Engqungqutheleni ye-38C3, uhlaka lwe-FlippyRAM lwethulwa. Idizayinelwe ukuhlola ubungozi obuvumela ukuhlaselwa kwesigaba se-Rowhammer ukuze kulungiswe okuqukethwe kwe-RAM. Ikhodi yekhithi yamathuluzi ibhalwe ngo-C++ futhi isatshalaliswa ngaphansi kwelayisensi ye-MIT. Ukwenza ukuhlola kube lula, kwakhiwe ukusatshalaliswa okubukhoma osekulungele ukusetshenziswa (1 GB), okuvumela ukuhlola ngokuqalisa ku-USB flash drive, kanye nesithombe sesitsha se-Docker.
Le phrojekthi ihlose ukunxenxa abasebenzisi ukuthi babambe iqhaza ocwaningweni lokuqoqa izibalo zezinga ubungozi besigaba se-Rowhammer obuzibonakalisa ngayo kumasistimu ekukhiqizeni. Imiphumela yokuhlolwa ingathunyelwa kusukela ekusabalaliseni okulandiwe noma ingezwe mathupha kuwebhusayithi yocwaningo.
Indlela yokuhlasela ye-Rowhammer yahlongozwa eminyakeni engu-10 edlule, okwenza umdlalo wekati negundane phakathi kwabacwaningi bezokuphepha nabakhiqizi bezingxenyekazi zekhompuyutha: abakhiqizi be-memory chip bazame ukuvimba ukuba sengozini, kuyilapho abacwaningi bathola izindlela ezintsha zokuyidlula. Ngokungeziwe kuma-DDR3 chips ezinhlelweni ze-Intel x86, kuhlonzwe izindlela zokuhlasela zama-DDR4 kanye ne-DDR5 chips, amasistimu ane-AMD ne-ARM processors, kanye nezindlela zokudlula ukulungiswa kwamaphutha e-ECC, ukuhlaselwa kwenethiwekhi, nokuhlaselwa kusetshenziswa i-JavaScript esipheqululini.
Ukuhlasela kwe-RowHammer konakalisa okuqukethwe kwezingcezu ngazinye kumemori ye-DRAM ngokufunda idatha ngomjikelezo kumaseli enkumbulo aseduze. Njengoba inkumbulo ye-DRAM iwuxhaxha lwamaseli anezinhlangothi ezimbili, ngalinye lihlanganisa i-capacitor ne-transistor, ngokuqhubekayo ukufunda indawo yenkumbulo efanayo kubangela ukuguquguquka kwe-voltage nokudidayo, okubangela ukulahlekelwa kweshaji encane kumaseli aseduze. Uma ukuqina kokufunda kuphezulu, iseli eliseduze lingalahlekelwa inani elibalulekile lenkokhiso, futhi umjikelezo wokuvuselela olandelayo ngeke ukwazi ukulibuyisela esimweni salo sangempela, okuholela ekushintsheni kwenani ledatha egcinwe kuseli. Ukuze kuvikelwe ku-RowHammer, abakhiqizi bama-chip bangeze indlela ye-TRR (Target Row Refresh), evimba ukonakala kwamaseli ezimeni ezithile kodwa engavikeli kuzo zonke izimo zokuhlasela ezingaba khona.
Source: opennet.ru
