Encryption for HD-DVD cracked

Collapse
X
 
  • Time
  • Show
Clear All
new posts
  • diesel350
    Junior Member
    Junior Member
    • Nov 2006
    • 12

    Encryption for HD-DVD cracked

    This could get interesting..

  • blutach
    Not a god of digital video
    • Oct 2004
    • 24627

    #2
    See the thread at Doom 9 - http://forum.doom9.org/showthread.php?t=119871

    Regards
    Les

    Essential progs - [PgcEdit] [VobBlanker] [MenuShrink] [IfoEdit] [Muxman] [DVD Remake Pro] [DVD Rebuilder] [BeSweet] [Media Player Classic] [DVDSubEdit] [ImgBurn]

    Media and Burning - [Golden Rules of Burning] [Media quality] [Fix your DMA] [Update your Firmware] [What's my Media ID Code?] [How to test your disc]
    [What's bitsetting?] [Burn dual layer disks safely] [Why not to burn with Ner0] [Interpret Ner0's burn errors] [Got bad playback?] [Burner/Media compatibility]

    Cool Techniques - [2COOL's guides] [Clean your DVD] [Join a flipper] [Split into 2 DVDs] [Save heaps of Mb] [How to mock strip] [Cool Insert Clips]

    Real useful info - [FAQ INDEX] [Compression explained] [Logical Remapping of Enabled Streams] [DVD-Replica] [Fantastic info on DVDs]


    You should only use genuine Verbatim or Taiyo Yuden media. Many thanks to www.pcx.com.au for their supply and great service.

    Explore the sites and the programs - there's a gold mine of information in them

    Don't forget to play the Digital Digest Quiz!!! (Click here)

    Comment

    • nwg
      Left *****
      • Jun 2003
      • 5196

      #3
      Technically, it hasn't been cracked but a bug in the PowerDVD. It also decrypts only present discs. Future discs and a patched PowerDVD could put the whole thing back to square one. However, it seems to moving fast.

      Comment

      • nwg
        Left *****
        • Jun 2003
        • 5196

        #4
        Looks like Cyberlink is already working on a patch/update and the old version will not work anymore.

        Taken from Digitalbits.com

        Well, we've been doing a bit of research on the reported AACS crack this afternoon... and we've learned that there's good news and (just maybe) bad news. Our old friend Andy Patrizio sent over some links for further reading (thanks, Andy!), and it seems that the whole system hasn't been cracked... just a tiny part of it. According to tech blogger Chris Lanier, this all started because the current version of Cyberlink's PowerDVD player leaves the title keys for individual HD-DVD titles unprotected for a short time during the playback operation. A memory dump allows those keys to be revealed, and then the keys must be fed into the BackupHDDVD utility in order to allow those specific discs to be copied. Cyberlink is expected to release a patch/update which will end this vulnerability. The newly-updated software will likely use new device keys, and the old version's device key will likely be revoked, meaning that the old version of the software won't work anymore (after it receives the revocation orders, which would arrive on new HD-DVD movie software). So AACS itself hasn't been compromised - just the title keys to select titles.

        Here's the bad news... those select titles (which so far include Warner's Full Metal Jacket, The Last Samurai and The Fugative, Paramount's Tomb Raider, and Universal's Apollo 13 and Van Helsing) could now be considered open and unprotected. The studios involved COULD decide to revoke the title keys on those specific unprotected HD-DVD discs, rendering them unplayable on all HD-DVD players, both software and hardware. Doing so would mean that those of you who already own the discs would have to work with the studios somehow to obtain replacement discs with new (and still valid and protected) title keys. The market is certainly small enough that the studios could do this without TOO much problem, though I don't imagine anyone involved would relish the hassle. We're making inquiries now to see what happens next and hopefully, we'll know more next week.

        Comment

        • blutach
          Not a god of digital video
          • Oct 2004
          • 24627

          #5
          New Volume Unique keys are being published every day. IME seems to be a hassel for the moment.

