Xa "iminqwazi emnyama" - ukuba yimithetho yehlathi lasendle le-cyberpace - ijika ibe yimpumelelo ngakumbi kumsebenzi wabo ongcolileyo, imidiya ephuzi ikhala ngovuyo. Ngenxa yoko, umhlaba uqala ukujonga ngakumbi ukhuseleko lwe-cybersecurity. Kodwa ngelishwa hayi ngoko nangoko. Ke ngoko, ngaphandle kokunyuka kwenani lezehlo ze-cyber eziyingozi, umhlaba awukavuthwanga amanyathelo asebenzayo. Nangona kunjalo, kulindeleke ukuba kwixesha elizayo elingekude, ngenxa "yeminqwazi emnyama," ihlabathi liya kuqala ukuthatha ngokungathí sina i-cybersecurity. [7]

Kanye njengemililo enzima ... Izixeko zazikhe zaba sesichengeni somlilo oyintlekele. Nangona kunjalo, ngaphandle kwengozi enokubakho, amanyathelo okhuseleko awazange athathwe-nasemva komlilo omkhulu eChicago ngo-1871, owathi wabulala amakhulu abantu kwaye washiya amakhulu amawaka abantu. Amanyathelo okukhusela athathwe kuphela emva kokuba kwenzeke intlekele efanayo kwakhona, kwiminyaka emithathu kamva. Kuyafana nokhuseleko lwe-cybersecurity-ihlabathi aliyi kusombulula le ngxaki ngaphandle kokuba kukho izehlo eziyingozi. Kodwa nokuba iziganeko ezinjalo ziyenzeka, ihlabathi aliyi kuyicombulula ngokukhawuleza le ngxaki. [7] Ke ngoko, kwanentetho ethi: “Kude kubekho ingcukaza, umntu akakhutshelwa,” ayisebenzi ncam. Yiyo loo nto ngo-2018 siye sabhiyozela iminyaka engama-30 yokungakhuseleki okuxhaphakileyo.

Ukuqhawulwa kwelizwi

Ukuqala kweli nqaku, endilibhalele ekuqaleni iphephancwadi loMlawuli weNkqubo, lajika laprofeta ngandlel’ ithile. Inkupho yephephancwadi elinalo eli nqaku ikhutshiwe ngokoqobo imihla ngemihla kunye nomlilo obuhlungu kwindawo yokuthenga yaseKemerovo "Winter Cherry" (2018, Matshi 20th).

Faka i-Intanethi kwimizuzu engama-30

Emva phayaa ngowe-1988, umnyele odumileyo we<em>Hacker L0pht, uthetha ngokupheleleyo phambi kwentlanganiso yabona magosa anempembelelo aseNtshona, wathi: “Izixhobo zenu zekhompyutha zisesichengeni sokuhlaselwa kwi-Intanethi. Kwaye isoftware, kunye nehardware, kunye nonxibelelwano ngomnxeba. Abathengisi babo abakhathazeki kwaphela malunga nale meko. Kuba umthetho wale mihla awuboneleli nangaliphi na ityala lendlela yokungakhathali yokuqinisekisa ukhuseleko lwe-cybersecurity lwesoftware eyenziweyo kunye nehardware. Uxanduva lokungaphumeleli okunokwenzeka (nokuba kuzenzekelayo okanye kubangelwa ukungenelela kwabaphuli be-intanethi) kuxhomekeke kuphela kumsebenzisi wesixhobo. Ngokuphathelele urhulumente wobumbano, akanalo izakhono okanye umnqweno wokusombulula le ngxaki. Ke, ukuba ujonge i-cybersecurity, i-Intanethi ayisiyondawo yokuyifumana. Umntu ngamnye kwabasixhenxe abahleli phambi kwakho unokuyaphula ngokupheleleyo i-Intanethi kwaye, ngokufanelekileyo, athathe ulawulo olupheleleyo kwisixhobo esiqhagamshelwe kuyo. Ngokwakhe. Imizuzu engama-30 yezitshixo ezichongiweyo kwaye yenziwe. ” [7]

La magosa anqwala ngentloko enentsingiselo, ecacisa ukuba ayabuqonda ubunzulu bale meko, kodwa akenzanga nto. Namhlanje, kanye kwiminyaka engama-30 emva kokusebenza okudumileyo kwe-L0pht, ihlabathi lisathwaxwa "kukungakhuseleki okuxhaphakileyo." Ukugqekeza izixhobo zekhompyuter, eziqhagamshelwe kwi-Intanethi kulula kangangokuba i-Intanethi, ekuqaleni yayibubukumkani bezazinzulu ezinqwenelekayo kunye nabanomdla, ngokuthe ngcembe iye yahlaliswa zezona ngcali zibalaseleyo: amaqola, amaqola, iintlola, abanqolobi. Bonke baxhaphaza ubuthathaka bezixhobo zekhompyuter ngezibonelelo zemali okanye ezinye. [7]

