Gotcha

I've got the same setup, waiting for more tools to find those keys.

BTW, did I mention how much I hate DHCP, no DHCP video card or compatable display and no workie. I guess thats why we are chatting in this thread to begin with. =]

~DC

I think you meant HDCP (High-Bandwidth Content Protection) and not DHCP (Dynamic Host Configuration Protocol). Gotta love all these acronyms. BTW, I agree with you...

I think you meant HDCP (High-Bandwidth Content Protection) and not DHCP (Dynamic Host Configuration Protocol). Gotta love all these acronyms. BTW, I agree with you...

DOH! Ya thats it =]

I got lucky though, ive got a nvidia 7600 card and a westinghouse 37" which is HDCP compliant.

So anyone think there will be a follow up to this come tommorow??

HDCP is not a prrotection because there is lot of device which
can remove the HDCP protection...
This device is sell in grey market (without label, name,...),
and some professional use it to display video with old HD TV set.



Golgot13

HDCP is not a prrotection because there is lot of device which
can remove the HDCP protection...
This device is sell in grey market (without label, name,...),
and some professional use it to display video with old HD TV set.



Golgot13

got a link for this device, im sure hdcp aint been cracked!

the only problems is how to find the kyes now, the tool is working( the youtube video shows it clrearly) ; I expect key lists will appear somewhere on the internet and will be shared. Anyway AACS will give a new set of keys for further releases of HD DVD movies and stand alone player by Toshiba will require a firmware update while software players like POWERDVD or WINDVD will require a new version update; I'm quiste sure that,even if now it could be possible to grab keys from memory with already released titles, with next gen software players this chance will ber forbidden. Anyway we will be able to backup at least all the titles released until now.

I hope tomorrw we will see some interesting news.

I'll be getting a 360 HD drive soon. I am as excited as when decss was released back in the days.

PS for people in countries that don't have the HD-DVD drive available for purchase, www.playasia.com have fair pricing on the device, and decent shipping rates.

gooki. the site says that the drive "Compatible with Xbox360™
Japanese". I have an european version of xbox.360. will the drive work for me?
Thanks.

got a link for this device, im sure hdcp aint been cracked!

I know there was a small device, like a cable adapter, that hooked on to dvi or hdmi cables and just removed the HDCP and gave you a regular signal.
I think they were on sale for 30-40€ in germany, but everything got shut down eventually if I remember correctly.
This was a while ago and there wasnt much of a market back then.
Some similar device is probably what sits in all HDCP compatible displays so it's not very mystical at all that you could make a device like that with the right chip and components.
I don't know if they will ever be "allowed" for people with old displays that don't support HDCP, but I doubt they can be made illegal, just very very hard to get your hands on.

There were devices called DVIMAGIC and DVIHDCP, which were distributed by Spatz Tech in Germany, but manufactured in Korea. They were much more expensive though, more like 350€.
The DVIMAGIC would convert DVI/HDCP to VGA, the DVIHDCP would convert DVI/HDCP to HDCP.
After Spatz Tec was threatened with legal actions, these device didappeared quickly, though they were said to be still produced by the Korean manufacturer for a while. There were also rumors that the chip/device id used or whatever was added to the HDCP revocation list. Dunno if this is true though.

With H264 codec, it's possible to encode HD video file 1920x1080
at 8Mbps

HDDVD uses VC-1 a very similar compression to H264.
There is no magic way to re-compress the video
from 20Gb down to 8GB and still look 99% as the original.


Now that AVC versions of mpeg4 are out you probably could get 70% quility.

gooki. the site says that the drive "Compatible with Xbox360™
Japanese". I have an european version of xbox.360. will the drive work for me?
Thanks.

The drive is just a toshiba USB drive, shouldn't matter where you get it from if you plan to connect it to a PC.

~DC

the drive might be region coded, think there are 3 regions for hd-dvd's, cant be sure tho!

the drive might be region coded, think there are 3 regions for hd-dvd's, cant be sure tho!

True but it shouldn't be long till someone creates a flash to remove region restrictions.

Today, there is not region code on HD DVD disc and on HD DVD drive
(all X360 HDDVD drive are same on the world).


Golgot13

I'm an old school encoding provider, mostly in the WM relm encoding live events via satellite and batch coversion of physical media stock. We are starting to work with VC-1 and the windows media 9 advanced codec. I have an application that runs kiosks and HD is the next step.

