Masu bincike daga fasaha mai kyau rauni (), wanda ke ba da damar, idan kuna da damar yin amfani da kayan aiki ta zahiri, don cire tushen tushen dandamali (Maɓallin Chipset), wanda ake amfani da shi azaman tushen aminci lokacin tabbatar da sahihancin abubuwan dandali daban-daban, gami da TPM (Trusted Platform Module) da UEFI firmware.
Rashin lahani yana faruwa ne ta hanyar kwaro a cikin hardware da Intel CSME firmware, wanda ke cikin boot ROM, wanda ke hana gyara matsalar a cikin na'urorin da aka riga aka yi amfani da su. Saboda kasancewar taga yayin sake kunnawar Intel CSME (misali, lokacin dawowa daga yanayin bacci), ta hanyar yin amfani da DMA yana yiwuwa a rubuta bayanai zuwa ƙwaƙwalwar ajiyar Intel CSME da kuma canza teburin shafi na ƙwaƙwalwar Intel CSME da aka riga aka fara don dakatar da aiwatarwa, dawo da maɓallin dandali, kuma sami iko akan ƙirƙirar maɓallan ɓoyewa don ƙirar Intel CSME. Cikakkun bayanai na amfani da raunin ana shirin buga su daga baya.
Baya ga ciro maɓalli, kuskuren kuma yana ba da damar aiwatar da lamba a matakin gata sifili (Tsarin Tsaro da Injin Gudanarwa). Matsalar ta shafi yawancin kwakwalwar kwakwalwar Intel da aka saki a cikin shekaru biyar da suka gabata, amma a cikin ƙarni na 10 na masu sarrafa (Ice Point) matsalar ta daina bayyana. Intel ya fahimci matsalar kusan shekara guda da ta gabata kuma aka sake shi , wanda, ko da yake ba za su iya canza lambar mara ƙarfi a cikin ROM ba, suna ƙoƙarin toshe hanyoyin da za a iya amfani da su a matakin kowane nau'in Intel CSME.
Matsaloli masu yiwuwa na samun maɓallin tushen dandamali sun haɗa da goyan baya ga firmware na abubuwan Intel CSME, daidaita tsarin ɓoye bayanan watsa labarai dangane da Intel CSME, da yuwuwar ƙirƙira abubuwan gano EPID () kashe kwamfutarka azaman wani don ketare kariyar DRM. Idan kowane nau'ikan CSME ɗin ya lalace, Intel ya ba da ikon sake haɓaka maɓallan da ke da alaƙa ta amfani da tsarin SVN (Lambar Sigar Tsaro). Idan aka sami damar yin amfani da maɓallin tushen dandamali, wannan hanyar ba ta da tasiri tunda ana amfani da maɓallin tushen dandamali don samar da maɓalli don ɓoye shingen sarrafa amincin (ICVB, Integrity Control Value Blob), samun wanda, bi da bi, yana ba ku damar. ƙirƙira lambar kowane ɗayan kayan aikin firmware na Intel CSME.
An lura cewa tushen maɓalli na dandamali ana adana shi a cikin rufaffen tsari kuma don cikakkiyar sasantawa ya zama dole don ƙayyade maɓalli na hardware da aka adana a cikin SKS (Tsarin Maɓallin Maɓalli). Maɓallin da aka ƙayyade ba na musamman ba ne kuma iri ɗaya ne ga kowane ƙarni na kwakwalwan kwamfuta na Intel. Tun da kwaro yana ba da damar aiwatar da lambar a wani mataki kafin a toshe hanyar samar da maɓalli a cikin SKS, ana hasashen cewa ba dade ko ba dade za a tantance wannan maɓallin kayan aikin.
source: budenet.ru