Abathengisi abayihoyanga i-cybersecurity

Abathengisi ngamanye amaxesha, ngokuqinisekileyo, bazama ukulungisa ezinye zezithintelo ezichongiweyo, kodwa bakwenza oko bethandabuza kakhulu. Ngenxa yokuba inzuzo yabo ayiveli ekukhuselweni kubaduni, kodwa kwintsebenzo entsha abayinika abathengi. Ukujoliswa kuphela kwinzuzo yexesha elifutshane, abathengisi batyala imali kuphela ekusombululeni iingxaki zokwenyani, hayi ezona ngqiqweni. I-Cybersecurity, emehlweni amaninzi kubo, yinto eqikelelwayo. [7]

I-Cybersecurity yinto engabonakaliyo, engabonakaliyo. Iba yinto ebonakalayo kuphela xa kuvela iingxaki ngayo. Ukuba banakekele kakuhle (bachithe imali eninzi ekuboneleleni kwayo), kwaye akukho ngxaki kuyo, umthengi wokugqibela akayi kufuna ukuhlawula ngaphezulu. Ukongezelela, ngaphezu kokunyuka kweendleko zemali, ukuphunyezwa kwamanyathelo okukhusela kufuna ixesha elongezelelweyo lokuphuhlisa, kufuna ukunciphisa amandla ezixhobo, kwaye kukhokelela ekunciphiseni ukuveliswa kwayo. [8]

Kunzima ukukholisa nabarhwebi bethu ngokunokwenzeka kweendleko ezidwelisiweyo, singasathethi ke ngokuphelisa abathengi. Kwaye kuba abathengisi banamhlanje banomdla kuphela kwingeniso yentengiso yexesha elifutshane, abatyekelanga kwaphela ukuthatha uxanduva lokuqinisekisa ukhuseleko lwe-cybersecurity lwendalo yabo. [1] Kwelinye icala, abathengisi abalumke ngakumbi abathathele ingqalelo i-cybersecurity yezixhobo zabo bajongana nenyaniso yokuba abathengi beenkampani bakhetha ezinye iindlela ezingabizi kakhulu nezilula ukuzisebenzisa. Oko. Kuyacaca ukuba abathengi beenkampani abakhathali kakhulu malunga ne-cybersecurity. [8]

Ngokubhekiselele koku kungasentla, ayimangalisi into yokuba abathengisi bathande ukutyeshela i-cybersecurity, kwaye babambelele kule ntanda-bulumko ilandelayo: “Qhubeka usakha, qhubeka uthengisa kwaye upeyishe xa kuyimfuneko. Ngaba inkqubo iwile? Ulwazi olulahlekileyo? Idatabase enamanani ekhadi letyala abiweyo? Ngaba kukho nabuphi na ubuthathaka obubulalayo obuchongiweyo kwisixhobo sakho? Akhongxaki!" Abathengi, nabo, kufuneka balandele umgaqo othi: "Qinisekisa kwaye uthandaze." [7]

Kwenzeka njani oku: imizekelo evela endle

Umzekelo obalaseleyo wokungahoyi ukhuseleko lwe-cybersecurity ngexesha lophuhliso yinkqubo yenkuthazo yakwaMicrosoft: "Ukuba uyaphoswa yimihla ebekiweyo, uya kuhlawuliswa. Ukuba awunalo ixesha lokuhambisa ukukhutshwa kwenguqulelo yakho ngexesha, akuyi kuphunyezwa. Ukuba ayiphunyezwanga, awuzukufumana izabelo zenkampani (iqhekeza lepayi kwingeniso yeMicrosoft). Ukususela ngo-1993, iMicrosoft yaqala ukudibanisa iimveliso zayo kwi-Intanethi. Ekubeni eli nyathelo lisebenza ngokuhambelana nenkqubo efanayo yokukhuthaza, ukusebenza kwandiswe ngokukhawuleza kunokuba ukukhusela kunokuhambisana nayo. Ukuvuyisa abazingeli bepragmatic vulnerability... [7]

Omnye umzekelo yimeko yeekhompyuter kunye neelaptops: aziyi kunye ne-antivirus efakwe ngaphambili; kwaye ababoneleli ngokusetwa kwangaphambili kweephasiwedi ezinamandla. Kucingelwa ukuba umsebenzisi wokugqibela uya kufaka i-antivirus kwaye usete iiparamitha zokucwangcisa ukhuseleko. [1]

Omnye, umzekelo ogqithiseleyo: imeko kunye ne-cybersecurity yezixhobo zokuthengisa (iirejista zemali, ii-terminals ze-PoS zamaziko okuthenga, njl.). Kwenzekile ukuba abathengisi bezixhobo zorhwebo bathengise kuphela into ethengisiweyo, kwaye kungekhona into ekhuselekileyo. [2] Ukuba kukho into enye abathengisi bezixhobo zorhwebo abakhathalelayo malunga ne-cybersecurity, kukuqinisekisa ukuba ukuba kwenzeka isiganeko esiphikisanayo, uxanduva luwela kwabanye. [3]