I've been working with some of the 1080p content on wmvhd.com to come up with a chart to show where the reduction of encoding rates will effect the viewing experience. This of course is subjective because content type and playback displays will produce different results.

So when we get some of these HDDVD's ripped and the media extraced I can produce some samples for reducing the bitrate.

~DC

gooki. the site says that the drive "Compatible with Xbox360™
Japanese". I have an european version of xbox.360. will the drive work for me?
Thanks.

Per above - should work fine as it's just a USB drive. The DVD region code may be different, but there is no HDDVD region code system at this point in time so for our purposes it shoudl work fine. I'll post up confirmation when my drive arrives (connected to australia/nz xbox360).

I'll be getting a 360 HD drive soon. I am as excited as when decss was released back in the days.There are several online reviews of the 360 HD drive under Windows. You might need new UDF filesystem drivers:

http://www.pcw.co.uk/personal-computer-world/features/2170703/xbox360-hd-dvd-pc

Just jumping ahead to mention something if not already mentioned. Sharing of keys is a BAD idea because they will get blacklisted on future HD-DVD releases. Better to have a prog that decodes the keys for you (But does not tell you what those keys are) and then uses that key on the HD-DVD media to copy it. That way the media moguls won't have a list of compromised keys to blacklist players with on future HD-DVD releases. They would have to blacklist ALL keys which they could not really do without changing the way AACS works drastically.

EDIT: OK read all the way through and others saw this same logic. Sharing keys = revocation.

Just jumping ahead to mention something if not already mentioned. Sharing of keys is a BAD idea because they will get blacklisted on future HD-DVD releases. Better to have a prog that decodes the keys for you (But does not tell you what those keys are) and then uses that key on the HD-DVD media to copy it. That way the media moguls won't have a list of compromised keys to blacklist players with on future HD-DVD releases. They would have to blacklist ALL keys which they could not really do without changing the way AACS drastically.

If disc/title keys were "shared", there would be no way of telling where they come from. Then again, looking at the video ony MyTube, it's quite obvious were the keys came from. So the player key will be blacklisted although it was never posted or maybe not even found and thus compromised.
So your suggestion somehow lacks any base and/or also shows a somewhat strange idea of the keys involved here. If it was possible to decode the disc/title keys without a specific player key, this would mean that AES128 was broken, which it isn't.

HDDVD uses VC-1 a very similar compression to H264.
There is no magic way to re-compress the video
from 20Gb down to 8GB and still look 99% as the original.


Now that AVC versions of mpeg4 are out you probably could get 70% quility.

Encoding for HD-DVD must have short GOP 0.606s max. and a lot another restrictions. You just can not use all power of AVC codec.
VC1 just polished for HD-DVD.For online distributed content no need restriction as for HD-DVD authoring.
In this case as said Golgot13 you can encode 1080p to avc at 6-8Mbps long GOP's and this be equal in quality to 12-16Mbps of VC1 on HD-DVD.

I'm thinking it's the revocation process which needs to be 'fixed' anyhow. All this talk of hacking/cracking the keys for decrypting is rather moot in that scenario.

Get around the revocation and the other stuff will probably seem simple.

I myself would not like to risk getting the key to decrypt an HD-DVD only to find I cannot play certain titles further down the line because they were revocated and my software/hardware 'silently' blacklisted them when the disc was inserted.

That is the insidious nature of this AACS system. I think people posting keys will only make this happen faster. Best to let the software pull the key from say PowerDVD 6.5 and not show it to the user. Let the key be used internally by the decryption software (No breaking of AES involved if the unencrypted key can be pulled from memory space). I assume that each disc must have it's own key? Otherwise if they blacklist a key on a title wouldn't it blacklist on everyone's player? I obviously must be missing something :)

shall we take bets, its jan 2nd in 56mins, im betting that on jan the 2nd we will not got a new version of this program, nor will the guy post in here at all.

LOL. FBI get!

I'm thinking it's the revocation process which needs to be 'fixed' anyhow. All this talk of hacking/cracking the keys for decrypting is rather moot in that scenario.

The revocation list of player keys is stored inside the HD-DVD drive. And it's the drive that decides to authenticate a player that was blacklisted. So I guess hacking the drive's firmware would be needed for this.


Get around the revocation and the other stuff will probably seem simple.

As I wrote before: if the revocation mechanism could be bypassed in certain drives, these drives together with a vulnerable player (or the player key and a separate implementation of the authentication process) would be able to deliver the disc/title keys until the end of time. This would practically circumvent AACS without having broken AES128. Still you would need a special drive with patched firmware to read out the keys.


