[umbhalo / Ubunjineli be-LED Xuchao Peng] 2015 kutshanje ibanjelwe eLas Vegas \u0026 middot; Umnqwazi oMnyama (BlackHat), abaphandi bakhupha iphepha. Iphepha labonisa ukuba isiphene kwi-protocol ye-ZigBee, ukukhanya kwebala le-LED i-hacker inokulimaza inethiwekhi ye-ZigBee, ukuze ufumane ulawulo lwazo zonke izixhobo ezixhunyiwe ngaphakathi kwenethiwekhi. kwizitshixo zenethiwekhi imfihlo. Kwaye, izibane zesitediyamu ezivela kwisivamvo sobushushu sebhalbhu ehlakaniphile kunye nesitshixo socango ziye zawuvavanya umboniso wethu, abathengisi bezi zixhobo ukubeka kuphela inani elincinane leemfuno zokuqinisekisa, azikho ezinye iinketho zokuphucula umgangatho wokhuseleko, ngaloo ndlela ukunika hacker inikeza lula kakhulu Great. Abaphandi bongeza babhala. Ukukhanya kwamandla okukhokelela kwisikhukula kuxelwe ukuba isiphene sibandakanya iintlobo ngeentlobo zezixhobo, i-hacker inokusebenzisa izixhobo zeprotocol yeZigBee, ezikrelekrele zihlasela ikhaya lakho, zikhululekile ukulawula ukutshixa kwenethiwekhi yakho, iinkqubo ze-alam, kwaye ziyakwazi. ukutshintsha iiglowubhu zakho. Kangangexesha elithile yabangela inkxalabo ebanzi kwishishini. i-backpfrontp ekhoyo, i-ZigBee (i-Zigbee protocol) esekelwe kumgangatho we-IEEE802.15.4, i-1000W ye-LED yezikhukhula zokukhanya njengexabiso eliphantsi, amandla aphantsi, iteknoloji yonxibelelwano yenethiwekhi engenazintambo, esele ikhona ngokubanzi kwisibane, njenge-smart, Izitshixo zocango ezikrelekrele, izivamvo zokushukuma, izivamvo zobushushu kunye nezinye izixhobo zonxibelelwano ezinkulu ezisakhulayo, kwaye inobunini obuphezulu. Ngoko ke, abaphandi bathi into yokuba, njengenkomfa ye-Black Hat, iya kukhokelela kwiimveliso zezobukrelekrele zokhuseleko, Ubunjineli be-LED buqhube uphando lwayo. kwinqanaba leprotocol, ukukhanya kwetonela ye-LED imeko ayinayo imvelaphi yobugcisa kunye nezitshixo zogunyaziso lothungelwano lwangaphakathi kunzima ukuhlasela. Shun Zhou ubuchwepheshe iimveliso umlawuli Jiang Hongfei ukumelwa. i-backpfrontp Ngokutsho kwe-Jiang intshayelelo, i-Zigbee i-wireless protocol yenye ye-teknoloji ekhuselekileyo ye-ZigBee protocol, ayikabonakali kunye ne-world break precedent. Encryption System), rigor 12x ikhadi lebhanki iteknoloji ufihlo, kodwa, Z-stack ukunika inkxaso Zigbee olubanzi, CC2530 hardware inkxaso 128bit AES algorithm ufihlo kwi stack protocol ukwenzela ukuphepha ukuphazamiseka kwezixhobo ezifanayo, kunye nezinye izixhobo ukuthintela eavesdropping. . Ngokucacileyo, i-AES yi-algorithm entsha yokufihla ingasetyenziselwa ukukhusela idatha ye-elektroniki, esebenzisa i-iterative, i-symmetric key cryptographic packet, kunye (16 bytes) iipakethi zokufihla kunye nokufihla idatha 128. Isebenzisa isakhiwo se-loop kulo mjikelo ukufuduswa ngokuphindaphindiweyo (iimvume) kunye nokutshintshwa (ukutshintshwa) kwedatha yegalelo, ukwenzela ukuba kuqinisekiswe ukhuseleko lwenkqubo. Jiang Hongfei ukumelwa. i-backpfrontp