Microsoft oo kaashanaysa Intel, Qualcomm iyo AMD Nidaamyada mobilada oo leh qalab ka ilaalinaya weerarada iyada oo loo marayo firmware. Shirkadda ayaa lagu qasbay inay abuurto aaladaha xisaabinta ee noocan oo kale ah iyadoo ay sii kordhayaan weerarada ka dhanka ah dadka isticmaala waxa loogu yeero "koofiyadaha koofiyadaha cad" - kooxo khabiiro ah oo jabsiga oo hoos yimaada hay'adaha dawladda. Gaar ahaan, khubarada amniga ESET waxay falalkan oo kale u nisbeeyaan koox ka mid ah hackers-ka Ruushka APT28 (Fancy Bear). Kooxda APT28 ayaa lagu eedeeyay inay tijaabisay software ku shaqeeya kood xaasidnimo ah iyagoo ka soo raraynaya firmware BIOS-ka.
Si wada jir ah, khubarada cybersecurity ee Microsoft iyo soosaarayaasha soosaarayaasha ayaa soo bandhigay xalka silikon qaab xididka kalsoonida. Shirkaddu waxay u bixisay PC-yada noocaan ah ee Secured-core PC (PC with a security core). Waqtigan xaadirka ah, kombuyuutarrada Secured-core waxaa ka mid ah dhowr laptops oo ka socda Dell, Lenovo iyo Panasonic iyo Microsoft Surface Pro X tablets. Kuwan iyo kuwa mustaqbalka PC-yada leh xudunta badbaadsan waa inay siiyaan dadka isticmaala kalsooni buuxda in dhammaan xisaabinta la aamini doono oo aan u horseedi doonin tanaasul xogta .
Ilaa hadda, dhibka haysta kombuyuutarrada qallafsan waxay ahayd in firmware microcode-ka uu abuuray Motherboard-ka iyo nidaamka OEM-yada. Dhab ahaantii, waxay ahayd xidhiidhka ugu liita ee silsiladda saadka ee Microsoft. Qalabka ciyaaraha Xbox, tusaale ahaan, waxa uu u shaqaynayay sidii madal sugan oo sugan muddo sanado ah, tan iyo amniga goobta heer kasta - laga bilaabo hardware ilaa software - waxaa kormeera Microsoft lafteeda. Tani suurtagal kama ahayn PC ilaa hadda.
Microsoft waxay samaysay go'aan fudud oo ay kaga saarayso firmware-ka liiska xisaabinta inta lagu guda jiro xaqiijinta bilowga ah ee awooda qareenka. Si sax ah, waxay u soo saareen habka xaqiijinta processor-ka iyo chip gaar ah. Tani waxay u muuqataa in ay isticmaasho furaha hardware kaas oo u qoran processor-ka inta lagu jiro wax soo saarka. Marka firmware-ka lagu shubo PC-ga, processor-ku waxa uu hubinayaa ammaankiisa iyo in la aamini karo iyo in kale. Haddii processor-ku uusan ka hor istaagin firmware-ka inuu soo dejiyo (waxay u aqbashay sidii la aamini lahaa), xakamaynta PC-ga ayaa loo wareejiyaa nidaamka hawlgalka. Nidaamku wuxuu bilaabaa inuu tixgeliyo goobta lagu kalsoon yahay, ka dibna, iyada oo loo marayo habka Windows Hello, wuxuu u oggolaanayaa isticmaalaha inuu galo, sidoo kale wuxuu bixiyaa gelitaanka ammaan ah, laakiin heerka ugu sarreeya.
Marka lagu daro processor-ka, Chip Launch Guard Secure iyo rarka nidaamka hawlgalka ayaa ku lug leh ilaalinta qalabka xididka kalsoonida (iyo daacadnimada firmware). Nidaamku waxa kale oo ka mid ah tignoolajiyada casriga ah, kaas oo ka soocaya xusuusta nidaamka hawlgalka si looga hortago weerarada kernel-ka OS iyo codsiyada. Dhammaan kakanaantan waxaa loogu talagalay in lagu ilaaliyo, marka ugu horeysa, isticmaalayaasha shirkadda, laakiin mar dhow ama hadhow wax la mid ah ayaa laga yaabaa inay ka soo baxaan kombuyuutarrada macaamiisha.
Source: 3dnews.ru