Welcome to Doom9's Forum, THE in-place to be for everyone interested in DVD conversion. Before you start posting please read the forum rules. By posting to this forum you agree to abide by the rules. |
2nd January 2007, 22:12 | #241 | Link |
Registered User
Join Date: Jan 2002
Posts: 155
|
where did the 2nd of January come from anyway?
He not been active on here or youtube for a week, so he definately busy with something. If he was a hoax wouldnt he want to check how is joke is going. He got alot of peoples attention anyhow. Last edited by zeroprobe; 2nd January 2007 at 22:16. |
2nd January 2007, 22:15 | #242 | Link | |
Registered User
Join Date: Feb 2002
Posts: 44
|
Page 1 - Post 4
Quote:
__________________
Sometimes I sit and think... and sometimes I just sit... |
|
2nd January 2007, 22:15 | #243 | Link |
Registered User
Join Date: Dec 2006
Posts: 35
|
Setting the record straight.
I spent the last few days reading a lot of articles on BackupHDDVD, reading a lot of people's post/comments on various websites.
This is the time to set the record straight about this new tool and what the impacts are. First I need to clarify some points. Revocation: In the AACS system, there is 4 types of revocation: Drive revocation Host revocation Device revocation (with MKB) Content revocation There is no such thing as "title key revocation" and "volume key revocation" ------------- Now, here is a list of affirmations I have seen lately. Affirmation 1: You did not break AACS, just the player My comment: I did not break AACS, but I find a way to decrypt movies and I have bypassed all the revocation system. Not that bad... Affirmation 2: The BackupHDDVD circumvention tool won't last long My comment: As long as insecure players will exist, it will last... And insecure players will always exist, in fact you can extract keys from any player! Some players are just easier to extract the key from. Being lazy, I prefer to extract keys from an insecure player than a secure one. And the AACS spec says "Device keys must be protected!" but they did not said that about volume key, fatal mistake! Affirmation 3: The keys can easily be revoked. My comment: What keys are you talking about? As I stated before, there is no such thing as "title key revocation" and "volume key revocation". If someone publishes only volume keys, there is no way to know from which player these keys where extracted from, making the revocation system useless. They can do content revocation, but to revoke what? All movies before 2007? They can do player revocation, so I will just change the player I'm using, big deal... So what is the AACS revocation system good at? It is good for that scenario: Someone post on the net, a tool that do the complete decryption automatically. Off course the program use stolen device keys from an official player. They (AACS and friends) will eventually get their hands on this program, look at the device keys and revoke them. Making that player unable to play new titles. But the author of this program can pre-extract a bunch of devices keys from different players and release them, one at the time, when the previous one have been blacklisted. The AACS spec says "Device keys must be protected!" so I suppose they put more effort in protecting these keys then the volume key in memory. Affirmation 4: BackupHDDVD is nothing, only one person out of a million have the technical skills to extract keys. My comment: BackupHDDVD is a proof of concept. Picture this: Few skilled persons can do massive volume key extraction, and send the keys to a central server on the internet. Then, they create an easy to use decryption program, with a nice GUI that do online key recovery. That way, my father and your father can backup movies. Or they can send the keydb.cfg file on P2P networks (BitTorrent, E-Mule, etc..) See the problem now? Affirmation 5: You can extract keys from software player on personal computer but not on hardware player. My comment: It's easier to extract keys from software player, but it also possible to extract keys from hardware player (the set-top box in your living room!) Conclusion: The attack I describe in "Affirmation 4", is not here yet, but it's coming. So I give MPAA and AACSLA a head start. Start to think what you can do about that. To totally block this attack, they need to put different keys on every disk! Now, they only have different keys for different movies. I don't know about the manufacturing process of the disk. This solution may not be possible. The best they can do, is doing shorter manufacturing run of a particular movie, so it would be difficult to get your hand on every "pressing" of a movie. When they design AACS, they assume people will look for the device keys. I don't care about device keys. I do care about volume key. Having the device keys mean that you have to re-implements all the complex crypto and do the full AACS process. I leave all this dirty job to the player and recover only the volume key. There is 3 important things in cryptography: 1-Private key protection 2-Private key protection 3-Private key protection Did I break AACS? I don't know. What do you think? I'm not going to work on this anymore, I'm taking a vacation! |
2nd January 2007, 22:16 | #244 | Link |
Registered User
Join Date: Dec 2006
Posts: 35
|
Here it is...
