Kambani yekuongorora yekuchengetedza Kudelski Security yakaburitsa chishandiso chinodaidzwa kuti Shufflecake chinokutendera iwe kuti ugadzire yakavanzika faira masisitimu akapararira munzvimbo inowanikwa yemahara pazvikamu zviripo uye zvisingaoneki kubva kune zvakangosara zvakasara data. Zvikamu zvinogadzirwa nenzira yekuti pasina kuziva kiyi yekuwana, zvinonetsa kuratidza kuvepo kwavo kunyangwe uchiitisa forensic ongororo. Iyo kodhi yezvishandiso (shufflecake-userland) uye Linux kernel module (dm-sflc) yakanyorwa muC uye yakagoverwa pasi peGPLv3 rezinesi, izvo zvinoita kuti zvisaite kusanganisa yakadhindwa kernel module muLinux kernel huru nekuda kwekusawirirana ne iyo GPLv2 rezinesi panopihwa kernel.
Iyo purojekiti yakamisikidzwa semhinduro yepamusoro kupfuura Truecrypt uye Veracrypt yekuvanza data inoda kuchengetedzwa, iyo ine tsigiro yerudzi rweLinux papuratifomu uye inobvumidza iwe kuti uise anosvika gumi nemashanu zvikamu zvakavanzika pamudziyo, wakavakirwa mukati meumwe neumwe kuvhiringidza kupatsanura. zvekuvapo kwavo. Kana kushandiswa kweShufflecake pachayo kusiri chakavanzika, sezvazvinogona kutongwa, semuenzaniso, nekuvapo kwezvishandiso zvinoenderana muhurongwa, saka nhamba yese yezvikamu zvakavanzika zvakagadzirwa hazvigone kuzivikanwa. Iwo akasikwa akavanzika zvikamu anogona kufomatidzwa pakufunga kwemushandisi kuti agare chero faira system, semuenzaniso, ext15, xfs kana btrfs. Chikamu chega chega chinobatwa seyakaparadzana virtual block mudziyo ine yayo yekuvhura kiyi.
Kuvhiringidza maronda, zvinokurudzirwa kushandisa maitiro e "plausible deniability", izvo zvakakosha ndezvekuti data yakakosha yakavanzwa sekuwedzera kwezvikamu muzvikamu zvakavharidzirwa zvine data shoma shoma, zvichiita rudzi rwehuwandu hwakavanzika hwezvikamu. Mukana wekumanikidzwa, muridzi wemudziyo anogona kuburitsa kiyi kune yakavharidzirwa partition, asi zvimwe zvikamu (kusvika gumi neshanu mazinga) anogona kuvanzwa muchikamu ichi, uye kuona kuvepo kwavo uye kuratidza kuvepo kwavo kunonetsa.
Kuhwanda kunowanikwa nekugadzira chikamu chega chega seti yezvimedu zvakavharidzirwa zvakaiswa panzvimbo dzisina kujairika pane yekuchengetedza mudziyo. Chidimbu chega chega chinogadzirwa zvine simba kana imwe nzvimbo yekuchengetedza ichidikanwa muchikamu. Kuita kuti kuongorora kuve kwakaoma, zvimedu zvezvikamu zvakasiyana zvinoshandurwa, i.e. Zvikamu zveShufflecake hazvibatanidzi kumatunhu akabatana uye zvimedu kubva muzvikamu zvese zvakasanganiswa. Ruzivo nezve akashandiswa uye emahara zvimedu anochengetwa mumepu yenzvimbo yakabatana nechikamu chimwe nechimwe, icho chinonongedzwa nemusoro wakavharidzirwa. Iwo makadhi uye musoro zvakavharidzirwa uye, pasina kuziva kiyi yekuwana, hazvizivikanwe kubva kune zvakangoitika data.
