
ã³ã³ãã¥ãŒã¿ãŒã»ãã¥ãªãã£ã®äž»ãªåŸå
ãµã€ããŒå µåšã®äœ¿çšã®é¡èãªäŸã®1ã€ã¯ã5æã«æ¿åºæ©é¢ãããŸããŸãªç 究æ©é¢ãããã³å€§èŠæš¡ãªåœéäŒæ¥ããæ å ±ãç©æ¥µçã«æœåºããŠããRed Octoberã¹ãã€ãããã¯ãŒã¯ã§ãã ãããã®ãªããžã§ã¯ãã®æ·±å»ãªã»ãã¥ãªãã£ã¯ãæªæã®ããã·ã¹ãã ã®åäœãåæ¢ããŸããã§ããã ããã¯ã»ãã®æ°ã¶æåã«å ¬éãããŸããããããã¯ããããã³ã³ãã¥ãŒã¿ãŒã·ã¹ãã ã®åäœã«ãããå¹²æžã®è åšã®å¢å€§ã瀺ããŠããŸãã
ã³ã³ãã¥ãŒã¿ãŒã·ã¹ãã å ã§å®å®ããæ€åºäžèœãªååšã確ä¿ããããã«ãæªæã®ãããœãããŠã§ã¢ïŒãã«ãŠã§ã¢ïŒã¯ã«ãŒããããã¡ã«ããºã ãšåŒã°ããç¹å¥ãªã¡ã«ããºã ã䜿çšããŸãã ãã®çµæããã«ãŠã§ã¢ã¯ãŠãŒã¶ãŒãšä¿è·è£ 眮ã®äž¡æ¹ããèŠããªããªããŸãã
OSéçºè ã¯äžæ£ãªãœãããŠã§ã¢ã®é èœã«çµ¶å¯Ÿã«æµæããå¿ èŠãããããã«æãããŸãããWindowsã®æ°ããããŒãžã§ã³ãç»å ŽããŠãç¶æ³ã¯å€ãããŸããã§ããã Eightã¯å身ããããã§ã«ããç¥ãããŠããä¿è·ã¡ã«ããºã ïŒUACãASLRãDEPãPatchGuardããã©ã€ããŒã®ããžã¿ã«çœ²åïŒãæ¡çšããŸããããåé¿çããããŸãã ãŸããããã€ãã®æ°ãããã®ãå°å ¥ããŸãã-ã»ãã¥ã¢ããŒããSMEPãããã³ELAMããã ããã»ãã¥ãªãã£ã®ã¬ãã«ã¯å€§å¹ ã«ã¯åäžããŸããã§ããã Stoned LiteããŒããããPeter Kleissnerããã³UEFIããŒããããAndrea Allieviã®ãã¢ãµã³ãã«ããæãããªããã«ã ãŸããWindows 8ã§SMEPãã¯ãããžãŒããã€ãã¹ããå¯èœæ§ã«ã€ããŠã¯ãPositive Technologiesã®A. Shishkinããã§ã«æžããŠããŸãã
æ å ±
British National Audit OfficeïŒNAOïŒã®æè¿ã®ã¬ããŒãã«ãããšãè±åœã ãã§å¹Žé180åãã270åãã³ãã®ã³ã¹ããããããµã€ããŒç¯çœªã®æ°ãå¢å ããŠããŸãïŒ bit.ly/14O9xy5 ïŒã
äžèšã«åºã¥ããŠãWindowsã®ææ°ããŒãžã§ã³ã§ã¯ããã«ãŠã§ã¢ã«å¯Ÿæããããã®é©æ°çãªãã®ã¯äœãå°å ¥ãããŠããããçŸåšãã«ãŒããããéçºè ã®ç掻ãå€§å¹ ã«è€éã«ãããã¡ããšããã¡ã«ããºã ã¯ãªããšçµè«ä»ããããšãã§ããŸãã
ã·ã¹ãã ã®é èœã¡ã«ããºã
ãã«ãŠã§ã¢ãé ãã«ã¯ãããŸããŸãªæ¹æ³ã䜿çšã§ããŸãã é èœã¡ã«ããºã ã®åé¡ã¯ããŸãã¹ãã«ã¹ãã«ãŠã§ã¢åé¡ã®çŽ¹ä»ã§Joanna Rutkowskaã«ãã£ãŠå®è¡ãããŸããã 圌女ã«ææ¡ãããåé¡ã¯ã次ã®ããã«æ¡åŒµã§ããŸãïŒå³1ãåç §ïŒã

