ProHoster > Блог > labaran intanet > AEPIC Leak - harin da ke haifar da manyan leaks daga Intel SGX enclaves

AEPIC Leak - harin da ke haifar da manyan leaks daga Intel SGX enclaves

An bayyana bayanai game da wani sabon hari akan na'urorin sarrafa Intel - AEPIC Leak (CVE-2022-21233), wanda ke haifar da zubar da bayanan sirri daga keɓaɓɓen Intel SGX (Software Guard eXtensions). Batun ya shafi 10th, 11th, and 12th generations na Intel CPUs (ciki har da sabon Ice Lake da Alder Lake jerin) kuma an haifar da shi ta hanyar aibi na gine-gine wanda ke ba da damar samun damar yin amfani da bayanan da ba a sani ba da suka rage a cikin APIC (Advanced Programmable Interrupt Controller) rajista bayan da suka wuce. ayyuka.

Ba kamar hare-haren ajin Specter ba, ɗigon ruwa a cikin AEPIC Leak yana faruwa ba tare da amfani da hanyoyin dawo da su ta hanyar tashoshi na ɓangare na uku ba - ana watsa bayanai game da bayanan sirri kai tsaye ta hanyar samun abubuwan da ke cikin rajistar da ke nunawa a cikin MMIO (taswirar I/O) ƙwaƙwalwar ajiya. . Gabaɗaya, harin yana ba ku damar tantance bayanan da aka canjawa wuri tsakanin caches na matakan na biyu da na ƙarshe, gami da abubuwan da ke cikin rajista da sakamakon ayyukan karantawa daga ƙwaƙwalwar ajiya, waɗanda a baya aka sarrafa su akan ainihin CPU iri ɗaya.

Tunda don kai hari ya zama dole a sami damar shiga shafukan zahiri na APIC MMIO, watau. yana buƙatar gata mai gudanarwa, hanyar tana iyakance ga hare-haren SGX waɗanda mai gudanarwa ba shi da damar kai tsaye. Masu bincike sun haɓaka kayan aikin da ke ba su damar gano maɓallan AES-NI da RSA da aka adana a cikin SGX, da maɓallan takaddun shaida na Intel SGX da sigogin janareta na bazuwar-bazuwar cikin ƴan daƙiƙa kaɗan. An buga lambar don harin akan GitHub.

Intel ya ba da sanarwar gyara a cikin nau'in sabuntawar microcode wanda zai aiwatar da goyan bayan buffer flushing da ƙara ƙarin matakan don kare bayanan ɓoye. An kuma shirya wani sabon sakin SDK don Intel SGX tare da canje-canje don hana leken asirin bayanai. Ana ba masu haɓaka tsarin aiki da hypervisors shawarar yin amfani da yanayin x2APIC maimakon yanayin xAPIC na gado, wanda ake amfani da rajistar MSR maimakon MMIO don samun damar rijistar APIC.

source: budenet.ru

Add a comment