Moni, dzina langa ndine Andrey ndipo ndine wogwira ntchito kukampani ina yayikulu kwambiri mdziko muno. Zikuwoneka kuti wogwira ntchito ku HabrΓ© angadziwe? Dziwonongerani nokha nyumba zomwe wopangayo wamanga ndipo palibe chosangalatsa, koma izi siziri choncho.
Kampani yoyang'anira ili ndi ntchito imodzi yofunika komanso yodalirika pantchito yomanga nyumba - ichi ndi chitukuko cha luso la zomangamanga. Ndi kampani yoyang'anira yomwe imayika zofunikira zomwe dongosolo la ACS lomalizidwa, lomangidwa lidzakwaniritsa.
M'nkhaniyi, ndikufuna kunena za mutu wa kupanga luso mkati mwa momwe nyumba ikumangidwa ndi dongosolo la ACS lomwe limagwiritsa ntchito ukadaulo wa Mifare Plus Security level SL3 yokhala ndi encryption yagawo yokhala ndi kiyi yachitetezo yomwe ngakhale wopanga, kapena womanga, kapena wocheperako akudziwa.
Ndipo chimodzi mwazinthu zapadziko lonse lapansi sichikuwonekera poyang'ana koyamba - momwe mungapewere kutayikira kwa nambala yobisika yomwe yasankhidwa kuti ibisike makhadi a Mifare Plus mkati mwa gulu la omanga, makontrakitala, ogulitsa ndi anthu ena omwe ali ndi udindo wogwira ntchito ndi dongosolo la ACS pa. kunyumba pa siteji kuyambira chiyambi cha ntchito yake yomanga mpaka ntchito pa nthawi pambuyo chitsimikizo.
Ukadaulo waukulu wamakhadi opanda kulumikizana lero:
- EM Marine (StandProx, ANGstrem, SlimProx, MiniTag) 125 kHz
- Mifare ndi NXP (Classic, Plus, UltraLight, DESfire) (Mifare 1k, 4k) 13,56 MHz
- HID wopanga HID Corporation(ProxCard II, ISOProx-II, ProxKey II) 125 kHz
- iCLASS ndi iCLASS SE (yopangidwa ndi HID Corporation) 13,56 MHz
- Indala (Motorola), Nedap, Farpointe, Kantech, UHF (860-960 MHz)
Zambiri zasintha kuyambira pomwe Em-Marine idagwiritsidwa ntchito m'makina a ACS, ndipo posachedwapa tasintha kuchoka ku mtundu wa Mifare Classic SL1 kupita ku mtundu wa Mifare Plus SL3 encryption.
Mifare Plus SL3 imagwiritsa ntchito kubisa kwamagulu azinsinsi ndi kiyi yachinsinsi ya 16-byte mumtundu wa AES. Pazifukwa izi, mtundu wa chip wa Mifare Plus umagwiritsidwa ntchito.
Kusinthaku kudapangidwa chifukwa cha zovuta zodziwika mumtundu wa SL1 encryption. Izi:
Ma cryptography a khadi amafufuzidwa bwino. Tapeza chiwopsezo pakukhazikitsa kwa jenereta wa manambala wabodza (PRNG) wamapu komanso kusatetezeka mu algorithm ya CRYPTO1. M'malo mwake, zofooka izi zimagwiritsidwa ntchito pazifukwa zotsatirazi:
- Mbali yakuda - kuwukirako kumagwiritsa ntchito chiwopsezo cha PRNG. Imagwira pamakadi a MIFARE Classic mpaka m'badwo wa EV1 (mu EV1, chiwopsezo cha PRNG chakhazikitsidwa kale). Kuti muwononge, mumangofunika mapu, simuyenera kudziwa makiyi.
