Ngo-Okthobha ka-2017, kwavela ngokungalindelekanga ukuba kukho umngcipheko omkhulu kwi-Wi-Fi Protected Access II (WPA2) protocol yokufihla i-Wi-Fi traffic, evumela ukutyhila amagama ayimfihlo omsebenzisi kwaye emva koko umamele utshintshiselwano lwedatha yexhoba. Ukuba sesichengeni kwabizwa ngokuba yi-KRACK (ifutshane kwi-Key Reinstallation Attack) kwaye ichongiwe ziingcali uMathy Vanhoef kunye no-Eyal Ronen. Emva kokuba umngcipheko we-KRACK ufunyenwe, wavalwa nge-firmware elungisiweyo yezixhobo, kunye neprotocol ye-WPA2, eyathatha indawo ye-WPA3 kunyaka odlulileyo, kufuneka ilibale ngokupheleleyo malunga neengxaki zokhuseleko kwiinethiwekhi ze-Wi-Fi.
Owu, iingcali ezifanayo zafumanisa ukuba ubuthathaka obungaphantsi kobungozi kwiprotocol yeWPA3. Ke ngoko, kuyafuneka kwakhona ukuba ulinde kwaye uthembe i-firmware entsha yeendawo zokufikelela ngaphandle kwamacingo kunye nezixhobo, ngaphandle koko kuya kufuneka uphile ngolwazi lobuthathaka bekhaya kunye nenethiwekhi ye-Wi-Fi yoluntu. Ubuthathaka obufunyenwe kwi-WPA3 ngokudibeneyo baziwa njenge Dragonblood.
Iingcambu zengxaki, njengangaphambili, zilele ekusebenzeni kwendlela yokunxibelelana okanye, njengoko zibizwa kumgangatho, "ukuxhawula izandla". Lo matshini kumgangatho weWPA3 ubizwa ngokuba nguhlabamanzi (dragonfly). Ngaphambi kokufunyanwa kwe-Dragonblood, kwakucingwa ukuba ikhuselwe kakuhle. Lilonke, ipakethe ye-Dragonblood iquka iinguqu ezintlanu zobuthathaka: ukukhanyela inkonzo, ubuthathaka obubini kunye nokunciphisa ukukhuselwa kwenethiwekhi (ukunciphisa) kunye nobuthathaka obubini ngokuhlaselwa kweendlela ezisecaleni (i-channel-side-channel).
Ukukhanyelwa kwenkonzo akukhokelela ekuvuzeni kwedatha, kodwa kunokuba sisiganeko esingathandekiyo kumsebenzisi osilela ngokuphindaphindiweyo ukudibanisa kwindawo yokufikelela. Ubuthathaka obuseleyo buvumela umhlaseli ukuba afumane amagama ayimfihlo ukuze adibanise umsebenzisi kwindawo yofikelelo kwaye alandele phantsi naluphi na ulwazi olubalulekileyo kumsebenzisi.
Uhlaselo lokuthotywa kweNethiwekhi lukuvumela ukuba unyanzelise ukutshintshela kuguqulelo oludala lweprotocol yeWPA2 okanye kwiiyantlukwano ezibuthathaka ze-algorithms yoguqulelo lwe-WPA3, kwaye emva koko uqhubeke nokugqekeza usebenzisa iindlela ezaziwayo. Uhlaselo lwetshaneli esecaleni lusebenzisa izinto ezingaqhelekanga ze-WPA3 algorithms kunye nokuphunyezwa kwazo, ekugqibeleni ikwavumela ukusetyenziswa kweendlela ezaziwa ngaphambili zokuqhekeka iphasiwedi. Funda ngakumbi apha. I-Dragonblood Vulnerability Toolkit inokufumaneka kweli khonkco.
I-Wi-Fi Alliance, enoxanduva lokuphuhlisa imigangatho ye-Wi-Fi, yenziwe yazi malunga nobuthathaka obufunyenweyo. Kuxelwe ukuba abavelisi behardware balungiselela i-firmware elungisiweyo ukuvala imingxunya yokhuseleko efunyenweyo. Ukutshintshwa kunye nokubuyiselwa kwesixhobo akufuneki.
umthombo: 3dnews.ru