          Regards
          Les

          Essential progs - [PgcEdit] [VobBlanker] [MenuShrink] [IfoEdit] [Muxman] [DVD Remake Pro] [DVD Rebuilder] [BeSweet] [Media Player Classic] [DVDSubEdit] [ImgBurn]

          Media and Burning - [Golden Rules of Burning] [Media quality] [Fix your DMA] [Update your Firmware] [What's my Media ID Code?] [How to test your disc]
          [What's bitsetting?] [Burn dual layer disks safely] [Why not to burn with Ner0] [Interpret Ner0's burn errors] [Got bad playback?] [Burner/Media compatibility]

          Cool Techniques - [2COOL's guides] [Clean your DVD] [Join a flipper] [Split into 2 DVDs] [Save heaps of Mb] [How to mock strip] [Cool Insert Clips]

          Real useful info - [FAQ INDEX] [Compression explained] [Logical Remapping of Enabled Streams] [DVD-Replica] [Fantastic info on DVDs]


          You should only use genuine Verbatim or Taiyo Yuden media. Many thanks to www.pcx.com.au for their supply and great service.

          Explore the sites and the programs - there's a gold mine of information in them

          Don't forget to play the Digital Digest Quiz!!! (Click here)

          Comment

          • azumi_mm
            Imperfect
            • Jan 2007
            • 1

            #6
            BackupHDDVD was prematurely released! Big mistake...

            Comment

            • nwg
              Left *****
              • Jun 2003
              • 5196

              #7
              Originally Posted by azumi_mm
              BackupHDDVD was prematurely released! Big mistake...
              What do you mean? It will be ages before a proper crack is available if it ever is. It a a lot more secure than DVD CSS. At least people can decrypt their current discs (until the software is updated).

              Comment

              • driver8
                Member
                Member
                • Sep 2004
                • 89

                #8
                Originally Posted by azumi_mm
                BackupHDDVD was prematurely released! Big mistake...
                False.

                There is never going to be a problem harvesting the title keys. The first hole is in xp software players, but that has only become obvious because it was comparable easy for every user. The problem for AACS is that every user doesn't need to harvest the key. It only needs to be done once per pressing.

                Given that there are easily ten thousand or more persons with the knowledge and hardware to harvest the title keys off of stand alone units, all you need is 1% of them with the interest (and more than that have it), is no way on earth to keep the keys from propagating across the net.

                Originally Posted by nwg
                What do you mean? It will be ages before a proper crack is available if it ever is. It a a lot more secure than DVD CSS. At least people can decrypt their current discs (until the software is updated).
                I would say the opposite is true and hd and blue ray cracking is well ahead of sd css cracking!

                1) When I got my first dvd and player I was an early adopter wit a state of the art 128k ISDN connection. My $30 a month connection is 30 times that yet hd/blu ray resoluton means file size is only five times the size. In terms of propagation over the internet of an entire title, SD and Blu ray are already well behind.

                2) Device revocation is a red herring. They will have to completely revoke xp. nada. vista key harvesting is just a mater of time no matter what countermeasures. But even if that were not true standalone harvesting is all that is needed since the keys can be published in near real time rendering open each pressing. Even draconian standalone revocation policies, which would be very hard and expensive to enforce won't keep up.

                3) BD+ implimentation suffers many costs and has equal vulnerabilities.

                Comment

                • nwg
                  Left *****
                  • Jun 2003
                  • 5196

                  #9
                  They can stop the current hacks for both HD DVD and Blu Ray just by updating the software, Once that is done, the old software will not work. Cyberlink are already working on a solution.

                  Comment

                  • driver8
                    Member
                    Member
                    • Sep 2004
                    • 89

                    #10
                    Originally Posted by nwg
                    They can stop the current hacks for both HD DVD and Blu Ray just by updating the software, Once that is done, the old software will not work. Cyberlink are already working on a solution.
                    I don't think you are keeping up at all on what is going on. Every piece of software running on a pc is going to have to give up the key. They can update everyday. the ability to get the key out of memory is a permanent flaw.

                    Getting the title keys out of stand alone boxes is not going to be hard anyway. remember only one person has to do it for any given title!

                    you are also confused about whether the old software will work. it will on every dvd published to date.

                    The exploit is 100% permanent (it isn't a hack anyway it is a side attack bypass).

                    Comment

                    • nwg
                      Left *****
                      • Jun 2003
                      • 5196

                      #11
                      Originally Posted by driver8
                      I don't think you are keeping up at all on what is going on. Every piece of software running on a pc is going to have to give up the key. They can update everyday. the ability to get the key out of memory is a permanent flaw.

                      Getting the title keys out of stand alone boxes is not going to be hard anyway. remember only one person has to do it for any given title!

                      you are also confused about whether the old software will work. it will on every dvd published to date.