ã¹ãã¬ãã°ã©ãã£ãã¯ã¡ã«ããºã ã¯ãããšãã°ãååãšã·ã¹ãã ãã¡ã€ã«ã®ååã®é¡äŒŒæ§ã«ãã£ãŠãæ£åœãªãã®ãšããŠåœè£ ããããšã«ãããåã蟌ã¿ãªããžã§ã¯ãã®çã®ç®çãé ããŸãã ãã®çµæãæªæã®ãããã¡ã€ã«ã¯ãŠãŒã¶ãŒã«è¡šç€ºãããŸããããŠãŒã¶ãŒã«çãããããšã¯ãããŸããã ã¹ãã¬ãã°ã©ãã£ã®é èœã®äŸãšããŠã¯ãä¿¡é Œã§ããäŒæ¥èšŒææžã䜿çšããŠæªæã®ãããã©ã€ããŒã«çœ²åããããšããããŸãã Realtekããã³JMicronã®æå¹ãªèšŒææžã«ãããStuxnetã¯ãŒã ã¯é·ãéæ€åºããããFlameã¯ãŒã ã®ã³ã³ããŒãã³ãã¯Microsoftèªèº«ã«ãã£ãŠããžã¿ã«çœ²åãããŠããŸããã
ã¹ãã¬ãã°ã©ãã£ã¡ã«ããºã ã¯ææ Œããç¹æš©ãå¿ èŠãšãããWindows OSã®ããŸããŸãªããŒãžã§ã³ã«è»¢éãããŸãã ãã ããæè¡çãªé èœã¡ã«ããºã ããªãããããã®ãããªãã«ãŠã§ã¢ã¯ç°¡åã«æ€åºããã³åé€ã§ããŸãã 倧ããªå±éºã¯ãã¹ãã¬ãã°ã©ãã£ãšä»ã®é èœã¡ã«ããºã ã®çµã¿åããã§ãã
2çªç®ã®ã°ã«ãŒãã«ã¯é èœã®æè¡çã¡ã«ããºã ãå«ãŸããŠããããã®çµæãé ããããªããžã§ã¯ãã«é¢ããæ å ±ã¯æ€åºããŒã«ã«ã¢ã¯ã»ã¹ã§ããªããªããŸãïŒããªããžã§ã¯ãã¯èŠããªããã€ãŸãååšããªããïŒã ãããã®ã¡ã«ããºã ã¯ãOSã®ãå éšããšãå€éšãã§åäœããã«ãŒããããã¡ã«ããºã ã«åããããšãã§ããŸãã
ãOSå ãã®ã«ãŒããããã¡ã«ããºã ã®å Žåããªããžã§ã¯ãã¯ããã»ã¹ããã©ã€ããŒããã£ã¹ã¯äžã®ãã¡ã€ã«ããããã¯ãŒã¯ããŒããã¬ãžã¹ããªããŒãªã©ã§ãã ãã®äœæ¥ã®ããã«ãã«ãŒããããã¡ã«ããºã ã¯ããŠãŒã¶ãŒãšã·ã¹ãã ã®äž¡æ¹ã®ã¢ãã¬ã¹ç©ºéã§å®è¡ãã¹ãšã¡ã¢ãªæ§é ã®äž¡æ¹ãå€æŽã§ããŸãã
å®è¡ãã¹ãå€æŽããããã«ããã«ãŠã§ã¢ã¯éåžžã®ãã³ãã©ãŒã®æ©èœãã€ã³ã¿ãŒã»ããããå¶åŸ¡ãæªæã®ãããã³ãã©ãŒã«è»¢éããŸããããã«ãããè¿ãããçµæã«çãçµã£ãå€æŽãè¡ãããŸãã èšèŒãããŠããé èœã¡ã«ããºã ãæ€åºããæ¹æ³ã¯ããã§ã«ãžã£ãŒãã«ã®ããŒãžã§åãäžããããŠããŸãã
OSã®ãå éšãã§åäœããã«ãŒããããã¡ã«ããºã ã®2çªç®ã®ãµãã°ã«ãŒãã¯ãæ°ãããã³ãã©ãŒãã·ã¹ãã ã«è¿œå ããŸããããç¹å¥ãªæ¹æ³ã§ãé衚瀺ãªããžã§ã¯ãã«é¢ããæ å ±ãæ ŒçŽããã¡ã¢ãªæ§é ãå€æŽããŸãã ã·ã¹ãã ã¢ãã¬ã¹ç©ºéã«é 眮ãããã«ãŒããããã«é¢ä¿ãããã®ãããªæ§é ã®äŸã¯ã KRPCBã ETHREADã EPROCESSãMODULE_ENTRYã_DRIVER_OBJECTãããã³SERVICES.EXEããã»ã¹ã®ãŠãŒã¶ãŒç©ºéã«ããç»é²æžã¿ãã©ã€ããŒãšãµãŒãã¹ã®ããŒã¿ããŒã¹ã§ãã
