I-Microsoft ngokubambisana ne-Intel, i-Qualcomm ne-AMD amasistimu eselula anokuvikelwa kwehadiwe ekuhlaselweni nge-firmware. Le nkampani yaphoqeleka ukuthi yakhe amapulatifomu ekhompyutha anjalo ngokwanda kwenani lokuhlaselwa kwabasebenzisi ababizwa ngokuthi “abaduni bezigqoko ezimhlophe” - amaqembu ochwepheshe bokugebenga abangaphansi kwezinhlangano zikahulumeni. Ikakhulukazi, ochwepheshe bezokuphepha be-ESET babeka izenzo ezinjalo eqenjini labaduni baseRussia i-APT28 (Fancy Bear). Iqembu le-APT28 kusolwa ukuthi lihlole isofthiwe esebenzisa ikhodi enonya ngenkathi ilayisha i-firmware evela ku-BIOS.
Ndawonye, ochwepheshe be-Microsoft cybersecurity nabathuthukisi beprosesa bethule isisombululo se-silicon ngesimo sempande yehadiwe yokwethenjwa. Inkampani yabiza ama-PC anjalo Secured-core PC (I-PC enomgogodla ovikelekile). Njengamanje, ama-PC avikelekile ahlanganisa inani lamakhompyutha aphathekayo avela kwa-Dell, i-Lenovo ne-Panasonic kanye nethebhulethi ye-Microsoft Surface Pro X Lawa kanye nama-PC azayo anomongo ovikelekile kufanele anikeze abasebenzisi ukuzethemba okuphelele kokuthi zonke izibalo zizothenjwa futhi ngeke ziholele ku-PC. idatha compromise .
Kuze kube manje, inkinga ngama-PC aqinile ukuthi i-microcode ye-firmware idalwe ibhodi lomama kanye nama-OEMs wesistimu. Eqinisweni, bekuyisixhumanisi esibuthakathaka kunawo wonke e-Microsoft's supply chain. Ikhonsoli yokudlala ye-Xbox, ngokwesibonelo, ibisebenza njengenkundla evikelekile iminyaka eminingi, njengoba ukuphepha kwenkundla kuwo wonke amazinga - kusuka ku-Hardware kuya kwisoftware - kugadwa yiMicrosoft uqobo. Lokhu bekungenzeki nge-PC kuze kube manje.
I-Microsoft yenza isinqumo esilula sokususa i-firmware ohlwini lokubala ngesikhathi sokuqinisekiswa kokuqala kwamandla ommeli. Ngokunembayo, bakhiphe inqubo yokuqinisekisa kumprosesa kanye ne-chip ekhethekile. Lokhu kubonakala kusebenzisa ukhiye wehadiwe obhalelwe iphrosesa ngesikhathi sokukhiqiza. Lapho i-firmware ilayishwa ku-PC, iphrosesa iyayihlola ukuze ivikeleke nokuthi ingathenjwa yini. Uma iphrosesa ingazange ivimbele i-firmware ekulayisheni (iyamukele njengethembekile), ukulawula i-PC kudluliselwa ohlelweni lokusebenza. Uhlelo luqala ukucabangela isiteji esithembekile, futhi kuphela lapho, ngenqubo ye-Windows Hello, ivumela umsebenzisi ukuthi ayifinyelele, futhi anikeze ukungena okuphephile, kodwa ezingeni eliphezulu kakhulu.
Ngokungeziwe kumcubungula, i-chip ye-System Guard Secure Launch nesilayishi sesistimu yokusebenza zihilelekile ekuvikeleni izingxenyekazi zekhompuyutha zempande yokwethenjwa (kanye nobuqotho be-firmware). Le nqubo ihlanganisa nobuchwepheshe be-virtualization, obuhlukanisa inkumbulo ohlelweni lokusebenza ukuvimbela ukuhlaselwa kwe-OS kernel nezinhlelo zokusebenza. Konke lokhu kuyinkimbinkimbi kuhloswe ukuvikela, okokuqala, umsebenzisi wenkampani, kodwa ngokushesha noma kamuva into efanayo izovela kuma-PC wabathengi.
Source: 3dnews.ru