Umzekelo obonisayo wolu phuhliso lweziganeko: ukuthandwa komgangatho we-EMV kumakhadi ebhanki, athi, ngenxa yomsebenzi onobuchule wabathengisi bebhanki, abonakale emehlweni oluntu olungenabuchwephesha njengenye indlela ekhuselekileyo "kwixesha elidlulileyo" amakhadi magnetic. Kwangaxeshanye, inkuthazo ephambili yeshishini lebhanki, elalinoxanduva lokuphuhlisa umgangatho we-EMV, yayikukutshintsha uxanduva lwezehlo zobuqhetseba (ezenzeka ngenxa yempazamo yamakhadi) - ukusuka kwiivenkile ukuya kubathengi. Ngelixa ngaphambili (xa iintlawulo bezisenziwa ngamakhadi kazibuthe), uxanduva lwezemali lwalusezivenkileni ngenxa yokungangqinelani kwedebhithi/yetyala. [3] Ngaloo ndlela iibhanki ezenza iintlawulo zilutshintshela uxanduva kubarhwebi (abasebenzisa iinkqubo zabo zebhanki ezikude) okanye kwiibhanki ezikhupha amakhadi entlawulo; ezi zimbini zokugqibela, ngokulandelelanayo, zishenxisa uxanduva kumnini-khadi. [2]

Abathengisi bathintela ukhuseleko lwe-cyber

Njengoko umphezulu wohlaselo lwedijithali usanda ngokungaqhelekanga-enkosi kukudubula kwezixhobo eziqhagamshelwe kwi-Intanethi-ukugcina umkhondo wento eqhagamshelwe kuthungelwano lweshishini kuya kuba nzima ngakumbi. Kwangaxeshanye, abathengisi batshintsha inkxalabo malunga nokhuseleko lwazo zonke izixhobo eziqhagamshelwe kwi-Intanethi kumsebenzisi wokugqibela [1]: “Ukuhlangulwa kwabantu abarhaxwayo ngumsebenzi wabantu abarhaxwayo ngokwabo.”

Abathengisi abakhathaleli kuphela nge-cybersecurity yendalo yabo, kodwa kwezinye iimeko baphinde baphazamise ukubonelela kwayo. Ngokomzekelo, xa ngo-2009 i-Conficker network worm yavuza kwiZiko lezoNyango lase-Beth Israel kwaye yasuleleka inxalenye yezixhobo zonyango apho, umlawuli wezobugcisa beli ziko lezonyango, ukuze athintele iziganeko ezifanayo kwixa elizayo, wagqiba ekubeni angasebenzi. umsebenzi wenkxaso yokusebenza kwisixhobo esichatshazelwa ngumbungu onenethiwekhi. Nangona kunjalo, wayejongene nenyaniso yokuba "izixhobo azikwazanga ukuhlaziywa ngenxa yezithintelo zokulawula." Kwamthatha umzamo omkhulu ukuthethathethana nomthengisi ukuvala imisebenzi yenethiwekhi. [4]

Isiseko seCyber-Insecurity ye-Intanethi

UDavid Clarke, unjingalwazi we-MIT odumileyo ogama lakhe lingu-Albus Dumbledore, ukhumbula mhla icala elimnyama le-Intanethi latyhilwa ngalo kwihlabathi. UClark wayengusihlalo wenkomfa yezonxibelelwano ngoNovemba 1988 xa kwavela iindaba zokuba intshulube yokuqala yekhompyutha kwimbali yayityhutyha ngeengcingo zenethiwekhi. UClark ukhumbule lo mzuzu kuba isithethi esikhoyo kwinkomfa yakhe (umqeshwa wenye yeenkampani eziphambili zezonxibelelwano) wayephendule ngokusasazeka kwale ntshulube. Esi sithethi, sivutha ngumsindo, singaqondanga sathi: “Nanko ke!” Kubonakala ngathi ndibuvalile obu buthathaka,” uhlawule la mazwi. [5]

Nangona kunjalo, kamva kwavela ukuba ukuba sesichengeni ekwasasazeka ngalo intshulube ekhankanyiweyo yayingekokufaneleka kwakhe nawuphi na umntu. Kwaye oku, ngokungqongqo, kwakungekho nokuba sesichengeni, kodwa yinto ebalulekileyo ye-Intanethi: abasunguli be-Intanethi, xa bephuhlisa ingqondo yabo, bagxile ngokukodwa kwisantya sokudlulisa idatha kunye nokunyamezela iimpazamo. Abazange bazibeke umsebenzi wokuqinisekisa ukhuseleko lwe-cyber. [5]

Namhlanje, kumashumi eminyaka emva kokusekwa kwe-Intanethi—esele kusetyenziswe amakhulu eebhiliyoni zeerandi kumalinge alilize okukhusela i-Internet—i-Internet isesichengeni. Iingxaki zayo ze-cybersecurity ziya ziba mandundu minyaka le. Nangona kunjalo, ngaba sinelungelo lokugweba abasunguli be-Intanethi ngoku? Ngapha koko, ngokomzekelo, akukho mntu uya kubagxeka abakhi beenqwelo-moya ngesibakala sokuba iingozi zisenzeka “ezindleleni zabo”; yaye akukho bani uya kubagweba abacwangcisi besixeko ngesibakala sokuba kuphangwa “kwizixeko zabo.” [5]

Yazalwa njani i-hacker subculture

I-Hacker subculture yaqala ekuqaleni kweminyaka yoo-1960, kwi-"Railway Technical Modeling Club" (esebenza ngaphakathi kweendonga zeMassachusetts Institute of Technology). Abathandi beKlabhu bayila baza bahlanganisa indlela kaloliwe eyimodeli, enkulu kangangokuba yazalisa igumbi lonke. Amalungu eklabhu avele ahlulwe abe ngamaqela amabini: abenzi boxolo kunye neengcali zenkqubo. [6]

