Ofufuza ochokera ku École Polytechnique Federale de Lausanne kusatetezeka kwa njira zophatikizira zida zomwe zimagwirizana ndi mulingo wa Bluetooth Classic (Bluetooth BR/EDR). Chiwopsezo chapatsidwa dzina lachinsinsi (). Vutoli limalola wowukirayo kukonza kulumikizana kwa chipangizo chake chabodza m'malo mogwiritsa ntchito chida cholumikizidwa kale, ndikumaliza bwino njira yotsimikizira popanda kudziwa kiyi yolumikizira yomwe idapangidwa panthawi yolumikizana koyambirira kwa zida ndikulola munthu kupewa kubwereza ndondomeko yotsimikizira pamanja pa. kulumikizana kulikonse.
Chofunikira cha njirayi ndikuti polumikizana ndi zida zomwe zimathandizira Secure Connections mode, wowukirayo amalengeza kusakhalapo kwamtunduwu ndikuyambiranso kugwiritsa ntchito njira yotsimikizira zakale ("cholowa"). Munjira ya "cholowa", wowukirayo amayambitsa kusintha kwa kapolo, ndipo, powonetsa chipangizo chake ngati "mbuye," amadzitengera yekha kutsimikizira njira yotsimikizira. Wowukirayo amatumiza zidziwitso kuti kutsimikizika kudachita bwino, ngakhale popanda kukhala ndi kiyi ya tchanelo, ndipo chipangizocho chimatsimikiziridwa ndi gulu lina.
Pambuyo pake, wowukirayo amatha kugwiritsa ntchito kiyi yobisa yomwe ndiyofupika kwambiri, yokhala ndi 1 byte ya entropy, ndikugwiritsa ntchito kuwukira komwe kudapangidwa kale ndi ofufuza omwewo. kuti muthe kulumikiza kulumikizidwa kwa Bluetooth mobisa mwachidziwitso cha chipangizo chovomerezeka (ngati chipangizocho chikutetezedwa ku kuukira kwa KNOB ndipo kukula kwake sikungachepe, ndiye kuti wowukirayo sangathe kukhazikitsa njira yolumikizirana yolumikizidwa, koma apitiliza. kuti akhalebe ovomerezeka kwa wolandirayo).
Kuti agwiritse ntchito bwino chiwopsezocho, m'pofunika kuti chida cha wowukiracho chifikire pa chipangizo cha Bluetooth chomwe chili pachiwopsezo ndipo wowukirayo ayenera kudziwa adilesi ya chipangizo chakutali chomwe kulumikizanako kudapangidwirapo kale. Ofufuza chiwonetsero cha zida zogwirira ntchito ndikukhazikitsa njira yowukira yomwe akufuna momwe mungagwiritsire ntchito laputopu yokhala ndi Linux ndi khadi ya Bluetooth kunamizira kulumikizidwa kwa foni yam'manja ya Pixel 2 yolumikizidwa kale.
Vutoli limayamba chifukwa cha kulakwitsa kwatsatanetsatane ndipo limawonekera mumagulu osiyanasiyana a Bluetooth ndi ma chip firmware a Bluetooth, kuphatikiza Intel, Broadcom, Cypress Semiconductor, Qualcomm, Apple ndi Samsung zomwe zimagwiritsidwa ntchito m'mafoni a m'manja, ma laputopu, ma PC a board single ndi zotumphukira zochokera kwa opanga osiyanasiyana. Ofufuza Zida 30 (Apple iPhone/iPad/MacBook, Samsung Galaxy, LG, Motorola, Philips, Google Pixel/Nexus, Nokia, Lenovo ThinkPad, HP ProBook, Raspberry Pi 3B+, etc.) zomwe zimagwiritsa ntchito tchipisi 28 zosiyanasiyana, ndi opanga adadziwitsidwa za kusatetezeka mu Disembala chaka chatha. Ndi ndani mwa opanga omwe adatulutsa kale zosintha za firmware ndi kukonza sizinafotokozedwe mwatsatanetsatane.
Bluetooth SIG, bungwe lomwe limayang'anira kukhazikitsa miyezo ya Bluetooth, za chitukuko cha zosintha za Bluetooth Core specifications. Kusindikiza kwatsopanoku kumatanthauzira momveka bwino milandu yomwe ili yololedwa kusintha maudindo a kapolo, adayambitsa zofunikira kuti atsimikizirena pobwerera ku "cholowa", ndipo adalimbikitsa kuyang'ana mtundu wa encryption kuti muchepetse kuchepa kwa chitetezo cholumikizira.
Source: opennet.ru