                      The exploit is 100% permanent (it isn't a hack anyway it is a side attack bypass).

                      I am not confused and it is not a permanant exploit.

                      Comment

                      • driver8
                        Member
                        Member
                        • Sep 2004
                        • 89

                        #12
                        Originally Posted by nwg
                        I am not confused and it is not a permanant exploit.
                        It is permenent. the title keys can be read out of memory on xp vista and without a doubt almost every stand alone box. you do realize the problem with the stand alone boxes? reading the memory off the chips is doable on 100% pf the players on the market. no one has bothered because you can pull it with simple debug on the pc.

                        Comment

                        • blutach
                          Not a god of digital video
                          • Oct 2004
                          • 24627

                          #13
                          The question is whether they will revoke all software players that work on XP and mandate them to only work with Vista, where things are reputedly "more secure".

                          However, as one poster on Doom9 said, "memory is memory is memory". The keys gotta get in there eventually.

                          Some proposals are even circulating to reading the keys off the various pins in chips in hardware players.

                          My view: Whatever industry throws up, some enterprising people will destroy and quickly. Witness the lack of success that ARccOS has due to advanced rippers.

                          Funny thing is that the whole thing started cos one bloke simply wanted to watch his legally purchased disk on another device. The industry is too intent on stopping people from doing this. In doing so, it is shooting itself in the foot, IMHO.

                          Regards
                          Les

                          Essential progs - [PgcEdit] [VobBlanker] [MenuShrink] [IfoEdit] [Muxman] [DVD Remake Pro] [DVD Rebuilder] [BeSweet] [Media Player Classic] [DVDSubEdit] [ImgBurn]

                          Media and Burning - [Golden Rules of Burning] [Media quality] [Fix your DMA] [Update your Firmware] [What's my Media ID Code?] [How to test your disc]
                          [What's bitsetting?] [Burn dual layer disks safely] [Why not to burn with Ner0] [Interpret Ner0's burn errors] [Got bad playback?] [Burner/Media compatibility]

                          Cool Techniques - [2COOL's guides] [Clean your DVD] [Join a flipper] [Split into 2 DVDs] [Save heaps of Mb] [How to mock strip] [Cool Insert Clips]

                          Real useful info - [FAQ INDEX] [Compression explained] [Logical Remapping of Enabled Streams] [DVD-Replica] [Fantastic info on DVDs]


                          You should only use genuine Verbatim or Taiyo Yuden media. Many thanks to www.pcx.com.au for their supply and great service.

                          Explore the sites and the programs - there's a gold mine of information in them

                          Don't forget to play the Digital Digest Quiz!!! (Click here)

                          Comment

                          • driver8
                            Member
                            Member
                            • Sep 2004
                            • 89

                            #14
                            Originally Posted by blutach
                            The question is whether they will revoke all software players that work on XP and mandate them to only work with Vista, where things are reputedly "more secure".

                            However, as one poster on Doom9 said, "memory is memory is memory". The keys gotta get in there eventually.

                            Some proposals are even circulating to reading the keys off the various pins in chips in hardware players.

                            My view: Whatever industry throws up, some enterprising people will destroy and quickly. Witness the lack of success that ARccOS has due to advanced rippers.

                            Funny thing is that the whole thing started cos one bloke simply wanted to watch his legally purchased disk on another device. The industry is too intent on stopping people from doing this. In doing so, it is shooting itself in the foot, IMHO.

                            Regards
                            Yes. The title keys passed in the large amount of devices are the weak link. The number of makes and types of devices will have to increase. How many DVD players do you have? In your PC, laptop, set boxes, portables, gaming rigs, etc. how many combinations of makers, chips and firmware? This is a very weak link in the chain.

                            Comment

                            • driver8
                              Member
                              Member
                              • Sep 2004
                              • 89

                              #15
                              Originally Posted by blutach
                              [color=blue]The question is whether they will revoke all software players that work on XP and mandate them to only work with Vista, where things are reputedly "more secure".
                              Originally Posted by nwg
                              They can stop the current hacks for both HD DVD and Blu Ray just by updating the software, Once that is done, the old software will not work. Cyberlink are already working on a solution.
                              Just as an update, they will have to kill xp AND vista -- not likely:

                              Comment

                              Working...