- Nested - Kuwukiraku kumagwiritsa ntchito kusatetezeka kwa CRYPTO1. Kuwukira kumapangidwa pazovomerezeka zachiwiri, chifukwa chake pakuwukira muyenera kudziwa kiyi imodzi yovomerezeka ya khadi. M'malo mwake, pagawo la zero, makiyi omwe amagwiritsidwa ntchito nthawi zambiri amagwiritsidwa ntchito pa MAD - amayamba nawo. Imagwira makhadi aliwonse pa CRYPTO1 (MIFARE Classic ndi zotengera zake). Kuukiraku kukuwonetsedwa m'nkhani yonena za Vulnerability of the Plantain card
- Kuwukira - Kuwukiraku kumagwiritsa ntchito chiwopsezo cha CRYPTO1. Kuti muwukire, muyenera kumvetsera chilolezo choyambirira pakati pa owerenga ndi khadi. Izi zimafuna zida zapadera. Imagwira makhadi aliwonse kutengera CRYPTO1 (MIFARE Classic ndi zotengera zake.
Chifukwa chake: kusungitsa makadi ku fakitale ndi nthawi yoyamba pomwe ma code amagwiritsidwa ntchito, mbali yachiwiri ndi owerenga. Ndipo sitikhulupiriranso opanga owerenga omwe ali ndi kachidindo kachinsinsi, chifukwa alibe chidwi nawo.
Wopanga aliyense ali ndi zida zolowetsa kachidindo mu owerenga. Koma ndipanthawiyi pomwe vuto loletsa kutayikira kwa code kwa anthu ena pamaso pa makontrakitala ndi ma subcontractors omanga dongosolo la ACS likuwonekera. Lowetsani kodi inu nokha?
Pali zovuta pano, chifukwa malo a nyumba zoyendetsedwa akuimiridwa m'madera osiyanasiyana a Russia, kupitirira dera la Moscow.
Ndipo nyumba zonsezi zimamangidwa molingana ndi muyezo umodzi, pazida zomwezo.
Pofufuza msika wowerengera makhadi a Mifare, sindinathe kupeza makampani ambiri omwe akugwira ntchito ndi miyezo yamakono yomwe imapereka chitetezo cha kopi ya makadi.
Masiku ano, opanga ma hardware ambiri amagwira ntchito mu UID yowerengera, yomwe imatha kukopera foni yamakono ndi NFC.
Opanga ena amathandizira chitetezo chamakono cha SL1, chomwe chidasokonekera kale mu 2008.
Ndipo opanga ochepa okha ndi omwe amawonetsa njira zabwino kwambiri zaukadaulo potengera kuchuluka kwamitengo yamitengo yogwirira ntchito ndiukadaulo wa Mifare mumayendedwe a SL3, zomwe zimapangitsa kuti zikhale zosatheka kukopera khadi ndikupanga chofananira chake.
Ubwino waukulu wa SL3 m'nkhaniyi ndikutheka kukopera makiyi. Tekinoloje yotereyi kulibe masiku ano.
Ine payokha kulankhula za kuopsa kwa kugwiritsa ntchito makhadi kukopera ndi kufalitsidwa oposa 200 makope.
- Zowopsa kwa omwe ali ndi lendi - kudalira "mbuye" kuti apange kopi ya kiyi, kutayira kwa kiyi ya wobwereketsa kumalowa munkhokwe yake, ndipo "mbuye" amapeza mwayi wopita pakhomo, ngakhale kugwiritsa ntchito malo oimikapo magalimoto kapena malo oimikapo magalimoto alendi.
- Zowopsa zamalonda: ngati mtengo wogulitsa wa khadi ndi ma ruble 300, kutayika kwa msika pakugulitsa makhadi owonjezera sikungotaya pang'ono. Ngakhale ngati "Mbuye" wokopera makiyi akuwonekera pa LCD imodzi, zotayika za kampani zimatha kufika mazana masauzande ndi mamiliyoni a rubles.
- Pomaliza, zokongoletsa: mwamtheradi makope onse amapangidwa pama diski otsika kwambiri. Ndikuganiza kuti ambiri a inu mukudziwa bwino za chiyambi.
Pomaliza, ndikufuna kunena kuti kusanthula mozama kwa msika wa zida ndi mpikisano kumakupatsani mwayi wopanga makina amakono komanso otetezeka a ACS omwe amakwaniritsa zofunikira za 2019, chifukwa dongosolo la ACS munyumba yosungiramo nyumba ndi njira yokhayo yochepetsera mphamvu. wokhalamo amakumana kangapo patsiku.
Source: www.habr.com