I myself would not like to risk getting the key to decrypt an HD-DVD only to find I cannot play certain titles further down the line because they were revocated and my software/hardware 'silently' blacklisted them when the disc was inserted.

The revocation list is not about titles, but about players. So if PowerDVD is blacklisted, the player key is stored in the drive's non volatile memory and from this moment, the drive doesn't respond to this player key any more in the authentication process.


That is the insidious nature of this AACS system. I think people posting keys will only make this happen faster. Best to let the software pull the key from say PowerDVD 6.5 and not show it to the user. Let the key be used internally by the decryption software (No breaking of AES involved if the unencrypted key can be pulled from memory space). I assume that each disc must have it's own key? Otherwise if they blacklist a key on a title wouldn't it blacklist on everyone's player? I obviously must be missing something :)
As I said: it doesn't matter if the player key is used directly, indirectly or whatever. It will not prevent it from being blacklisted. And again: not the title is blacklisted but the player key.

Today, there is not region code on HD DVD disc and on HD DVD drive
(all X360 HDDVD drive are same on the world).


Golgot13

okay but it is tagged as "Compatible with Xbox360™
Japanese", OK I know that's not a big deal, but I wouldn't like to end up with a drive paid for $200 and plays only japanese animes :D

Encoding for HD-DVD must have short GOP 0.606s max. and a lot another restrictions. You just can not use all power of AVC codec.
VC1 just polished for HD-DVD.For online distributed content no need restriction as for HD-DVD authoring.
In this case as said Golgot13 you can encode 1080p to avc at 6-8Mbps long GOP's and this be equal in quality to 12-16Mbps of VC1 on HD-DVD.

The majors restriction is just short GOP and only for low framerate source (short gop at 0.6006 sec is not a major restriction for 50/60 Hz sources). You can use CABAC, inloop, AQ, CQM, 2 adaptative bframes, wpred, Max Pref at 4, Max Bref at 3. There are vbv restriction but it's not a problem for 6-8 Mbps encoding (max at 29.4 Mbps with very large buffer at 30 Mbits). Short gop produce perhaps something like 10% or 15% efficiency loss for H264 if you compare with unlimited gop but not more.

"I decide to track down the "Volume unique key" instead of title key.
I found it also! I'm preparing BackupHDDVD V1.00, that will support volume key and title keys."

This means, that the program will contain an empty variable - like with title keys - which is must be figured out somehow, but I think, we get a "Think about it" class answer for the question "How to get the volume uniqe key?" I know that he/she cannot provide us detailed informations about that in here, but many other ways should be.

Dchard

I know that he/she cannot provide us detailed informations about that in here, but many other ways should be.


Right! I hope that with the release of BackupDHDDVD 1.00 more tech hints will be revealed

To people that don't have the technical baggage to understand it by themselves: all the required tech hints were already provided by the person that made the first post and some of those that replied in this thread.

And also, it is not the AACS protection system that was "cracked", but a software player failed to protect the decryption keys because of lazy programmers and haste to "release the player faster". This will change in future player versions, and although any software player can be reverse engineered to grab the keys again, you will not get a "press butan, get rip" commercial application out of this because it will be illegal in many if not all parts of the world. So no "AACS hacked" nonsense, please.

muslix64 will either...

...never post in here again.

...or tell you soon that there were some problems with the program and that you will have to wait until xx.xx.2007.


Face the truth, it took about two years until DVD keys were extracted.


If he/she had really done it, she/he had released the key extraction method. The program with the weakness would have been withdrawn or changed, no doubt, but it also would have been seriously verified that someone found a way to compromise the whole encryption/decryption process. (not AACS itself)

A real hacker/cracker is interested in releasing proof, not in releasing videos. You don't get scene credits for releasing videos.

you will not get a "press butan, get rip" commercial application out of this because it will be illegal in many if not all parts of the world

DVD decrypting/copying is also illegal in most parts of the world, and see how many one-click decrypter in the market. Yes: not only a P2P distributed tiny software of a hacker, but commercial products.

A little off: could someone provide me some sort of info about HD-DVD-ROM directory/file structure? I found it for Blu-Ray (BD is more well documented than HD-DVD many other ways also), but I can't find it for HD-DVD. Searched the original documentations on dvdforum.org, but found nothing.

Thanks.