ãOSå€ãã®ã«ãŒããããã¡ã«ããºã ã¯ãç¬èªã®ã€ã³ã¹ããŒã«ããŸãã¯ç¹å®ã®ããã»ããµã¢ãŒããŸãã¯è¿œå ã®ããŒããŠã§ã¢ã§ã®æ¢åã®ã€ãã³ããã³ãã©ã®å€æŽã«åºã¥ããŠããŸãã ãããã®ã¡ã«ããºã ãæ©èœããã«ã¯ãå¿ èŠãªãã¯ãããžãŒããµããŒããããããã»ãããå¿ èŠã«ãªãããšããããããŸãã Active Management TechnologyãšV-PROã䜿çšããŠãããŒããŠã§ã¢ä»®æ³åã¢ãŒããã·ã¹ãã 管çã¢ãŒããããã³ã³ãŒãã«åºã¥ããŠæ§ç¯ãããã«ãŒããããã¡ã«ããºã ãåºå¥ã§ããŸãã çããµãŒã¯ã«ã§åºãç¥ãããŠããR_T_Tã®èè ã§ããFlint Lawlessnessã¯ã瀺ããããã¯ãããžãŒã ãã§ãªããããã»ããµãŒã®ãã€ã¯ãã³ãŒãæŽæ°ã¡ã«ããºã ïŒ bit.ly/VRQD6Oããã³bit.ly/104EsRB ïŒããã®æ å ±ã»ãã¥ãªãã£ãžã®å¯èœæ§ãšè åšã«ã€ããŠã説æããŠããŸãã
ã«ãŒãããããé ãããã®èå³æ·±ããã¯ããã¯
2012幎ã®ZeroNightã«ã³ãã¡ã¬ã³ã¹ã§ã¯ãDãOleksyukïŒå¥åCr4shïŒã®äœåãçºè¡šããããã¡ã€ã«ã§ã¯ãªããDifferentiated System Description TableïŒDSDTïŒã䜿çšããŠã¬ãžã¹ããªã«ã«ãŒãããããé 眮ããèå³æ·±ãæ¹æ³ã説æãããŸããã ãã®æ¹æ³ã®å©ç¹ã¯ãã«ãŒããããæ€åºããŒã«ããã®å¯èœæ§ãèæ ®ããŠããªãããšã§ãã
ã«ãŒãããã察ç
åè¿°ã®æªæã®ããããŒã«ã®ã»ãšãã©ã¯ãäœæ¥ã«ãã©ã€ããŒã䜿çšããŠããŸããã ãã®ç¹ã§ãé衚瀺ã®ãã©ã€ããŒã®ååšãæ€åºã§ããæãäžè¬çãªã«ãŒãããã察çããŒã«ãèŠãŠã¿ãŸãããã
Windows 8ã§ã®åäœããµããŒããã人æ°ã®ããããªãŒã©ã³ã¹ããŒã«ã®äžã§ãGmerãXueTrãPowerToolãTDSSKillerïŒKaspersky LabsïŒãåºå¥ã§ããŸãã
é衚瀺ã®ãã©ã€ããŒãæ€åºãããšãã芳ç¹ãããGmerãXueTrãããã³PowerToolããŒã«ã«ã¯ããã€ãæ€çŽ¢ã䜿çšããŠã¡ã¢ãªãŒå ã®ãã©ã€ããŒæ§é ã®ãã©ã°ã¡ã³ããèŠã€ããé¡äŒŒã®æäœã¢ã«ãŽãªãºã ããããŸãã ãã©ã€ããŒãæ€åºããããã®TDSSKillerããŒã«ã¯ããããã«ç°ãªããªã¹ãã䜿çšããŸãããã®ãªã¹ãã«ã¯ãæšæºã®WindowsããŒã«ã䜿çšããŠãã©ã€ããŒãããŒããããšãã«å ¥åãããæ å ±ãå«ãŸããŸãã
å¿ èŠãªæ§é ã®ãã£ãŒã«ããå€æŽãã察å¿ãããªã¹ãããããããåé€ãããšãã·ã¹ãã ãšãã«ãŠã§ã¢èªäœã®åäœãäžæããããšãªãããã©ã€ããŒããããã®ããŒã«ããé衚瀺ã«ãªããŸãã ããã«ãããåäœçšã«èæ§ã®ããã«ãŒãããã察çããããªãã¯ãã¡ã€ã³ã«ååšããªãããšã宣èšã§ããŸãã
ããŒããŠã§ã¢ããã³ãœãããŠã§ã¢ã®ã«ãŒãããã
ãœãããŠã§ã¢ããã³ããŒããŠã§ã¢ã®ã«ãŒããããã¯ãOSã®å€éšãã§åäœããŸãã ããŒããŠã§ã¢ä»®æ³åæè¡ã«åºã¥ããŠæ§ç¯ãããæãèå³æ·±ãã€ã³ã¹ã¿ã³ã¹ã ãªãã§ïŒ ãŸãããã©ã€ããŒã䜿çšããŠã€ã³ã¹ããŒã«ã§ããŸã-ããŸããŸãªOSã®éåžžã®ã¡ã«ããºã ã§ãã 第äºã«ããã®ãããªã«ãŒããããã¯ãä»ãããé«ãã¬ãã«ã®ã€ãã³ããã€ã³ã¿ãŒã»ããã§ããŸãã 第äžã«ããããã¯ããè¯ãææžåãããŠããŸãã ãããã£ãŠãããããããããç¥ãããã«ãªããŸãã