Musoro wakakamurwa kuita slots, imwe neimwe inotsanangura chikamu chayo uye zvidimbu zvakabatana. Iwo anotsvedza mumusoro akaturikidzana uye anodzokororwa akabatanidzwa - iyo yazvino slot ine kiyi yekutsikisa maparamendi echikamu chakapfuura mune hierarchy (iyo shoma yakavanzika), ichibvumira imwe password kuti ishandiswe kutsikisa zvese zvishoma zvakavanzika zvikamu zvine chekuita ne chikamu chakasarudzwa. Yese yakavanzika partition inobata zvimedu zvezvimedu zvakaganhurwa semahara.
Nekumisikidza, zvese zvikamu zveShufflecake zvine saizi inooneka yakafanana nechikamu chepamusoro-chikamu. Semuenzaniso, kana paine zvikamu zvitatu pane 1 GB mudziyo, chimwe nechimwe chazvo chichaonekwa kune sisitimu sechikamu che1 GB uye iyo yakazara inowanikwa disk nzvimbo ichagovaniswa pakati pezvikamu zvese - kana saizi yese yedata yakachengetwa ichipfuura. saizi chaiyo yemudziyo, ichatanga kukanganisa kweI / O kukandwa.
Nested zvikamu zvisina kuvhurwa hazvibatanidzi mukugovewa kwenzvimbo, i.e. kuedza kuzadza chikamu chepamusoro-chepamusoro kuchaita kuti data iparadzwe muzvikamu zvakagadzirirwa, asi hazvizoiti kuti zvikwanise kuratidza huvepo hwavo kuburikidza nekuongorora ukuru hwe data inogona kuiswa muchikamu chikanganiso chisati chatanga (iyo inofungidzirwa kuti zvikamu zvekumusoro zvine data isingashanduke yekuvhiringidza kutarisa uye haisati yaparadzana haishandiswe, uye basa renguva dzose rinoitwa nguva dzose nechikamu chechangobva kuitika, chirongwa chacho pachacho chinoreva kuti chinonyanya kukosha kuchengetedza chakavanzika chekuvapo kwe data pane kurasikirwa nedata iyi).
Muchokwadi, 15 Shufflecake partitions inogara ichigadzirwa - password yemushandisi inonamirwa kune yakashandiswa partitions, uye zvikamu zvisina kushandiswa zvinopihwa nepassword yakagadzirwa zvisina tsarukano (hazvigoneke kunzwisisa kuti mangani mapartitions anonyatso shandiswa). Kana Shufflecake partitions inotangwa, dhisiki, kupatsanura, kana virtual block mudziyo wakagoverwa pakuiswa kwavo unozadzwa nedata risingaite, izvo zvinoita kuti zvisakwanise kuziva Shufflecake metadata uye data inopesana neyakajairwa kumashure.
Kuitwa kweShufflecake kune kuita kwepamusoro-soro, asi nekuda kwekuvapo kwepamusoro, inosvika kaviri inononoka mukufambisa kana ichienzaniswa nedhisiki encryption yakavakirwa paLUKS subsystem. Kushandisa Shufflecake zvakare kunoguma nekuwedzera mari ye RAM uye disk nzvimbo yekuchengetedza data sevhisi. Memory kushandiswa inofungidzirwa pa60 MB pachikamu, uye disk nzvimbo pa1% yehukuru hwese. Kuenzanisa, nzira yeWORAM, yakafanana nechinangwa, inotungamirira pakuderera kwe5 kusvika ku200 nguva ne 75% kurasikirwa kweusable disk space.
Iyo toolkit uye kernel module yakaedzwa chete paDebian uye Ubuntu ine kernels 5.13 uye 5.15 (inotsigirwa paUbuntu 22.04). Zvinocherechedzwa kuti chirongwa ichi chichiri kutariswa sechiratidziro chinoshanda, chisingafanirwe kushandiswa kuchengetedza data rakakosha. Mune ramangwana, isu tinoronga kuita mamwe magadzirirwo ekuita, kuvimbika uye chengetedzo, pamwe nekupa kugona kubhutsu kubva kuShufflecake partitions.
Source: opennet.ru