Dchard

A real hacker/cracker is interested in releasing proof, not in releasing videos

I don't think he's an hacker or a cracker, he simply is someone who needed to backup his discs and found a way to do it. So I don't need he wants to show us how "skilled" he is. I think we have to thank him for this program, he could also have kept it for himself, without running any risk.

Face the truth, it took about two years until DVD keys were extracted.

In 1997/1998 a Toshiba DVD-ROM 2x (max) + a mpeg-2 video decoding card for PC was USD$ 1000~1200.

DeCSS appeared in october 1999, thanks to 3 (three) people, not just Jon ! That all (2 years) was because the COSTS of DVD hardware (DVD-ROM), not the complexity !

Today isn't different, of course, the "complexity" is way better now. :search:

The key revocation system and BD+ are an all-out assault on fair use. To revoke or change a key, studios would have to have found out that disk was compromised, and by that time the movie would already be up on the torrents. The only use that the draconian copy protection on HD formats prevents is fair use backup and transcoding by legitimate consumers.

muslix64 will either...

...never post in here again. Do a Google search on 'muslix64' and literally every result is related to him/her and the HD-DVD crack... I know it's big news and all, but I've got a bad feeling about this one.
If he/she had really done it, she/he had released the key extraction method. The program with the weakness would have been withdrawn or changed, no doubt, but it also would have been seriously verified that someone found a way to compromise the whole encryption/decryption process. (not AACS itself)

A real hacker/cracker is interested in releasing proof, not in releasing videos. You don't get scene credits for releasing videos. The video at YouTube was certainly unnecessary and was quite well done. It sure wasn't webcam quality, in fact, it was pretty good quality and it was done by a 2nd person. As you say about a real hacker, they're more interesting in improving their program, fixing bugs, etc, etc and the time and effort spent making the video was wasteful.

Cyberlink Responds to Alleged AACS Crack

With the HD DVD AACS Crack/Hack that supposedly happened last week, I said that Cyberlink would most likely issue some additional information on the matter. I just got an e-mail from the people at Cyberlink with some great information. Above all, Cyberlink is sure PowerDVD's implementation of AACS fully protects HD DVD contents.

* First of all, PowerDVD complies to AACS compliance rules to ensure HD DVD contents are fully protected. Cyberlink is confident that PowerDVD fully protects HD DVD contents.
* Secondly, PowerDVD does not keep "Title Keys" in system memory. Cyberlink is not sure how the user got the Title Key and notes that the released tool nor the video on YouTube provides the information on obtaining the Titles Keys.
* Thirdly, there are no evidences that the user is using PowerDVD to hack/crack HD DVD video content. He or she was simply using PowerDVD to playback the video that was ripped with other software. PowerDVD supports evo video file format playback.

Overall, it doesn’t look like AACS or Cyberlink have found any faults in PowerDVD. So, at this point no updates will be issued for PowerDVD and the verdict is still out on whether or not additional playback software was used to obtain the Title Keys. No one has yet to prove that the keys can be obtained through a memory dump or any other methods.

Yet again, AACS wasn’t cracked/hacked and the one piece of the puzzle for obtaining the Title Keys doesn’t appear to add up.

Thanks goes out to Cyberlink for the information.

http://msmvps.com/blogs/chrisl/archive/2007/01/02/463980.aspx

I guess we find out if this is omgbs today. :cool:

"PowerDVD does not keep "Title Keys" in system memory"

OK, but where it is? It must be in somewhere it is shortly accessible many times, because the decoding of the encrypted is in real time, and this is a huge amount of data.

So the big question: where it is?

Dchard

Maybe it's not PowerDVD's memory dump that Muslix is reading to obtain the key? He never said ir was cyberlink's software. Perhaps he is reading the mem dump of WinDVD. I dunno.. I just hope Muslix comes back to provide a little more direction.. It would be nice is others out there could verify that they had done a successful rip too!

~Sy

where did the 2nd of January come from anyway?

He not been active on here or youtube for a week, so he definately busy with something. If he was a hoax wouldnt he want to check how is joke is going. He got alot of peoples attention anyhow.

Page 1 - Post 4
This is real, any good java programmer can confirm this program make sense, and all that is missing is the decryption keys.

Take a look at the FAQ file for details...

I already have a version that works with volume key instead of title keys. Even more powerfull!

Version 1.0, with volume key support should be out on january 2.

I spent the last few days reading a lot of articles on BackupHDDVD, reading a lot of people's post/comments on various websites.