2006幎以éãIntelãšAMDã¯ãããŒããŠã§ã¢ä»®æ³åãã¯ãããžãŒããµããŒãããããã»ããµãŒã®ãªãªãŒã¹ãéå§ããŸããã ããŒããŠã§ã¢ããŒã¹ã®ä»®æ³åãã¯ãããžãŒïŒãŸãã¯ãã€ããŒãã€ã¶ãŒã®ã¿ïŒã䜿çšãããœãããŠã§ã¢ã¯ãOSãããç¹æš©ã®ããæ°ããã¢ãŒãã§åäœããŸãã ããŒããŠã§ã¢ä»®æ³åãã¯ãããžãŒã«ãããçµã¿èŸŒã¿ã®ããã€ãã®ç°ãªããã€ããŒãã€ã¶ãŒãå®è¡ã§ããŸãã
ãã€ããŒãã€ã¶ãŒãœãŒã¹-Windows x86çšãã©ã€ããŒ
ç¬èªã®ãã€ããŒãã€ã¶ãŒãäœæããæãç°¡åã§ç°¡åãªæ¹æ³ã¯ãæ¢åã®ãã€ããŒãã€ã¶ãŒã®ãããããããŒã¹ã«ããããšã§ãã ãã¬ãžã³ã«æ¥ç¶ãããŠãããã£ã¹ã¯ã«ã¯ã次ã®ãœãŒã¹ããããŸãã
- BluePillïŒããŒãžã§ã³0.11ããã³0.32ïŒã¯ãAMDã·ã¹ãã ã®ãã€ããŒãã€ã¶ãŒã®ãã¢ãµã³ãã«ã§ãããå ¬éåŸãããŒããŠã§ã¢ä»®æ³åã«ããæ å ±ã»ãã¥ãªãã£ã®è åšã«é¢ããå¹ åºãè°è«ãå§ãŸããŸããã
- vmxcpuã¯ãããã«äœ¿çšã§ããIntelããã»ããµçšã®ShãEmbletonãã€ããŒãã€ã¶ãŒã¹ã¿ãã®ãœãŒã¹ã³ãŒãã§ãã
- Invisible LaneïŒilïŒ-vmxcpuã«åºã¥ããŠäœæããããäœæè ã®é衚瀺ãã€ããŒãã€ã¶ãŒã®ãœãŒã¹ã³ãŒãã é èœã¯ãããã»ããµã®TSCã¯ããã¯ã«ãŠã³ã¿ãŒãå±éºã«ãããããšã«ãã£ãŠå®è¡ãããŸããã劥åã®éã¯1ã¯ããã¯ãµã€ã¯ã«ã®ç²ŸåºŠã§èšå®ã§ããŸãã
äžæ¹ã§ãä»®æ³ãã·ã³ã¢ãã¿ãŒãšããŠæ©èœãããã€ããŒãã€ã¶ãŒã¯ãã³ã³ãã¥ãŒã¿ãŒã®ãµãŒãã¹æ©èœãåäžãããéçšã³ã¹ããåæžããŸãã ãã®ãããã§ãç°ãªãä»®æ³ãã·ã³ã®è€æ°ã®OSã1å°ã®ã³ã³ãã¥ãŒã¿ãŒã§åæã«èµ·åã§ããŸãïŒå³2ïŒã

ãã ããäžæ¹ã§ããã€ããŒãã€ã¶ãŒãæé»çã«å°å ¥ããããšãã§ããŸãããã€ããŒãã€ã¶ãŒã¯ãæ©èœãå¶åŸ¡ãããŠããããæ å ±ã»ãã¥ãªãã£ã«å¯Ÿããè åšãšãªããœãããŠã§ã¢ããã¯ããŒã¯ã§ãã
ãããªãã¯ãã¡ã€ã³ã«ã¯ããã€ããŒãã€ã¶ãŒããŠãŒã¶ãŒã«ééçã«ã€ã³ã¹ããŒã«ãããã©ã€ããŒãšããŠå®è£ ãããBluePillãšVitriolã®2ã€ã®ãœãããŠã§ã¢ããŒã«ããããŸãã
ãã€ããŒãã€ã¶ãŒã¯ãäŒæ¥å šäœïŒKomokuãNorth Security Labsãªã©ïŒããã³åã ã®å°é家ã«ãã£ãŠçºèŠãããŸããã ãã€ã¯ããœããèªäœã§ããããã€ããŒãã€ã¶ãŒãæ€åºããããã®ã€ã³ã¿ãŒãã§ã€ã¹ãå ¬éããŠããããŠããããEAXã¬ãžã¹ã¿ã«æžã蟌ãã åŸãCPUIDåœä»€ãå®è¡ããå¿ èŠããããŸãã 次ã«ãECXã¬ãžã¹ã¿ã®31ãããã®å€ã確èªããŸãã èšå®ãããŠããå Žåãã·ã¹ãã ã«ãã€ããŒãã€ã¶ãŒãååšãããã®æ©èœã«é¢ããæ å ±ãHV_CPUID_RESULTæ§é äœã§éä¿¡ãããŸãã ãã ãããã®æ¹æ³ã¯äŸµå®³ããä¿è·ãããŠããŸããã