Eyokuqala yasebenza kunye nenxalenye engasentla yemodeli, eyesibini - kunye nephantsi komhlaba. Abokuqala baqokelele kwaye bahlotshiswe iimodeli zoololiwe kunye nezixeko: zenza imodeli yehlabathi lonke ngobuncinci. Owokugqibela wasebenza kwinkxaso yobugcisa kuyo yonke le nto yokudala uxolo: ukuntsonkotha kweengcingo, iireyilayi kunye nokulungelelanisa izitshixo ezibekwe kwindawo engaphantsi komhlaba yemodeli - yonke into elawula inxalenye "engaphezulu" kwaye yondla ngamandla. [6]

Xa bekukho ingxaki yendlela kwaye umntu weza nesisombululo esitsha nesikrelekrele sokuyilungisa, isisombululo sabizwa ngokuba "yi-hack." Kumalungu eklabhu, ukukhangela ii-hacks ezintsha kube yintsingiselo engaphakathi yobomi. Yiyo loo nto baqala ukuzibiza ngokuba "ngabaduni." [6]

Isizukulwana sokuqala sabahlaseli baphumeze izakhono ezifunyenwe kwiSimulation Railway Club ngokubhala iinkqubo zekhompyutha kumakhadi abethelweyo. Emva koko, xa i-ARPANET (eyandulela kwi-Intanethi) yafika kwi-campus ngo-1969, abahlaseli baba ngabasebenzisi abasebenzayo kunye nabanobuchule. [6]

Ngoku, kumashumi eminyaka kamva, i-Intanethi yanamhlanje ifana nenxalenye “engaphantsi komhlaba” yomfuziselo kaloliwe. Ngenxa yokuba abaseki bayo yayingabo baphangi abafanayo, abafundi be “Railroad Simulation Club”. Ngabaphangi kuphela ngoku abasebenzisa izixeko zokwenyani endaweni yeemifanekiso ezincinci. [6]

Indlela ye-BGP yenzeke ngayo

Ekupheleni kweminyaka yee-80s, ngenxa yokonyuka okufana ne-avalanche kwinani lezixhobo eziqhagamshelwe kwi-Intanethi, i-Intanethi isondele kumda onzima wezibalo owakhelwe kwenye yemigaqo esisiseko ye-Intanethi. Ke ngoko, nayiphi na incoko phakathi kweenjineli zelo xesha ekugqibeleni yajika yaba yingxoxo yale ngxaki. Abahlobo ababini abazange bahluke: UJacob Rechter (unjineli ovela kwi-IBM) kunye noKirk Lockheed (umsunguli weCisco). Emva kokudibana ngengozi kwitafile yesidlo sakusihlwa, baqala ukuxoxa ngamanyathelo okugcina ukusebenza kwe-Intanethi. Abahlobo babhala phantsi iingcamango eziye zavela kuyo nantoni na eza ngesandla - i-napkin efakwe kwi-ketchup. Emva koko owesibini. Emva koko okwesithathu. “Iprotocol ye-napkins emithathu,” njengoko abavelisi bayo beqhula bayibiza njalo—eyaziwa kwizangqa ezisemthethweni njenge-BGP (Border Gateway Protocol)—kungekudala yatshintsha i-Intanethi. [8]

KuRechter kunye ne-Lockheed, i-BGP yayiyi-hack nje eqhelekileyo, ephuhliswe emoyeni we-Model Railroad Club ekhankanywe ngasentla, isisombululo sexeshana esiza kutshintshwa kungekudala. Abahlobo baphuhlise i-BGP ngo-1989. Namhlanje, nangona kunjalo, kwiminyaka engama-30 kamva, uninzi lwetrafikhi ye-Intanethi lusaqhutywa kusetyenziswa "i-protocol ye-napkin emithathu" - nangona iminxeba eyoyikisayo eyoyikisayo malunga neengxaki ezinzima kunye ne-cybersecurity yayo. Uqheliso lwexeshana lwaba yenye yeendlela ezisisiseko ze-Intanethi, kwaye abaphuhlisi bayo bafunda kumava abo ukuba "akukho nto isisigxina kunezisombululo zexeshana." [8]

Uthungelwano kwihlabathi jikelele lutshintshele kwi-BGP. Abathengisi abanempembelelo, abathengi abazizityebi kunye neenkampani zonxibelelwano ngokukhawuleza bathandana ne-BGP kwaye baqhelana nayo. Ke ngoko, nangona zininzi nangakumbi iintsimbi ze-alam malunga nokungakhuseleki kwale protocol, uluntu lwe-IT alubonakalisi umdla wokutshintshela kwisixhobo esitsha, esikhuseleke ngakumbi. [8]

