Sawubona Habr!
Namuhla ngizokhuluma ngalokho mina nozakwethu ebesikwenza izinyanga ezimbalwa manje: izaziso zohlelo lokusebenza zemiyalezo esheshayo yeselula. Njengoba ngike ngasho, esicelweni sethu ukugcizelelwa okukhulu kwezokuphepha. Ngakho-ke, sithole ukuthi ingabe izaziso zohlelo lokusebenza “zinamaphuzu abuthakathaka” futhi, uma kunjalo, singazilinganisa kanjani ukuze sengeze le nketho ewusizo enkonzweni yethu.
Ngishicilela ukuhumusha kwethu ngezinye izengezo ezincane ezivela kimi. Iqukethe imiphumela "yophenyo" kanye nendaba yokuthi inkinga yaxazululwa kanjani.
Sihlola impahla
Kumodeli yakudala, izaziso zohlelo lokusebenza zenza izithunywa zibe sengcupheni yokuhlaselwa kwe-MITM (Man-in-the-middle). Isibonelo, nge-Google, iMicrosoft, kanye nenguqulo yakudala ye-iMessage, uhlelo lokusebenza luthumela okhiye bokubethela kumaseva e-Apple - kuseva, abasebenzisi baqinisekiswa futhi inhlokweni yomlayezo (noma okuqukethwe kwayo) inqanyuliwe.
Ngenxa yalokho, kunethuba lokufunda izincwadi ngokuthola ukufinyelela kuseva yesaziso sohlelo lokusebenza. Lokhu kusho ukuthi noma yikuphi ukubethelwa kwezincwadi akusizi ngalutho: izaziso zohlelo lokusebenza zisazoshiya ithuba lokufundwa abantu besithathu. Ababhali balesi sihloko baxoxa kabanzi ngalokhu okungenzeka. ku-Xaker.ru, enikezelwe ezindleleni zokubethela imiyalezo.
Uma ucabanga ukuthi iziphakeli ze-Apple ne-Google zivikeleke ngo-100% kokhiye bokubethela abasebenzisi abavuzayo, cabangela iqiniso lokuthi abasebenzi babo banokufinyelela kubo. Futhi abasebenzi bangabantu.
Naphezu kwabo bonke ubungozi bezaziso zohlelo lokusebenza, izithunywa eziningi “ezivikelekile” ezisheshayo, okuhlanganisa iSignal neTelegram, ziyazisebenzisa. Uma kungenjalo, abasebenzisi kuyodingeka “mathupha” baqaphe imilayezo emisha ngokungena njalo kuhlelo lokusebenza. Okuyinto engalungile kakhulu, futhi izithunywa eziqhudelanayo zizothola inzuzo.
Paranoia kanye nomqondo ovamile
Kuphrojekthi yethu, silusukumele lolu daba ezinyangeni ezimbalwa ezedlule. Besidinga ukungeza inketho yesaziso sohlelo lokusebenza ukuze sibe nokuncintisana. Kodwa ngesikhathi esifanayo, ungavuli imbobo yokuphepha, ngoba noma yikuphi ukuvuza kwedatha kuzokwehlisa ukuzethemba kuphrojekthi.
Kodwa-ke, sesivele sinenzuzo ebalulekile: isithunywa sethu sihlukaniswe (idatha igcinwa ku-blockchain), futhi abasebenzi abanakho ukufinyelela kuma-akhawunti. Abasebenzisi kuphela abanokhiye bokubethela, futhi okhiye basesidlangalaleni babaxhumanisi bayatholakala ku-blockchain ukuze bavikeleke ekuhlaselweni kwe-MITM.
Enguqulweni yokuqala yezaziso zohlelo lokusebenza, sinqume ukuyidlala iphephile ngangokunokwenzeka futhi singawudluliseli nhlobo umbhalo womlayezo. Isevisi ye-push ayizange ithole umbhalo womlayezo ovela ku-node, kodwa kuphela isignali mayelana neqiniso lokutholwa kwayo. Ngakho-ke, umsebenzisi ubone isaziso esithi "Umlayezo omusha ufikile". Kwakungenzeka ukulifunda kusithunywa kuphela.
.
Ngemuva kwalokho, sifunde ukuthi inguqulo yakamuva yezaziso ze-Apple inezici ezintsha zokuphepha. Bona I-UNNotificationServiceExtension, evumela onjiniyela ukuthi bathumele idatha yesaziso ebethelwe ngokugcwele nge-APNS. Uhlelo lokusebenza kudivayisi yomsebenzisi wokugcina libe selikhipha ukubethela (noma lilanda idatha eyengeziwe) futhi libonise isaziso. Sikuthathe njengesisekelo senguqulo yesibili yezaziso zohlelo lokusebenza.
Manje sesenze inguqulo yesibili yezaziso zohlelo lokusebenza lwe-iOS, ekuvumela ukuthi ubonise umbhalo womlayezo ngaphandle kobungozi bokuphepha. Emcabangweni omusha, i-logic ibukeka kanje:
- Isevisi yokusunduza ithumela isaziso sohlelo lokusebenza ngenombolo yokwenziwe (umlayezo obethelwe ungaba mkhulu kakhulu, nosayizi wezaziso unomkhawulo kakhulu)
- Uma idivayisi ithola isaziso, yethula i-NotificationServiceExtension yethu - uhlelo lokusebenza oluncane olucela umsebenzi ku-node nge-id, isuse ukubethela kusetshenziswa umushwana wokungena olondoloziwe, futhi ithumele isaziso esisha kusistimu. Umushwana wokungena ugcinwa endaweni evikelekile.
- Uhlelo lubonisa isaziso esinomlayezo osuswe ukubethela noma ukuhumusha.
- Okhiye abayi ndawo, njengomlayezo wombhalo ongenalutho. Isevisi yokuphusha ayinayo indlela yokususa ukubethela komlayezo.
Samukele le nguqulo njengesebenzayo futhi sayisebenzisa kusibuyekezo sakamuva sohlelo lokusebenza lwe-iOS.
Labo abanentshisekelo kuhlangothi lobuchwepheshe bangabuka ikhodi yomthombo: .
Source: www.habr.com