Chikwata chevaongorori kubva kuYunivhesiti yeTexas, University of Illinois, uye University of Washington vakaburitsa ruzivo nezve mhuri nyowani yekurwiswa kweparutivi (CVE-2022-23823, CVE-2022-24436), codenamed Hertzbleed. Iyo yakarongwa nzira yekurwisa yakavakirwa pazvinhu zvesimba frequency control muma processors emazuva ano uye inobata ese aripo Intel uye AMD CPUs. Zvichigona, dambudziko rinogona kuzviratidza muma processors kubva kune vamwe vagadziri vanotsigira dynamic frequency shanduko, semuenzaniso, mune ARM masisitimu, asi chidzidzo chacho chaigumira pakuyedza Intel ne AMD machipi. Iwo manyorerwo ezvinyorwa nekuitwa kwenzira yekurwisa anoburitswa paGitHub (kuitwa kwakaedzwa pakombuta ine Intel i7-9700 CPU).
Kuti uwedzere mashandisirwo emagetsi uye kudzivirira kupisa kwakanyanya, ma processors anoshandura dhizaini zvichienderana nemutoro, izvo zvinotungamira kune shanduko mukuita uye zvinokanganisa nguva yekuitwa kwekushanda (kuchinja kwema frequency ne 1 Hz kunotungamirira kushanduko yekushanda ne 1 clock cycle per. chepiri). Munguva yekudzidza, zvakaonekwa kuti pasi pemamwe mamiriro pa AMD neIntel processors, shanduko yefrequency inopindirana zvakananga nedata riri kugadziriswa, izvo, semuenzaniso, zvinotungamira kune iyo nguva yekuverenga yekushanda "2022 + 23823" uye "2022 + 24436" ichave yakasiyana. Kubva pakuongororwa kwekusiyana munguva yekushandiswa kwekushanda nemashoko akasiyana-siyana, zvinokwanisika kudzorera zvisina kunanga ruzivo rwakashandiswa mukuverenga. Panguva imwecheteyo, mumatanho e-high-speed ane fungidziro yenguva dzose inononoka, kurwiswa kunogona kuitwa kure nekufungidzira nguva yekuitwa kwezvikumbiro.
Kana kurwiswa kwacho kuchibudirira, matambudziko akaonekwa anoita kuti zvikwanise kuona makiyi epachivande zvichienderana nekuongororwa kwenguva yekuverengera mumaraibhurari ekriptographic anoshandisa algorithms umo masvomhu ekuverenga anogara achiitwa munguva isingaperi, zvisinei nemhando yedata riri kugadziriswa. . Maraibhurari akadaro aionekwa seakachengetedzwa kubva kudivi-chiteshi kurwiswa, asi sezvazvakazoitika, nguva yekuverenga inotarwa kwete chete nealgorithm, asiwo nehunhu hwe processor.
Semuenzaniso unoshanda unoratidza kugona kwekushandisa nzira yakarongwa, kurwiswa kwekushandiswa kweSIKE (Supersingular Isogeny Key Encapsulation) key encapsulation mechanism yakaratidzwa, iyo yakabatanidzwa mukupedzisira kwemakwikwi e-post-quantum cryptosystems akaitwa neUS. National Institute of Standards and Technology (NIST), uye yakamira seyakadzivirirwa kubva kudivi renzira yekurwiswa. Munguva yekuyedza, uchishandisa shanduko nyowani yekurwiswa yakavakirwa pane yakasarudzwa ciphertext (kusarudzwa zvishoma nezvishoma kunoenderana nekunyengedza kweciphertext uye nekuwana kudhirowa kwayo), zvakakwanisika kudzoreredza kiyi yakashandiswa encryption nekutora zviyero kubva kune iri kure system, zvisinei. kushandiswa kwekuitwa kweSIKE nekugara kwekuverenga nguva. Kusarudza kiyi ye364-bit uchishandisa iyo CIRCL kuita kwakatora maawa makumi matatu nematanhatu, uye PQCrypto-SIDH yakatora maawa makumi masere nemasere.
Intel ne AMD vakabvuma kusadzivirirwa kwevagadziri vavo kudambudziko, asi havaronge kuvharira njodzi kuburikidza neiyo microcode update, sezvo zvisingazogone kubvisa kusadzikama muhardware pasina kukanganisa kwakakura pakuita kwehardware. Pane kudaro, vagadziri vemaraibhurari e-cryptographic vanopihwa kurudziro yemaitiro ekuvharisa ruzivo kuburitswa kana uchiverenga zvakavanzika. Cloudflare neMicrosoft vakatowedzera kuchengetedzwa kwakafanana kune yavo SIKE kushandiswa, izvo zvakakonzera 5% performance hit yeCIRCL uye 11% performance hit yePQCrypto-SIDH. Imwe workaround yekuvharisa kusazvibata ndeye kudzima Turbo Boost, Turbo Core, kana Precision Boost modhi muBIOS kana mutyairi, asi shanduko iyi inozokonzera kudzikira kwakanyanya mukuita.
Intel, Cloudflare neMicrosoft vakaziviswa nezvenyaya iyi muchikamu chechitatu cha2021, uye AMD muchikamu chekutanga cha2022, asi kuburitswa pachena kwenyaya iyi kwakanonoka kusvika June 14, 2022 pachikumbiro chaIntel. Kuvapo kwedambudziko kwakasimbiswa mudesktop uye laptop processors zvichibva pa8-11 zvizvarwa zveIntel Core microarchitecture, pamwe neakasiyana desktop, nhare uye server processors AMD Ryzen, Athlon, A-Series uye EPYC (vaongorori vakaratidza nzira yacho. paRyzen CPUs ine Zen microarchitecture 2 uye Zen 3).
Source: opennet.ru