Cyber-engakhuselekanga BGP indlela

Kutheni umzila we-BGP ulungile kwaye kutheni uluntu lwe-IT lungangxamanga ukuyishiya? I-BGP inceda iirutha ukuba zenze izigqibo malunga nendawo yokuthumela imisinga emikhulu yedatha ethunyelwe kuthungelwano olukhulu lwemigca yonxibelelwano enqumlanayo. I-BGP inceda iirotha ukuba zikhethe iindlela ezifanelekileyo nangona uthungelwano luhlala lutshintsha kwaye iindlela ezidumileyo zihlala zifumana ukuxinana kwezithuthi. Ingxaki kukuba i-Intanethi ayinayo imephu yendlela yehlabathi. Routers usebenzisa BGP ukwenza izigqibo malunga nokukhetha indlela enye okanye enye esekelwe kulwazi olufunyenwe kubamelwane kwi-cyberpace, abathi nabo baqokelele ulwazi kubamelwane babo, njl. Nangona kunjalo, olu lwazi lunobuxoki ngokulula, oku kuthetha ukuba umzila we-BGP usengozini kakhulu kuhlaselo lwe-MiTM. [8]

Ke ngoko, imibuzo efana nale ilandelayo iphakama rhoqo: "Kutheni itrafikhi phakathi kweekhompyuter ezimbini eDenver ithathe indawo enkulu e-Iceland?", "Kutheni le nto idatha yePentagon yacalulwa xa idluliswa kuhambo ngeBeijing?" Kukho iimpendulo zobugcisa kwimibuzo enjengale, kodwa zonke zehla kwinto yokuba i-BGP isebenza ngokusekelwe ekuthembekeni: ukuthembela kwiingcebiso ezifunyenwe kwii-router ezingabamelwane. Enkosi kubume bokuthembeka kweBGP protocol, abaphathi betrafikhi abangaqondakaliyo banokutsala idatha yabanye abantu kwisizinda sabo ukuba bayathanda. [8]

Umzekelo ophilayo yi-BGP yaseChina yokuhlasela kwi-American Pentagon. Ngo-Epreli ka-2010, isigebenga se-telecom sikarhulumente i-China Telecom yathumela amashumi amawaka ee-routers emhlabeni jikelele, kubandakanywa ne-16 e-United States, umyalezo we-BGP obaxelela ukuba baneendlela ezingcono. Ngaphandle kwenkqubo enokuqinisekisa ubunyani bomyalezo we-BGP ovela e-China Telecom, ii-routers emhlabeni jikelele zaqala ukuthumela idatha kwi-transit nge-Beijing. Kubandakanya izithuthi ezivela kwiPentagon kunye nezinye iisayithi zeSebe lezoKhuselo laseMelika. Ukukhululeka apho i-traffic yabuyiselwa kwakhona kunye nokungabikho kokhuseleko olusebenzayo ngokuchasene nolu hlobo lohlaselo lolunye uphawu lokungakhuseleki kwendlela ye-BGP. [8]

Iprothokholi ye-BGP ngokwethiyori isesichengeni kuhlaselo lwe-cyber oluyingozi ngakumbi. Kwimeko apho iingxwabangxwaba zamazwe ngamazwe ziye zanda ngokupheleleyo kwi-cyberspace, iChina Telecom, okanye enye ingxilimbela kwezonxibelelwano, inokuzama ukubanga ubunini beenxalenye ze-Intanethi ezingezizo ezo. Inyathelo elinjalo lingabhidanisa iirutha, ezinokuthi zigxumeke phakathi kweebhidi ezikhuphisanayo zeebhloko ezifanayo zeedilesi ze-Intanethi. Ngaphandle kokukwazi ukwahlula isicelo esisemthethweni kwinkohliso, iirutha ziya kuqala ukwenza izinto ezingalunganga. Ngenxa yoko, besiya kujongana ne-Intanethi elingana nemfazwe yenyukliya-umboniso ovulekileyo, omkhulu wobutshaba. Uphuhliso olunjalo ngamaxesha oxolo lubonakala lungenakwenzeka, kodwa ngokobugcisa lunokwenzeka. [8]

Ilinge eliphuthileyo lokusuka kwi-BGP ukuya kwi-BGPSEC

I-Cybersecurity ayizange ithathelwe ingqalelo xa i-BGP yaphuhliswa, kuba ngelo xesha i-hacks yayinqabile kwaye umonakalo ovela kubo wawungenamsebenzi. Abaphuhlisi be-BGP, ngenxa yokuba basebenzela iinkampani zonxibelelwano kwaye babenomdla ekuthengiseni izixhobo zabo zenethiwekhi, babenomsebenzi ocinezela ngakumbi: ukuphepha ukonakala okuzenzekelayo kwe-Intanethi. Kuba iziphazamiso kwi-Intanethi zingabahlukanisa abasebenzisi, kwaye ngaloo ndlela kuncitshiswe ukuthengiswa kwezixhobo zenethiwekhi. [8]

Emva kwesiganeko sokugqithiswa kwe-traffic yomkhosi waseMelika ngeBeijing ngo-Epreli 2010, isantya somsebenzi wokuqinisekisa ukhuseleko lwe-cybersecurity ye-BGP yomzila ngokuqinisekileyo yakhawuleza. Nangona kunjalo, abathengisi be-telecom babonise intshiseko encinci yokuthwala iindleko ezinxulumene nokufudukela kwiprotocol entsha ekhuselekileyo ye-BGPSEC, ecetywayo njengokutshintshwa kwe-BGP engakhuselekanga. Abathengisi basayijonga i-BGP yamkelekile, nangona kukho iziganeko ezininzi zokungenelela kwezithuthi. [8]