ngezantsi Ubunjineli be-LED yebala ukukhanya kwakhona kwashwankathela iZigbee iindlela ezintathu zokhuseleko, ukwenzela ukuphucula ukhuseleko lwedatha: i-backpfrontp 1), isakhiwo sangaphakathi sokhuseleko; iprotocol ye-backpfrontp yeZigBee ukuze ube nomsebenzi womnatha okhuselekileyo, zonke izixhobo kufuneka zenziwe izibuko Iflegi yokhuseleko lwangaphambili yenziwe, cwangcisa igama eligqithisiweyo elingagqibekanga, igama eligqithisiweyo elingagqibekanga linokuqwalaselwa kwangaphambili kwisixhobo ngasinye kumsebenzi womnatha okanye iqwalaselwe kuphela kumnxibelelanisi, kwaye emva koko isasazwe kuzo zonke izixhobo ukuba umsebenzi womnatha. Qaphela ukuba, kwiimeko ezizayo, igama eliyimfihlo liya kuhanjiswa kuye ngamnye ukuba ajoyine izixhobo zenethiwekhi. Ke, joyina inethiwekhi ngexesha lomzuzu wobuthathaka uba, kodwa ithande ukugqityezelwa ngaphakathi kwee-milliseconds ezilishumi. backpfrontp 2), ulawulo olungqongqo lwenethiwekhi yofikelelo;Kuthungelwano olukhuselekileyo, xa isixhobo sijoyina inethiwekhi siya kuxelelwa ukuba iziko lokuthembela. Iziko letyala livumeleke ukuba lihlale kwisixhobo sothungelwano okanye ukufikelela kwinethiwekhi livinjwa eli lungelo lokukhetha isixhobo, ibala lemidlalo elikhokelwayo liziko lentembeko linokugqiba ukuba isixhobo singene kuthungelwano ngendlela esengqiqweni, enye yeziko leTrasti kuphela. isixhobo esinye ngexesha elifutshane kakhulu lefestile ukujoyina umsebenzi womnatha, apho umsebenzisi angenako ukugqitha inkqubo yelayisensi; i-backpfrontp 3), ukhuseleko lwedatha yesicelo; Iziko lokuthembela linokuhlaziya igama lokugqitha lenethiwekhi ngokwesigqibo sabo. Abaphuhlisi besicelo sokuguqula umgaqo-nkqubo wokuhlaziywa kwephasiwedi yenethiwekhi, iZiko leTrust elingagqibekanga lingasetyenziselwa ukucacisa umgaqo-nkqubo ngokuhambelana nokuphunyezwa kwabasebenzi bophuhliso, isicwangciso siya kuhlaziywa rhoqo ngokuhambelana nemijikelo yakho yephasiwedi yenethiwekhi. i-backpbackpfrontp Ukongeza, uninzi lwabavelisi basekhaya besivumelwano sobuchwephesha beZigbee, njengemillet, izibane zomthambo Lenovo, OU njalo njalo, ezisekelwe kwisivumelwano esilungisiweyo ngokwesiseko sesivumelwano somdibaniso, ukuba babe yiprothokholi yabo yobunini, ngokunjalo ezinye iinkqubo zeZigbee azisebenziseki. UJiang Hongfei ukhankanyiwe, ngokusekelwe kwezi ngqwalasela zingentla, ukholelwa ukuba abahlaseli bafuna ukungena kwinkqubo yobunzima inkulu kakhulu. Inyani ye-backpfrontp, kubahlaseli abachubekileyo abachwepheshile, kwaye mhlawumbi kunye nohlaselo lwezixhobo zasekhaya ezilumkileyo, kodwa kumsebenzisi oqhelekileyo, le nto ayinakwenzeka. Ngaphezu koko, ukuchitha umgudu ongaka, kuthetha ubuxoki? Ke kuMnqwazi oMnyama uqhume umngcipheko wokhuseleko weZigbee, siphumla kancinci, senze ngcono iimveliso zokukhanyisa ezikrelekrele! Ugcino
Ukudubula kweZigBee, 'uMngcipheko woKhuseleko' UkuKhanya okuLungileyo ukuya 'kwisiphelo esifileyo'?
2023-11-28