ãã€ããŒãã€ã¶ãŒã®æ®åçã«ãããããããããããæ€åºããããã®å®æçãªããŒã«ã¯ãªããå ¬éããããã®ã«ã¯é倧ãªæ¬ ç¹ããããŸãïŒãã€ããŒãã€ã¶ãŒãæ€åºã«å察ããå Žåã«ãã€ããŒãã€ã¶ãŒãç¹å®ã§ããªãããšãããã³å€ãã®ããŒã«ã䜿çšããŠè€è£œããããšã®äžäŸ¿ãã ã¬ããªã±ãŒã·ã§ã³ã®å©äŸ¿æ§ã¯ãæäœã®å šæéãéããŠå¿ èŠãªå€éšããŒããŠã§ã¢ã³ã³ããŒãã³ãã®æ€åºæ段ããªãããšãšç解ãããŠããŸãã
ãã€ããŒãã€ã¶ãŒãããã°ããŒã«
ãã€ããŒãã€ã¶ãŒã®ä»æ§ã«ãããvDïŒVMwareïŒãšWinDbgãªã©ã®äžè¬çãªãããã°ããŒã«ã®äœ¿çšãåžžã«èš±å¯ããããšã¯éããŸããã代ããã«ãBochsãŸãã¯AMD SimNowãšãã¥ã¬ãŒã¿ãŒã䜿çšã§ããŸãããæ§æã¯éåžžã«è€éã§ãã
䜿çšã§ãããã®ïŒ
- DbgPrintãä»ããŠãããã°ã¡ãã»ãŒãžãåºåããDbgViewã䜿çšããŠè¡šç€ºããŸãã 確ãã«ããã®ã¡ãœããã¯ããã€ããŒãã€ã¶ãŒã®ãããã°ãããããã€ããŒãã€ã¶ãŒã®æ£ããåäœãå®èšŒããããã«äœ¿çšã§ããŸãã
- ãããã°ã¡ãã»ãŒãžãCOMããŒãã«éä¿¡ããŸãã ãã®ã¡ãœããã¯BluePillã®äœæè ã«ãã£ãŠäœ¿çšããããããã®é¢æ°ã®å®è£ ããœãŒã¹ã«ä¿æããŸãã
- PTI8蚺æãã¹ããã¹ãã«ãŒããããã°ã«ãŒãPCIã¢ãã©ã€ã¶ãŒãªã©ã®ãããã°ããŒãã䜿çšããŸãã ã³ã³ãã¥ãŒã¿ãŒã®é»æºãå ¥ãããšããã®ããŒãã®LCDãã£ã¹ãã¬ã€ã«BIOS POSTã¡ãã»ãŒãžã衚瀺ãããŸãã
ããŒããŠã§ã¢ä»®æ³åãã¯ãããžãŒã䜿çšããããŸããŸãªãœãããŠã§ã¢ãåºãé åžãããŠãããããéæ³ãªãã€ããŒãã€ã¶ãŒã¯ç¹ã«å±éºã§ãããæ£åœãªãã€ããŒãã€ã¶ãŒã䜿çšããŠçµã¿èŸŒã¿ä»®æ³åã®äœ¿çšãé ããŠããŸãã ãªãŒãã³ãœãŒã¹ã§ã¯ãè€æ°ã®ãã¹ãããããã€ããŒãã€ã¶ãŒãæ€åºããæ¹æ³ã«é¢ããæ å ±ã¯ãããŸããã
ãã€ããŒãã€ã¶ãŒã®çºèŠæ¹æ³ã®æŠèŠãšåé¡
ãã€ããŒãã€ã¶ãŒã®æ€åºã®åé¡ã¯ããã§ã«äœåºŠãè°è«ãããŠããŸãã å³ å³3ã¯ããã€ããŒãã€ã¶ãŒãæ€åºããããã®ã¡ãœããã®åé¡ã瀺ããŠããŸããããã«åŸã£ãŠããã¹ãŠã®ã¡ãœãããããã¢ã¯ãã£ããšã·ã°ããã£ã«åããããŸãã

äžæçãªæ€åºæ¹æ³ã¯ãã²ã¹ãOSã®æå®ãããã€ãã³ãã®åŠçæéã«é¢ããçµ±èšãããã€ããŒãã€ã¶ãŒãããŒããããŠãããã©ããã«å€§ããäŸåãããšããäºå®ã«åºã¥ããŠããŸãããã€ããŒãã€ã¶ãŒãååšããå Žåãã€ãã³ãã®åŠçæéã¯ã¯ããã«é·ããªããŸãã ãã®æ©èœã¯ãäžåœã®ãã€ããŒãã€ã¶ãŒãçºèŠããããšãã«ä»²éR_T_Tã«ãã£ãŠäœ¿çšãããŸããïŒ xakep.ru/post/58104 ïŒã æ»æè ããã€ããŒãã€ã¶ãŒãé èœããæ段ãè¬ããŠããªãå Žåã«ã®ã¿ããã€ããŒãã€ã¶ãŒãæ¯èŒçç°¡åã«èå¥ã§ããŸãã ã¿ãŒã²ãããçµã£ãã«ãŠã³ã¿ãŒäŸµå®³ãå®è¡ããããããã€ããŒãã€ã¶ãŒãäžæçã«ã¡ã¢ãªããã¢ã³ããŒããããïŒBluePillã§äœ¿çšãããããããBlueChickenãã¯ãããžãŒïŒç¶æ³ã§ã¯ãæ¢ç¥ã®äžæçãªæ¹æ³ã§ã¯ãã€ããŒãã€ã¶ãŒãæ€åºã§ããŸããã