URadia Perlman, obizwa ngokuba "nguMama we-Intanethi" ngokuqulunqa enye iprotocol yenethiwekhi enkulu kwi-1988 (unyaka ngaphambi kwe-BGP), yafumana i-dissertation yobugqirha kwi-MIT. UPerlman uqikelele ukuba iprotocol yendlela exhomekeke ekunyanisekeni kwabamelwane kwi-cyberspace ayikhuselekanga. UPerlman wakhuthaza ukusetyenziswa kwe-cryptography, eya kunceda ukunciphisa amathuba okwenziwa komgunyathi. Nangona kunjalo, ukuphunyezwa kwe-BGP kwakusele kuqhutywe ngokupheleleyo, uluntu lwe-IT olunempembelelo lwalujwayele, kwaye alufuni ukutshintsha nantoni na. Ke ngoko, emva kwezilumkiso eziqiqiweyo ezivela kuPerlman, uClark kunye nezinye iingcaphephe zehlabathi ezibalaseleyo, isabelo esihambelanayo se-cryptographically ekhuselekileyo ye-BGP umzila awunyukanga kwaphela, kwaye usengu-0%. [8]

Umzila we-BGP ayikuphela kwe-hack

Kwaye indlela ye-BGP ayisiyiyo yodwa inkohliso eqinisekisa umbono wokuba "akukho nto isisigxina kunezisombululo zethutyana." Ngamanye amaxesha i-Intanethi, isintywilisela kwihlabathi lentelekelelo, ibonakala intle njengemoto yomdyarho. Nangona kunjalo, eneneni, ngenxa yee-hacks ezibekwe phezu komnye, i-Intanethi ifana neFrankenstein kuneFerrari. Ngenxa yokuba ezi hacks (ezibizwa ngokusemthethweni ngakumbi iipetshi) azizange zithathelwe indawo yitekhnoloji ethembekileyo. Iziphumo zale ndlela zimbi: yonke imihla nangeyure, abaphuli-mthetho bangena kwiinkqubo ezisesichengeni, besandisa umda wolwaphulo-mthetho kwi-cybercrime ukuya kumlinganiselo owawungenakucingelwa ngaphambili. [8]

Uninzi lweziphoso ezixhatshazwa ngabagebenga be-cyber zaziwa ixesha elide, kwaye ziye zagcinwa kuphela ngenxa yokuthambekela koluntu lwe-IT ukusombulula iingxaki ezivelayo - ngee-hacks / patches zesikhashana. Ngamanye amaxesha, ngenxa yoku, itekhnoloji ephelelwe lixesha ifumba phezu komnye ixesha elide, yenza ubomi babantu bube nzima kwaye ibabeke emngciphekweni. Ubuya kucinga ntoni xa ufumanisa ukuba ibhanki yakho yakha igumbi layo phezu kwesiseko seendiza nodaka? Ngaba ubuya kumthemba ukuba uza kuyigcina imali yakho? [8]

Isimo sengqondo sokungakhathali sikaLinus Torvalds

Kuthathe iminyaka ngaphambi kokuba i-Intanethi ifikelele kwiikhompyuter zayo ezilikhulu. Namhlanje, iikhomputha ezili-100 ezintsha kunye nezinye izixhobo ziqhagamshelwe kuyo rhoqo ngomzuzwana. Njengoko izixhobo eziqhagamshelwe kwi-Intanethi ziqhuma, kukwanjalo nokungxamiseka kwemiba yokhuseleko lwe-intanethi. Nangona kunjalo, umntu onokuba nempembelelo enkulu ekusombululeni ezi ngxaki ngulowo ujonga ukhuseleko lwe-cyber ngokudelela. Le ndoda ibizwa ngokuba yingqondi, intlondi, inkokeli yokomoya kunye nozwilakhe onobubele. Linus Torvalds. Uninzi lwezixhobo eziqhagamshelwe kwi-Intanethi ziqhuba inkqubo yayo yokusebenza, iLinux. Ukukhawuleza, ubhetyebhetye, simahla-iLinux iya isaziwa ngakumbi ngokuhamba kwexesha. Ngexesha elifanayo, liziphatha ngokuzinzileyo kakhulu. Kwaye inokusebenza ngaphandle kokuphinda iqalise iminyaka emininzi. Yiyo loo nto iLinux inewonga lokuba yeyona nkqubo isebenzayo. Phantse zonke izixhobo zekhompyuter ezifumanekayo kuthi namhlanje zisebenzisa iLinux: iiseva, izixhobo zonyango, iikhompyuter zenqwelomoya, iidrone ezincinci, iinqwelomoya zomkhosi nokunye okuninzi. [9]

I-Linux iphumelela kakhulu kuba iTorvalds igxininisa ukusebenza kunye nokunyamezela iimpazamo. Nangona kunjalo, ubeka olu gxininiso kwindleko ye-cybersecurity. Nanjengoko i-cyberpace kunye nehlabathi lokwenyani lidibana kunye ne-cybersecurity iba ngumcimbi wehlabathi, i-Torvalds iyaqhubeka nokuchasa ukwazisa izinto ezintsha ezikhuselekileyo kwinkqubo yakhe yokusebenza. [9]

