BrutePrint sabuwar hanyar kai hari ce wacce ke yin amfani da lahani a cikin hanyar tantance sawun yatsa.
Si kun yi tunanin na'urar ku ta hannu tana da tsaro 100%. ta hanyar aiwatar da kowane matakan kariya da yake ba ku, bari in gaya muku hakan kun yi kuskure kwata-kwata kuma a yanayin Android al'amura suna kara tabarbarewa.
Kuma wannan ne ga Android, akwai kwari daban-daban a duk sigogin sa wanda ba dama a daidaita kulle allon, ɗaya daga cikin mafi kyawun sananne a lokacin da ya isa ya yi amfani da menu saitin kuma sauran tarihi ne.
Wata hanyar da ta dauki hankalina sosai ita ce, na iya ketare PIN code na kariya daga SIM, wanda da shi ya isa a canza SIM zuwa wanda ke da lambar PUK, bayan haka kawai kuskure ne sanya PIN 3. Lambar PIN tana ci gaba ta shigar da lambar PUK na katin kuma bayan haka, za a zaɓi sabon PIN kuma wayar ta atomatik tana nuna allon gida.
Gaskiyar bada wasu misalan wannan shine kwanan nan an saki labarai Bayan haka, ƙungiyar masu bincike daga Tencent da Jami'ar Zhejiang ya bullo da wata dabarar kai hari mai suna "BrutePrint" que na iya ƙetare hanyoyin kariyar sawun yatsa na Android.
Game da BrutePrint
A cikin yanayin al'ada, zaɓin hoton yatsa yana da matsala da iyaka a cikin adadin yunƙurin: bayan yunƙurin buɗewa da yawa sun gaza, na'urar tana dakatar da yunƙurin tabbatar da yanayin halitta ko ci gaba don neman kalmar sirri. Hanyar harin da aka tsara yana ba da damar tsara zagayowar zaɓe mara iyaka da mara iyaka.
Harin za ku iya amfani da ɓarna biyu marasa lahani a ciki SFA (Tabbatar buguwar yatsan wayar hannu), haɗe tare da rashin isasshen kariyar ka'idar SPI.
- Na farko yanayin rauni (CAMF, Soke-Bayan-Wasan-Gasar) yana haifar da gaskiyar cewa idan an aika da kuɗin da ba daidai ba daga bayanan sawun yatsa, an sake kunna tabbatarwa a matakin ƙarshe ba tare da yin rikodin ƙoƙarin da bai yi nasara ba, amma tare da yuwuwar tantance sakamakon.
- Na biyu yanayin rauni (KUSKURE, Match-Bayan-Kulle) yana ba da damar amfani da tashoshi na ɓangare na uku don tantance sakamakon tabbatarwa idan tsarin tantancewar kwayoyin halitta ya canza zuwa yanayin kulle wucin gadi bayan wasu yunƙurin gazawar.
Wadannan rauni ana iya haɗa su ta hanyar haɗa allo na musamman tsakanin firikwensin yatsa da guntu TEE (Amintacce Muhalli na Kisa). Masu binciken sun gano wani aibi a cikin tsarin kare bayanan da ake yadawa ta hanyar bas din SPI (Serial Peripheral Interface) bas, wanda ya ba da damar shigar da tashar watsa bayanai tsakanin firikwensin da TEE, da kuma tsara tsangwama na hotunan yatsa. dauka da maye gurbinsu da bayanan ku.
Baya ga tsara zaɓin, haɗi ta hanyar SPI yana ba da damar tantancewa ta amfani da samuwan hoton sawun wanda aka azabtar ba tare da ƙirƙirar shimfidar su don firikwensin ba.
Bayan an cire hani kan adadin yunƙurin. an yi amfani da hanyar ƙamus don zaɓi, dangane da amfani da tarin hotunan yatsa da aka yi a bainar jama'a sakamakon zub da jini, alal misali, bayanan tantance bayanan halittu Antheus Tecnologia da BioStar, wadanda aka yi la'akari da su a lokaci guda.
Don haɓaka ingantaccen aiki tare da hotunan yatsa daban-daban da haɓaka yuwuwar ganowar ƙarya (FAR, ƙimar karɓar ƙarya), ana amfani da hanyar sadarwa ta jijiyoyi waɗanda ke samar da rafin bayanai guda ɗaya tare da hotunan yatsa a cikin tsari wanda ya dace da tsarin firikwensin (kwaikwaiyo wanda An duba bayanan ta hanyar firikwensin asali).
Tasirin harin An nuna shi don na'urorin Android 10 daga masana'antun daban-daban (Samsung, Xiaomi, OnePlus, Vivo, OPPO, Huawei), wanda ya ɗauki mintuna 40 zuwa awanni 36 don zaɓar hoton yatsa don buɗewa.
Harin yana buƙatar samun damar shiga na'urar ta zahiri da haɗin kayan aiki na musamman ga hukumar, wanda aka kiyasta kimanin dala 15 don kera. Misali, ana iya amfani da hanyar don buše wayoyi da aka kama, ko sata, ko batattu.
Finalmente idan kuna sha'awar ƙarin sani game da shi, zaka iya duba bayanan A cikin mahaɗin mai zuwa.