ãããã®æ€åºæ¹æ³ã®è©³çŽ°ãªèª¬æãšæ¯èŒåæã¯ã bit.ly/ik_volumeã«èšèŒãããŠããŸã ã ãã¹ã¯è§£é€ã€ãã³ãã®ãªã¹ãã䜿çšããäžæçãªæ€åºæ¹æ³ã«æ³šæãæããŸãã
éžæãããã¡ãœããã®å Žåãã²ã¹ãOSã®ãã®ãããªã€ãã³ãã¯ãOSãããã€ããŒãã€ã¶ãŒã«å¶åŸ¡ãåžžã«è»¢éãããåœä»€ã®å®è¡ã«ãªããŸãã ãã®ãããªåœä»€ã®1ã€ãCPUIDã§ãã åŸã§èª¬æãããã€ããŒãã€ã¶ãŒæ€åºã·ã¹ãã ã¯ããã®ç¹å®ã®æ¹æ³ã䜿çšããŸãã
åæ¹æ³ãè©äŸ¡ããããã«ããã€ããŒãã€ã¶ãŒæ€åºããŒã«ãåæããŸãããæ¯èŒçµæãè¡šã«ç€ºããŸãã 1.é ãããŠããªããã€ããŒãã€ã¶ãŒãšã¯ããã®ãµã³ãã«ã«æ€åºã«å¯Ÿããèæ§ãæäŸããã³ã³ããŒãã³ãããªãããšãæå³ããŸãã é ããããµã³ãã«ãšã¯ããã®ãµã³ãã«ã«ãã®ãããªã³ã³ããŒãã³ããååšããããšãæå³ããŸãã è¡šã®äžã 1èšå·ã+ãããã³ã-ãã¯ãããããæå®ãããç¹æ§ã®ååšïŒäžåšïŒã瀺ããŸãã

åæã®çµæã¯ããã€ããŒãã€ã¶ãŒãæ€åºããæ¢åã®æ¹æ³ã«ã¯ããã€ãã®æ¬ ç¹ãããããšã瀺ããŠããŸãã
- äžæçãªæ¹æ³ã§ã¯ã䟵害ãããã¯ããã¯ã«ãŠã³ã¿ãŒã䜿çšããããã¡ã¢ãªããäžæçã«ã¢ã³ããŒããããããå Žåã«ããã€ããŒãã€ã¶ãŒãæ€åºã§ããŸããã
- åäœã¡ãœããã¯æ°ãããã€ããŒãã€ã¶ãŒãæ€åºã§ãããæ°ããããã»ããµãŒã¢ãã«ã§ã¯æ©èœããŸããã
- ä¿¡é Œã§ããä»®æ³ãã·ã³ã¢ãã¿ãŒã«åºã¥ãã¡ãœããã¯ãäžéè æ»æã«å¯ŸããŠè匱ã§ãã
- 眲åããŒããŠã§ã¢ã¯äœ¿çšãè€è£œãäžäŸ¿ã§ããããœãããŠã§ã¢ã¯ãã€ããŒãã€ã¶ãŒã«å¯Ÿæããã«ã¯äžå®å®ã§ãã
- å ¬éãããŠãããã¹ãŠã®æ€åºæ¹æ³ãšæ段ã§ã¯ããã¹ããããè€æ°ã®ãã€ããŒãã€ã¶ãŒãæ€åºã§ããŸããã
以äžã¯ããããã®æ¬ ç¹ããªããäžæ£ãªãã€ããŒãã€ã¶ãŒãæ€åºããããã®èè ã®ææ³ã§ãã 以äžã䜿çšããŠå®è£ ã§ãããã€ããŒãã€ã¶ãŒãæ€èšãããŸãã
- ãªãã¬ãŒãã£ã³ã°ã·ã¹ãã ãã©ã€ããŒã®ã€ã³ã¹ããŒã«
- ããŒããã©ã€ãã®ãã¹ã¿ãŒããŒãã¬ã³ãŒãã®å€æŽã
- ããŒããŠã§ã¢ã®BIOSãã¡ãŒã ãŠã§ã¢ãå€æŽããŸãã
äŸµå ¥è ã«ãã£ãŠå®è£ ããããã€ããŒãã€ã¶ãŒã¯ãããã»ããµã¯ããã¯ã«ãŠã³ã¿ãŒã䟵害ããã¡ã¢ãªããäžæçã«ã¢ã³ã€ã³ã¹ããŒã«ããããšã§æ€åºãæã¡æ¶ãããã€ããŒãã€ã¶ãŒã®æ§é ãå«ãã¡ã¢ãªãã³ãã®ã³ããŒãåä¿¡ããªãããã«ããããšãèæ ®ãããŠããŸãã
ãã£ã¹ã«ããªãŒã®åææ¡ä»¶
ãã€ããŒãã€ã¶ãŒã®æ€åºã«äœ¿çšã§ããèŠå ãç¹å®ããããã«ãããŒããŠã§ã¢ä»®æ³åããµããŒãããããã»ããµãŒã®æ¯èŒåæãããã€ããŒãã€ã¶ãŒãååšããå Žåãšååšããªãå Žåã«ãã€ããŒãã€ã¶ãŒã«ãã£ãŠç¡æ¡ä»¶ã«ã€ã³ã¿ãŒã»ãããããäžé£ã®åœä»€ãå®è¡ãããšãã«å®è¡ãããŸããïŒå³4ãaããã³4ãbïŒã