Ke ngoko, naphakathi kwabalandeli abaninzi beLinux, kukho inkxalabo ekhulayo malunga nokuba semngciphekweni kwale nkqubo yokusebenza. Ngokukodwa, eyona nxalenye isondeleyo yeLinux, ikernel yayo, iTorvalds esebenza kuyo buqu. Abalandeli beLinux babona ukuba iTorvalds ayithathi nzulu imiba ye-cybersecurity. Ngapha koko, uTorvalds uzingqongile ngabaphuhlisi ababelana ngesi simo sengqondo sokungakhathali. Ukuba umntu osuka kwisangqa sangaphakathi sikaTorvalds uqala ukuthetha ngokuzisa izinto ezintsha ezikhuselekileyo, uhlaziswa kwangoko. UTorvalds waligatya elinye iqela labasunguli abanjalo, esithi “ziinkawu eziziphulula amaphambili.” Njengoko uTorvalds wayevalelisa kwelinye iqela labaphuhlisi abaxhalabele ukhuseleko, wathi kubo, "Ngaba unokuba nobubele ukuba uzibulale. Umhlaba unokuba yindawo engcono ngenxa yoko. ” Nanini na xa kufikwa ekongezeni iimpawu zokhuseleko, iTorvalds yayisoloko ichasene nayo. [9] I-Torvalds ide ibe nayo yonke intanda-bulumko kulo mba, engenakho ukhozo lwengqiqo:

“Ukhuseleko olupheleleyo alunakufumaneka. Ngoko ke, kufuneka ihlale iqwalaselwa kuphela ngokumalunga nezinye izinto eziphambili: ukukhawuleza, ukuguquguquka kunye nokulula kokusetyenziswa. Abantu abazinikele ngokupheleleyo ekukhuseleni bayaphambana. Iingcinga zabo zilinganiselwe, zimnyama namhlophe. Ukhuseleko ngokwalo alunamsebenzi. Undoqo uhlala kwenye indawo. Ke ngoko, awunakuqinisekisa ukhuseleko olupheleleyo, nokuba ufuna ngokwenene. Ewe, kukho abantu abanikela ingqalelo ngakumbi kukhuseleko kuneTorvalds. Nangona kunjalo, aba bafana basebenza nje kwizinto ezinomdla kubo kwaye babonelele ngokhuseleko ngaphakathi kwesakhelo esincinci esichaza le midla. Hayi kwakhona. Ngoko abanagalelo nangayiphi na indlela ekwandiseni unqabiseko olupheleleyo.” [9]

Ibha esecaleni: I-OpenSource ifana nebhekile yomgubo [10]

Ikhowudi ye-OpenSource igcine iibhiliyoni kwiindleko zophuhliso lwesoftware, isusa imfuno yemizamo ephindwe kabini: nge-OpenSource, abadwelisi benkqubo banethuba lokusebenzisa iinguqulelo zangoku ngaphandle kwemiqobo okanye intlawulo. I-OpenSource isetyenziswa kuyo yonke indawo. Nokuba uqeshe umphuhlisi wesoftware ukuba asombulule ingxaki yakho ekhethekileyo ukusuka ekuqaleni, lo mphuhlisi uya kusebenzisa uhlobo oluthile lwethala leencwadi le-OpenSource. Kwaye mhlawumbi ngaphezu kwesinye. Ke, izinto ze-OpenSource zikhona phantse kuyo yonke indawo. Kwangaxeshanye, kufuneka kuqondwe ukuba akukho software imile; ikhowudi yayo ihlala iguquka. Ke ngoko, umgaqo othi "uwubeke kwaye uwulibale" awusebenzi kwikhowudi. Kubandakanya ikhowudi ye-OpenSource: kungekudala okanye kamva inguqulelo ehlaziyiweyo iya kufuneka.

Ngo-2016, sabona iziphumo zale meko: umphuhlisi oneminyaka engama-28 ubudala "waphula" ngokufutshane i-Intanethi ngokucima ikhowudi yakhe ye-OpenSource, awayeyenze ukuba ifumaneke esidlangalaleni. Eli bali libonisa ukuba i-cyberinfrastructure yethu ibuthathaka kakhulu. Abanye abantu - abaxhasa iiprojekthi ze-OpenSource - zibaluleke kakhulu ukuyigcina kangangokuba ukuba, uThixo akafuni, batshayiswe yibhasi, i-Intanethi iya kuphuka.

Kunzima ukuyigcina ikhowudi kulapho obona buthathaka bunzulu be-cybersecurity buhlala khona. Ezinye iinkampani aziqondi nokuba zisengozini kangakanani na ngenxa yekhowudi enzima ukuyigcina. Ubuthathaka obunxulunyaniswa nekhowudi enjalo bunokukhulela kwingxaki yokwenyani ngokucothayo: iinkqubo zibola kancinane, ngaphandle kokubonisa ukusilela okubonakalayo kwinkqubo yokubola. Yaye xa zisilela, imiphumo iba mibi.