Ok, here it is, BackupHDDVD V1.00!
What's new in this version? - Volume key support - Partial resume of an interrupted decryption session - New file format and file name for key database file. The key database file is now KEYDB.cfg You can download it here: http://rapidshare.com/files/9942683/...DV100.zip.html http://z13.zupload.com/download.php?...filepath=59843 File name: BackupHDDVDV100.zip File size: 22,429 bytes SHA1 hash: 0d938a376133dfaf78ec47e6d41201d553a6bb81 This may be my last post here. I'm going to have a rest for a while. Take care everyone and wish me good luck! |
2nd January 2007, 22:40 | #249 | Link |
Registered User
Join Date: Dec 2001
Location: nashville
Posts: 20
|
Where do I go to get the drivers for my xbox360 hd-dvd drive? Also can some one confirm if power dvd 7.2 works with this or must I use 6.5.
__________________
bing the dvd's out and lets go to town! im always striving to get around buying a dvd burner! i love www.doom9.org |
2nd January 2007, 22:47 | #251 | Link | |
Registered User
Join Date: Feb 2002
Posts: 44
|
Quote:
We can confirm that PowerDVD can read EVO files but nobody has yet confirmed that that is the program that you need to use to extract the volume keys or title keys needed to decrypt the video.
__________________
Sometimes I sit and think... and sometimes I just sit... |
|
2nd January 2007, 23:47 | #255 | Link |
Registered User
Join Date: May 2006
Posts: 4
|
I was reading the AACS spec sheets and found something interesting.
There is less than 1MB of space to store the revoked keys on any hd-dvd disc (at least in this revision of the spec). Which means in theory, if you succeed in getting enough keys, and the AACS adds them to the revoke list, eventually they will run out of space! I think.. I am just trying to understand muslix64 comments by actually dwelling into the AACS spec. I also think Powerdvd's reply is BS because they know they goofed up somewhere. We'll see if they suddenly push out an update. And as muslix64 said, the AACS spec doesn't require protection of the volume key, so it should always be obtainable, it's just a matter of the degree of difficulty. |
3rd January 2007, 00:29 | #257 | Link |
Registered User
Join Date: Feb 2003
Location: USA
Posts: 152
|
**** Sorry, but without even one working key this is nothing but speculation.
Sure, the BackupHDDVD program looks nice, but without verifiable proof that a volume key has been actually been extracted, this is nothing to get excited about. Frankly, I now suspect that the youtube video is a hoax, and that muslix64 is just hoping against hope that some superhacker out there will figure out where PowerDVD HD hides the keys. Last edited by Guest; 3rd January 2007 at 01:29. Reason: rule 4 |
3rd January 2007, 00:40 | #258 | Link |
Registered User
Join Date: Dec 2006
Posts: 154
|
The volume key has to be in the registers to calculate the CMAC value (and decrypt title keys). If you were to set a breakpoint on the routine that accesses the memory location of the CMAC, you would find the Volume key in the registers.
|
3rd January 2007, 00:57 | #259 | Link |
Registered User
Join Date: Dec 2001
Location: nashville
Posts: 20
|
If anything
If anything it got the community really thinking togeather on how to come up with a solution. So cheers to that.
__________________
bing the dvd's out and lets go to town! im always striving to get around buying a dvd burner! i love www.doom9.org |
3rd January 2007, 01:27 | #260 | Link | |
Registered User
Join Date: May 2002
Posts: 139
|
Quote:
THANX ! eDiT another mirror of BackupHDDVDV100.zip
__________________
iNTEL Q9300 - 4GB - 9800GT + MacMini iNTEL + MacBOOK iNTEL + MSiWind Last edited by MaXiMuS; 3rd January 2007 at 01:46. Reason: mirroring |
|
Thread Tools | Search this Thread |
Display Modes | |
|
|