This is the time to set the record straight about this new tool and what the impacts are.

First I need to clarify some points.

Revocation:

In the AACS system, there is 4 types of revocation:
Drive revocation
Host revocation
Device revocation (with MKB)
Content revocation

There is no such thing as "title key revocation" and "volume key revocation"

-------------

Now, here is a list of affirmations I have seen lately.


Affirmation 1: You did not break AACS, just the player

My comment: I did not break AACS, but I find a way to decrypt movies and I have bypassed all the revocation system.
Not that bad...


Affirmation 2: The BackupHDDVD circumvention tool won't last long

My comment: As long as insecure players will exist, it will last...
And insecure players will always exist, in fact you can extract keys from any player! Some players are just easier to extract the key from. Being lazy, I prefer to extract keys from an insecure player than a secure one.
And the AACS spec says "Device keys must be protected!" but they did not said that about volume key, fatal mistake!


Affirmation 3: The keys can easily be revoked.

My comment: What keys are you talking about?
As I stated before, there is no such thing as "title key revocation" and "volume key revocation". If someone publishes only volume keys, there is no way to know from which player these keys where extracted from, making the revocation system useless. They can do content revocation, but to revoke what? All movies before 2007? They can do player revocation, so I will just change the player I'm using, big deal...


So what is the AACS revocation system good at?
It is good for that scenario:
Someone post on the net, a tool that do the complete decryption automatically. Off course the program use stolen device keys from an official player. They (AACS and friends) will eventually get their hands on this program, look at the device keys and revoke them. Making that player unable to play new titles. But the author of this program can pre-extract a bunch of devices keys from different players and release them, one at the time, when the previous one have been blacklisted. The AACS spec says "Device keys must be protected!" so I suppose they put more effort in protecting these keys then the volume key in memory.


Affirmation 4: BackupHDDVD is nothing, only one person out of a million have the technical skills to extract keys.

My comment: BackupHDDVD is a proof of concept.

Picture this:
Few skilled persons can do massive volume key extraction, and send the keys to a central server on the internet. Then, they create an easy to use decryption program, with a nice GUI that do online key recovery. That way, my father and your father can backup movies.
Or they can send the keydb.cfg file on P2P networks (BitTorrent, E-Mule, etc..)
See the problem now?


Affirmation 5: You can extract keys from software player on personal computer but not on hardware player.

My comment: It's easier to extract keys from software player, but it also possible to extract keys from hardware player (the set-top box in your living room!)



Conclusion:

The attack I describe in "Affirmation 4", is not here yet, but it's coming. So I give MPAA and AACSLA a head start. Start to think what you can do about that.

To totally block this attack, they need to put different keys on every disk! Now, they only have different keys for different movies. I don't know about the manufacturing process of the disk. This solution may not be possible.

The best they can do, is doing shorter manufacturing run of a particular movie, so it would be difficult to get your hand on every "pressing" of a movie.

When they design AACS, they assume people will look for the device keys. I don't care about device keys. I do care about volume key. Having the device keys mean that you have to re-implements all the complex crypto and do the full AACS process.
I leave all this dirty job to the player and recover only the volume key.

There is 3 important things in cryptography:

1-Private key protection
2-Private key protection
3-Private key protection


Did I break AACS? I don't know. What do you think?

I'm not going to work on this anymore, I'm taking a vacation!

Ok, here it is, BackupHDDVD V1.00!

What's new in this version?

- Volume key support
- Partial resume of an interrupted decryption session
- New file format and file name for key database file.

The key database file is now KEYDB.cfg

You can download it here:

http://rapidshare.com/files/9942683/BackupHDDVDV100.zip.html
http://z13.zupload.com/download.php?file=getfile&filepath=59843


File name: BackupHDDVDV100.zip
File size: 22,429 bytes
SHA1 hash: 0d938a376133dfaf78ec47e6d41201d553a6bb81


This may be my last post here.

I'm going to have a rest for a while.

Take care everyone and wish me good luck!

Nice! Thanks for your hard work... will be interesting to see where your efforts lead.;)

Thanks for the great program! I hope to get an xbox360 hd-dvd player soon.

any programs that helped you on your way?

You rule Muslix64! Go and have a great vacation.

Where do I go to get the drivers for my xbox360 hd-dvd drive? Also can some one confirm if power dvd 7.2 works with this or must I use 6.5.

again the keys are not posted, you gotta find them.