Okokugqibela, kuba iiprojekthi ze-OpenSource zihlala ziphuhliswa luluntu lwabantu abathandanayo, njengoLinus Torvalds okanye njengabaduni abavela kwiModel Railroad Club ekhankanywe ekuqaleni kwenqaku, iingxaki ezinobunzima-ukugcina ikhowudi ayinakusonjululwa ngeendlela zemveli (usebenzisa iilevers zorhwebo kunye norhulumente). Kungenxa yokuba abantu abanjalo benza ngabom yaye bakuxabisa ukuzimela geqe ngaphezu kwayo yonke enye into.

Ibha esecaleni: Mhlawumbi iinkonzo zobuntlola kunye nabaphuhlisi be-antivirus baya kusikhusela?

Kwi-2013, kwaziwa ukuba iKaspersky Lab ineyunithi ekhethekileyo eyenza uphando lwesiko lweziganeko zokhuseleko lolwazi. Kuze kube kutshanje, eli candelo lalikhokelwa ngumphathi wamapolisa, uRuslan Stoyanov, owayesebenza ngaphambili kwiSebe le-capital "K" (i-USTM yoMlawuli weMicimbi yangaphakathi yaseMoscow). Bonke abasebenzi beli candelo elikhethekileyo leKaspersky Lab bavela kwii-arhente zokunyanzeliswa komthetho, kubandakanywa neKomiti yoPhando kunye neCandelo "K". [Shumi elinanye]

Ekupheleni kuka-2016, i-FSB yabamba uRuslan Stoyanov yammangalela ngokungcatsha. Kwimeko efanayo, uSergei Mikhailov, ummeli ophezulu we-FSB CIB (iziko lokhuseleko lolwazi), wabanjwa, apho, ngaphambi kokubanjwa, yonke i-cybersecurity yelizwe iboshwe. [Shumi elinanye]

Ibar esecaleni: Ukhuseleko lwe-Cybersecurity luyanyanzeliswa

Kungekudala oosomashishini baseRashiya baya kunyanzelwa ukuba banikele ingqalelo enzulu kwi-cybersecurity. NgoJanuwari 2017, uNikolai Murashov, ummeli weZiko loKhuseleko loLwazi kunye noNxibelelwano oluKhethekileyo, wathi eRashiya, izinto zeCII (iziseko zolwazi olubalulekileyo) zodwa zahlaselwa ngaphezu kwezigidi ze-2016 kwi-70. Iinjongo zeCII zibandakanya iinkqubo zolwazi zee-arhente zikarhulumente, amashishini oshishino lokhuselo, ezothutho, amacandelo etyala nawemali, amandla, amafutha kunye namashishini enyukliya. Ukuze abakhusele, ngoJulayi 26, uMongameli waseRashiya uVladimir Putin watyikitya umthetho othi “Ngokhuseleko lweCII.” NgoJanuwari 1, i-2018, xa umthetho uqala ukusebenza, abanikazi bezakhiwo zeCII kufuneka basebenzise isethi yamanyathelo okukhusela iziseko zabo ekuhlaselweni kwe-hacker, ngokukodwa, ukuxhuma kwi-GosSOPKA. [12]

IBhayibhile

1. UJonathan Millet. IoT: Ukubaluleka koKhuseleko lweZixhobo zakho ezihlakaniphile // 2017.
2. URoss Anderson. Iinkqubo zokuhlawula i-smartcard zisilela njani // Umnqwazi omnyama. 2014.
3. SJ Murdoch. I-Chip kunye ne-PIN yaphukile // Iinkqubo ze-IEEE Symposium kuKhuseleko kunye noBucala. 2010. pp. 433-446.
4. UDavid Talbot. Iintsholongwane zeKhompyutha "Zixhaphake" kwiZixhobo zoNyango kwizibhedlele // Uphononongo lweTekhnoloji yeMIT (iDijithali). 2012.
5. UCraig Timber. Umnatha Wokungakhuseleki: Ukuhamba kuYilo // Iposti yaseWashington. 2015.
6. UMichael Lista. Wayengumgeki okwishumi elivisayo owachitha izigidi zakhe kwiimoto, iimpahla kunye neewotshi-de i-FBI yabanjwa. // Ubomi baseToronto. 2018.
7. UCraig Timber. Umnatha wokungakhuseleki: Intlekele eyaxelwa kwangaphambili-kwaye ingahoywa // Iposti yaseWashington. 2015.
8. UCraig Timber. Ubomi obude bolungiso 'olukhawulezayo': Iprothokholi ye-Intanethi ukusukela ngo-1989 ishiya idatha isesichengeni kubaqweqwedisi // Iposti yaseWashington. 2015.
9. UCraig Timber. Umnatha Wokungakhuseleki: Ikernel yengxabano // Iposti yaseWashington. 2015.
10. UYoshuwa Gans. Ngaba iKhowudi yoMthombo oVulekileyo yenza ukuba uloyiko lwethu lwe-Y2K lube Yinyani ekugqibeleni? // Uphononongo lweShishini laseHarvard (iDijithali). 2017.
11. Umphathi ophezulu weKaspersky ubanjwe yiFSB // Iindaba. 2017. URL.
12. UMaria Kolomychenko. Inkonzo yobukrelekrele beCyber: I-Sberbank icebise ukudala ikomkhulu ukulwa nabahlaseli // RBC. 2017.

umthombo: www.habr.com