ãã€ããŒãã€ã¶ãŒãååšããå Žåããã¬ãŒã¹ã®çµ¶å¯Ÿå®è¡æéãå¢å ããã ãã§ãªããåæ£ãªã©ã®å®è¡æéã®çµ±èšçç¹æ§ãå¢å ããŸãã ãã®ç¹åŸŽçãªæ©èœããææ¡ãããæ€åºææ³ã®åºç€ãšãªããŸããïŒããã§ã¯ãããã»ããµã®åäœã¢ãŒããšæ°åŠçæ£åœåã®éã®åãæ¿ãã¹ããŒã ã®è©³çŽ°ãªåæãbit.ly/10nPPlYã«ãããŸãã
æ€åºæè¡ãšãã®åæ
æ€åºææ³ã®æ¬è³ªã¯ãã«ãŒãã®ç¶ç¶æéã®çµ±èšçç¹æ§ãèšç®ããŠãããå€ãšæ¯èŒããããšã§ãã
ãã¬ãŒã¹æéã¯ã31çªç®ã®IRQLåªå 床ã¬ãã«ãäžããããã»ããµTSCã¯ããã¯ã«ãŠã³ã¿ãŒã䜿çšããŠã10åã®CPUIDåœä»€ã«ã€ããŠæž¬å®ãããŸããã å®éšã®çµæã¯ãããŸããŸãªçµ±èšçç¹æ§ãèšç®ãããã«ãŒãã®æéã®æž¬å®ããŒã¿ãå«ãããµã€ãºã1000 x 10ã®ãããªãã¯ã¹ã§ããã
è¡šã説æãããããå³2ã¯ããã€ããŒãã€ã¶ãŒã®äžåšïŒOTïŒããã³ååšïŒPRïŒã®å Žåã«ã€ããŠãç°ãªãPCã§åŸãããåæ£DÌ f ããã³4次ã¢ãŒã¡ã³ã MÌ fãªã©ã®ã€ã³ãžã±ãŒã¿ãŒã®é£ç¶çãªçµã¿åããã®ãããå€ã瀺ããŠããŸãã

è¡šã®æåã®åã2ã€ã®æ°åã¯ã調ã¹ãPCã®ããã»ããµã¢ãã«ã瀺ããŠããŸãã
- Intel Core 2 Duo E8200 with Windows 7
- Windows 7æèŒIntel Core 2 Duo E6300
- Windows Live CD XPïŒDDDïŒãæèŒããAMD Phenom X4 945ã
æåã®2å°ã®PCã¯ãäœæè ãéçºãããã€ããŒãã€ã¶ãŒïŒãã£ã¹ã¯äžã«ãããœãŒã¹ã³ãŒãïŒã䜿çšããOSãã©ã€ããŒãšããŠå®è£ ãããŸããã
äžæ£ãªãã€ããŒãã€ã¶ãŒãæ€åºããããã®ææ¡ææ³ã¯ãè¡šã«ç€ºãããã«ãäºå段éãšéçšæ®µéã®2ã€ã®æ®µéã§æ§æãããŠããŸãã 3ïŒææ³ã®è©³çŽ°ãªèª¬æïŒbit.ly/ik_volumeïŒã

ãã®ææ³ã«å¯Ÿæããã«ã¯ãé ããããã€ããŒãã€ã¶ãŒã¯ãäžå®ã®å€ã§ã¯ãªããã©ã³ãã ãªå€ã«ãã£ãŠãµã€ã¯ã«ã«ãŠã³ã¿ãŒã®èªã¿åãå€ã劥åããå¿ èŠããããŸãããã®ãããäžæ¹ã§ã¯ã«ãŒãã®å¹³åç¶ç¶æéãšåçã«ãªããä»æ¹ã§ã¯ã«ãŒãã®ç¶ç¶æéã®åºãããå®å®ãããŸã ãã ãããã®ãããªã©ã³ãã å€æ°ã®ååžåãéžæããåé¡ã¯æªè§£æ±ºã®ãŸãŸã§ãã
確ãã«ããã®ææ³ã«ã¯æ¬ ç¹ããªãããã§ã¯ãããŸããïŒè¡š4ïŒã

æªæ¥ãèŠã
以åã«è©±ããããšãã¹ãŠããããã®é èœãšçºèŠã®ãã¯ããã¯ã¯ãã¹ãŠä»æ¥ã«é¢é£ããŠããŸãããããŠãææ¥ã«ã¯äœãæåŸ ã§ããŸããïŒã«ãŒããããæè¡ã¯ã©ã®ãããªéçºçµè·¯ãåããŸããïŒæ³ååã«èªç±ãªæ綱ãäžããããšãå¯èœã§ãããæ³ååã次ã®é åã§çºéãããšä»®å®ããé«ã確çã§ïŒ
- . . .
