc/rfc2246.txt">TLS v1 (</a><a class="external" href="https://tools.ietf.org/html/rfc2246" title="https://tools.ietf.org/html/rfc2246">RFC 2246</a>). IETF中取代SSL的传输层安全(TLS)协议.</li> - <li><a class="external" href="https://www.rsasecurity.com/rsalabs/pkcs/pkcs-1/index.html">PKCS #1</a>. 提供基于RSA算法的公钥密码的实现.</li> - <li><a class="external" href="https://www.rsasecurity.com/rsalabs/pkcs/pkcs-3/index.html">PKCS #3</a>. 提供Diffie-Hellman密钥协议的实现.</li> - <li><a class="external" href="https://www.rsasecurity.com/rsalabs/pkcs/pkcs-5/index.html">PKCS #5</a>. 提供基于密码学的加密技术RSA标准,例如加密用于存储私钥.</li> - <li><a class="external" href="https://www.rsasecurity.com/rsalabs/pkcs/pkcs-7/index.html">PKCS #7</a>. 提供密码学数据的应用,例如数字签名和数字信封.</li> - <li><a class="external" href="https://www.rsasecurity.com/rsalabs/pkcs/pkcs-8/index.html">PKCS #8</a>. 提供私钥存储和加密.</li> - <li><a class="external" href="https://www.rsasecurity.com/rsalabs/pkcs/pkcs-9/index.html">PKCS #9</a>. 管理选定的属性类型,包括与PKCS#7、PKCS#8和PKCS#10一起使用的属性类型.</li> - <li><a class="external" href="https://www.rsasecurity.com/rsalabs/pkcs/pkcs-10/index.html">PKCS #10</a>. 提供证书请求语法.</li> - <li><a class="external" href="https://www.rsasecurity.com/rsalabs/pkcs/pkcs-11/index.html">PKCS #11</a>. 提供加密令牌(如硬件加速器和智能卡)的通信,并与许应用独立特定算法和实现.</li> - <li><a class="external" href="https://www.rsasecurity.com/rsalabs/pkcs/pkcs-12/index.html">PKCS #12</a>. 提供存储和传输私钥,证书和其他机密格式的标准.</li> - <li><a href="en/Glossary#S.2FMIME">S/MIME (RFC 2311 and RFC 2633)</a>. IETF message specification (based on the popular Internet MIME standard) that provides a consistent way to send and receive signed and encrypted MIME data.</li> - <li><a href="https://developer.mozilla.org/en-US/docs/Mozilla/Security/x509_Certificates">X.509 v3</a>. 管理公钥密码中用于身份验证的证书格式的ITU标准.</li> - <li><a href="en/Glossary#OCSP">OCSP (RFC 2560)</a>. The Online Certificate Status Protocol (OCSP) governs real-time confirmation of certificate validity.</li> - <li><a class="external" href="https://www.ietf.org/rfc/rfc3280.txt">PKIX Certificate and CRL Profile (</a><a class="external" href="https://tools.ietf.org/html/rfc3280" title="https://tools.ietf.org/html/rfc3280">RFC 3280</a>). The first part of the four-part standard under development by the Public-Key Infrastructure (X.509) working group of the IETF (known at PKIX) for a public-key infrastructure for the Internet.</li> - <li>RSA, DSA, ECDSA, Diffie-Hellman, EC Diffie-Hellman, <a href="https://en.wikipedia.org/wiki/Advanced_Encryption_Standard">AES</a>, Triple DES, DES, RC2, RC4, SHA-1, SHA-256, SHA-384, SHA-512, MD2, MD5, HMAC: Common cryptographic algorithms used in public-key and symmetric-key cryptography.</li> - <li>FIPS 186-2 伪随机数发生器.</li> -</ul> - -<p>For complete details, see <a class="external" href="https://www.mozilla.org/projects/security/pki/nss/nss-3.11/nss-3.11-algorithms.html">Encryption Technologies</a>.</p> - -<h3 id="FIPS_140_Validation_and_NISCC_Testing" name="FIPS_140_Validation_and_NISCC_Testing">FIPS 140 Validation and NISCC Testing</h3> - -<p>The NSS software crypto module has been validated three times for conformance to FIPS 140 at Security Levels 1 and 2. For more information, see the <a href="FIPS_Mode_-_an_explanation">NSS FIPS</a> page (<a class="external" href="https://wiki.mozilla.org/FIPS_Validation">Or this one</a>).</p> - -<p>The NSS libraries passed the NISCC <a class="external" href="https://www.niscc.gov.uk/niscc/docs/re-20030930-00749.pdf?lang=en">TLS/SSL</a> and <a class="external" href="https://www.uniras.gov.uk/niscc/docs/re-20031104-00752.pdf?lang=en">S/MIME</a> test suites (1.6 million test cases of invalid input data).</p> - -<h3 id="Complete_Software_Development_Kit" name="Complete_Software_Development_Kit">Complete Software Development Kit</h3> - -<p>除了开发库和APIs,NSS还提供了<a href="https://developer.mozilla.org/en-US/docs/NSS/Tools">security tools</a>工具以提供调试,诊断,证书和密钥管理,密码学模块管理和其他开发任务.</p> - -<p>NSS comes with an extensive and growing set of <a href="/docs/Mozilla/Projects/NSS#Documentation">documentation</a>, including introductory material, API references, man pages for command-line tools, and <a class="external" href="https://developer.mozilla.org/en-US/docs/NSS/NSS_Sample_Code">sample code</a>.</p> - -<p>NSS is available as source and shared (dynamic) libraries. Every NSS release is backward compatible with previous releases, allowing NSS users to upgrade to the new NSS shared libraries without recompiling or relinking their applications.</p> - -<h3 id="Open-Source_Licensing_and_Distribution" name="Open-Source_Licensing_and_Distribution">Open-Source Licensing and Distribution</h3> - -<p>NSS is available under the <a href="https://www.mozilla.org/MPL/">Mozilla Public License</a>, version 2. The latest source code is available for free worldwide from <a class="external" href="https://www.mozilla.org" rel="freelink">https://www.mozilla.org</a> and its mirror sites.</p> |