Cilmi-baarayaal ka socda Teknolojiyadda Wanaagsan nuglaanta (), kaas oo u ogolaanaya, haddii aad haysato qalab jireed, si aad u soo saarto furaha xididka (Chipset key), kaas oo loo isticmaalo sida xididka kalsoonida marka la xaqiijinayo xaqiiqda qaybaha kala duwan ee madal, oo ay ku jiraan TPM (Trusted Platform Module) iyo UEFI firmware.
Nuglaanta waxaa sababa cilad ku jirta hardware-ka iyo Intel CSME firmware, kaas oo ku yaala boot ROM-ka, kaas oo ka hortagaya in dhibaatada lagu hagaajiyo qalabkii hore loo isticmaalay. Sababtoo ah joogitaanka daaqada inta lagu guda jiro dib u bilaabida Intel CSME (tusaale ahaan, marka laga bilaabo habka hurdada), iyada oo loo marayo khalkhalgelinta DMA waxaa suurtagal ah in lagu qoro xogta Intel CSME xusuusta static oo wax ka beddelo miisaska bogga xusuusta Intel CSME ee horay loo bilaabay si loo joojiyo fulinta, soo celi furaha goobta, oo hel xakamaynta jiilka furayaasha sirta ah ee qaybaha Intel CSME. Faahfaahinta ka faa'iidaysiga nuglaanta ayaa la qorsheeyay in la daabaco mar dambe.
Marka laga soo tago soo saarista furaha, khaladku waxa kale oo uu ogolaadaa koodka in lagu fuliyo heerka mudnaanta eber (Matoorka Amniga iyo Maareynta Isku-dhafka ah). Dhibaatadu waxay saamaysaa inta badan Chipset-yada Intel ee la sii daayay shantii sano ee la soo dhaafay, laakiin jiilka 10-aad ee processor-rada (Ice Point) dhibaatadu hadda ma muuqato. Intel waxay ogaatay dhibka sanad ka hor oo ay sii daysay , kuwaas oo, in kasta oo ayan bedeli karin koodka nugul ee ROM-ka, isku day in ay xannibaan waddooyinka dhiig-miirashada ee suurtogalka ah ee heerka shakhsi ahaaneed ee Intel CSME modules.
Cawaaqibta suurtagalka ah ee helitaanka furaha furaha waxaa ka mid ah taageerada firmware ee qaybaha Intel CSME, tanaasulka nidaamyada sirta warbaahinta ee ku saleysan Intel CSME, iyo sidoo kale suurtagalnimada been abuurka aqoonsiga EPID () si aad u dhaafto kombayutarkaga sidii mid kale si aad uga gudubto ilaalinta DRM. Haddii cutubyada CSME-ga gaarka ah la jabiyo, Intel waxay siisay awoodda ay ku soo noolayn karto furayaasha la xidhiidha iyadoo la adeegsanayo habka SVN (Lambarka Nooca Nabdoonaanta). Haddii ay dhacdo helitaanka furaha xididka madal, habkani ma aha mid wax ku ool ah maadaama furaha xididka loo isticmaalo in lagu soo saaro furaha sirta ah ee xakamaynta daacadnimada (ICVB, Integrity Control Value Blob), helitaanka taas oo markaa, kuu ogolaanaysa inaad been abuurka koodka mid ka mid ah modules-yada Intel CSME firmware.
Waxaa la xusay in furaha xididka madalku uu ku kaydsan yahay qaab sir ah si loo dhammeeyo tanaasulka waxaa intaa dheer in loo baahan yahay in la go'aamiyo furaha qalabka ku kaydsan SKS (Kaydinta Furaha Sugan). Furaha la cayimay maaha mid gaar ah oo waa isku mid jiil kasta oo Chipset-yada Intel ah. Mar haddii cayayaanka uu ogolaado in koodka lagu fuliyo marxalad ka hor inta aan la xannibin habka jiilka muhiimka ah ee SKS, waxaa la saadaaliyay in mar dhow ama hadhow furaha qalabkan la go'aamin doono.
Source: opennet.ru