- . , « », « », . IBM Smarter Cities , , .
- . .
ç§ã¯ãGetacè»äºã©ãããããïŒbit.ly/Sf23yPïŒã®ããã¯ããŒã¯ã«æ§ããããR_T_Tã®ä»äºã«èšåããããåŸãŸãããããã§ãããã°ã©ã ã®ããã¯ããŒã¯ã¯ã匷åãªSoftICEãããã¬ããªãªãŒã¹ããCompuwareã®ãœãããŠã§ã¢ã®åœ¢ã§äœæãããŸãããçŸåšããã®äŒç€Ÿã®åæ§ã®ããã¯ããŒã¯ã¯ã¿ãã¬ããã§èŠã€ããããšãã§ããŸããããšãã°ãé«åºŠãªä¿è·æ©èœãåããæ°ããThinkPad 2ã¯ãããªã€ã³ã¹ããŒã«ããããœãããŠã§ã¢ãTrusted Platform ModuleãšComputrace Mobileãåãããšã³ã¿ãŒãã©ã€ãºã¬ãã«ã®ã»ãã¥ãªãã£ãã§ãã§ã«è²©å£²ãããŠããŸãã
WWW
EFIã«ãŒããããã«é¢ããèå³æ·±ãäœæ¥ãOS Xã®äžã§ãLoukas Kã«ãã£ãŠè¡ãããŸããïŒbit.ly/Pe1Dklã
ãŸãšã
ã芧ã®ããã«ãã«ãŒãããããã¯ãããžãŒã¯éæ¢ããŠããããã§ã¯ãªããããããããæ€åºããã¿ã¹ã¯ã¯ãŸããŸãå°é£ã«ãªã£ãŠããŸããããã«ããããããã¯éåžžã«å±éºãªãµã€ããŒå µåšã«å€ãããæ°ä»ãããã«ããããšãã§ããŸãããé©åãªã¿ã€ãã³ã°ã§æ£ç¢ºãã€èŽåœçãªææãäžããŸããæµ·å€ã®ãã¹ãŠã®å±éºãèªèããŠãDARPAããã³IARPAïŒç±³åœïŒãDSTLïŒè±åœïŒãDRDCïŒã«ããïŒãCOSTINDïŒäžåœïŒãªã©ã®ãœãããŠã§ã¢ããã¯ããŒã¯ã®é èœããã³æ€åºã®åéã§ç 究ã«åŸäºããç¹å¥ãªäŒç€ŸãäœæããŸãããããã«ããããŠããåœã§ã¯æ¬æ Œçãªãµã€ããŒè»éãç»å ŽããããšãæåŸ ããŸããããäžæ¹ãè»äºéšéã®ã»ãã¥ãªãã£ã¬ãã«ïŒé²è¡ãèªãïŒã¯ãæãŸãããã®ãå€ãæ®ãããŠããŸãã
èè ã«ã€ããŠ
( igor.korkin@gmail.com ) â 05.13.19 « , ». , , . , , « » Positive Hack Days 2012.

2013幎5æ5æ¥ä»ã®Hackerèªã«æåã«æ²èŒãããŸããã
ISSUU.comã«å ¬éãã
ããã«ãŒã賌èªãã
- 1 999 pã 12æã®çšçŽãªãã·ã§ã³
- 1249 RUR iOS / iPadã®å¹Žéãµãã¹ã¯ãªãã·ã§ã³ïŒAndroidãªãªãŒã¹ã¯è¿æ¥å ¬éäºå®ïŒïŒ
- Androidã®ããã«ãŒ

PS []ã®ããã«æžããŠãç¥èãšèå³æ·±ãã¢ã€ãã¢ãå ±æã§ããŸããïŒ æããŠãã ãã:)ã ç§ãã¡ã¯ææ°æãæ¯æããŸããããããäž»ãªåæ©ã§ãã£ãŠã¯ãªããŸããã