Iqembu abacwaningi baseGraz University of Technology (I-Austria), phambilini eyaziwa ngokwakha izindlela zokuhlasela ukuze MDS, NetSpectre, Throwhammer futhi ZombieLoad, kwaziwe muva nje izindaba zokuthi bebelokhu bethuthukisa indlela entsha yokuhlasela yesiteshi eseceleni, eyenziwe ngama-codenamed "IPLATYUSI".
Ukuhlasela ivumela ukwakhiwa kabusha kwedatha ebaliwe ngokususelwa kulwazi olutholakele ngumsebenzisi ongenalutho ngokusebenzisa isikhombimsebenzisi sokuqapha amandla se-RAPL esinikezwe kuma-processor anamuhla e-Intel (CVE-2020-8694, CVE-2020-8695) kanye ne-AMD (CVE-2020-12912).
Mayelana ne-PLATYPUS
Abaphenyi bakwazi ukukhipha ukukhishwa kwe-Intel SGX enclave kukhiye wangasese we-RSA isetshenziselwa ukubethela kusetshenziswa umtapo wezincwadi we-TLS mbed, kanye nokhiye be-AES abasetshenziselwa ukubethela kwe-AES-NI ezingeni le-Linux kernel.
Futhi, kukhombisa ukuthi ukuhlasela kungasetshenziswa ukwedlula izindlela zokuvikela nokunquma imingcele yekheli lokuhlelwa kwamakheli (KASLR) ngenkathi kuxhashazwa ubungozi obuhlukahlukene.
Ukuhlasela kusekelwe ekushintshashintsheni kwamandla we-CPU lapho wenza imiyalo ethile yeprosesa, ucubungula ama-opharetha ahlukile, futhi ubuyisa idatha kwimemori, okuvumela ukwahlulela ubunjalo bedatha elayishiwe. Ngokungafani nezindlela ezifanayo zokuhlasela ezakhiwe ngaphambili ezihlaziya ukwehla kwamandla kagesi, I-PLATYPUS ayidingi ukufinyelela ngokomzimba kumishini nokuxhumeka kwe-oscilloscope, kodwa ivumela ukusebenzisa i-RAPL interface (Running Average Power Limit) iyatholakala kuma-processor we-Intel ne-AMD, kuqala ngeSandy Bridge kanye nemindeni yeZen.
Sisebenzisa ithuba lokungena ngaphandle kokuthola ilungelo ku-Intel RAPL interface ngokuveza ukusetshenziswa kwamandla weprosesa ukufaka idatha nokukhipha okhiye be-cryptographic.
Inkinga ihlanganiswa neqiniso lokuthi uhlaka lwe-powercap olwengezwe ku-kernel ye-Linux lunikeza ukufinyelela kwamabala we-RAPL kubasebenzisi abangenalungelo, okwenza kube lula ukulandelela ukusetshenziswa kwe-CPU ne-DRAM. Ku-Windows naku-macOS, ukuhlaselwa kudinga ukufakwa kwephakeji ye-Intel Power Gadget (leli phakethe lidinga ukufinyelela okulungelo).
Ukuhlaselwa kuphazanyiswa ukulungiswa kokulinganisa okuphansi kakhulu, okungenakuqhathaniswa nokunemba okutholwe nge-oscilloscope. Ikakhulu, i-RAPL ingathatha ukufundwa ngama-kilohertz angama-20 namanani alinganisiwe, kanti i-oscilloscope ingathatha izilinganiso kuma-gigahertz amaningana. Kodwa-ke, ukunemba kwe-RAPL kuvele kwanele ukukhipha imininingwane ekuhambeni kwemiyalo ejwayelekile mayelana nokwenziwa kwemiyalo ephindaphindwe ngemininingwane ehlukile noma ama-opharetha.
Izinkampani I-Intel ne-AMD bakhiphe ikhodi yokushayela ebuyekeziwe yeLinux, lapho ukufinyelela ku-RAPL kukhawulelwe kumsebenzisi oyimpande. Abathuthukisi beXen hypervisor nabo bakhiphe isisombululo esivimba ukufinyelela ku-RAPL kusuka kumasistimu ezivakashi.
Ngesikhathi esifanayo, imikhawulo yokufinyelela ayenele ukuvimba ukuhlaselwa kwama-enclaves ye-Intel SGX engenziwa ngabahlaseli asebethole ilungelo lokungena ohlelweni.
Ukuvikela kulokhu kuhlaselwa, minauNtel ukhiphe nokuvuselelwa kwe-microcode, ebuye ilungise okunye ukuba sengozini okungaholela ekwephulweni kwedatha. Sekukonke, isibuyekezo sika-Intel sikaNovemba silungise ukukhubazeka okungama-95 kwimikhiqizo eyahlukahlukene.
Ububanzi obubanzi bokuthi Amaprosesa we-Intel desktop, amaselula namaseva, ukuqala ngomndeni weSandy Bridge, ingaphansi kokuhlaselwa.
Kuzinhlelo ezenzelwe i-AMD CPU, isikhombimsebenzisi se-RAPL besilokhu sikhona kusukela emndenini weZen, kepha abashayeli be-Linux kernel bavumela kuphela ukufinyelela okungavunyelwe kwizibalo ze-AMD Rome CPU.
Lokhu kuhlasela kungasetshenziswa kuma-processor we-ARM, anezinhlelo zawo zokuqoqa amamethrikhi ekushintsheni kwamandla, futhi izilawuli ze-chip zeMarvell ne-Ampere zinikeza ukufinyelela okungavunyelwe izinzwa, kepha ukuhlaziywa okuningiliziwe kokungenzeka kokuqalisa ukuhlaselwa kwalawo madivayisi .
Ekugcineni, uma unentshisekelo yokwazi kabanzi ngakho mayelana nohlobo olusha lokuhlasela «PLATYPUS», ungabheka imininingwane Kulesi sixhumanisi esilandelayo.