Welcome to Doom9's Forum, THE in-place to be for everyone interested in DVD conversion.

Before you start posting please read the forum rules. By posting to this forum you agree to abide by the rules.

 

Go Back   Doom9's Forum > General > Decrypting

Reply
 
Thread Tools Search this Thread Display Modes
Old 2nd January 2007, 22:12   #241  |  Link
zeroprobe
Registered User
 
Join Date: Jan 2002
Posts: 155
where did the 2nd of January come from anyway?

He not been active on here or youtube for a week, so he definately busy with something. If he was a hoax wouldnt he want to check how is joke is going. He got alot of peoples attention anyhow.

Last edited by zeroprobe; 2nd January 2007 at 22:16.
zeroprobe is offline   Reply With Quote
Old 2nd January 2007, 22:15   #242  |  Link
Sy
Registered User
 
Sy's Avatar
 
Join Date: Feb 2002
Posts: 44
Page 1 - Post 4
Quote:
Originally Posted by muslix64 View Post
This is real, any good java programmer can confirm this program make sense, and all that is missing is the decryption keys.

Take a look at the FAQ file for details...

I already have a version that works with volume key instead of title keys. Even more powerfull!

Version 1.0, with volume key support should be out on january 2.
__________________
Sometimes I sit and think... and sometimes I just sit...
Sy is offline   Reply With Quote
Old 2nd January 2007, 22:15   #243  |  Link
muslix64
Registered User
 
Join Date: Dec 2006
Posts: 35
Setting the record straight.

I spent the last few days reading a lot of articles on BackupHDDVD, reading a lot of people's post/comments on various websites.

This is the time to set the record straight about this new tool and what the impacts are.

First I need to clarify some points.

Revocation:

In the AACS system, there is 4 types of revocation:
Drive revocation
Host revocation
Device revocation (with MKB)
Content revocation

There is no such thing as "title key revocation" and "volume key revocation"

-------------

Now, here is a list of affirmations I have seen lately.


Affirmation 1: You did not break AACS, just the player

My comment: I did not break AACS, but I find a way to decrypt movies and I have bypassed all the revocation system.
Not that bad...


Affirmation 2: The BackupHDDVD circumvention tool won't last long

My comment: As long as insecure players will exist, it will last...
And insecure players will always exist, in fact you can extract keys from any player! Some players are just easier to extract the key from. Being lazy, I prefer to extract keys from an insecure player than a secure one.
And the AACS spec says "Device keys must be protected!" but they did not said that about volume key, fatal mistake!


Affirmation 3: The keys can easily be revoked.

My comment: What keys are you talking about?
As I stated before, there is no such thing as "title key revocation" and "volume key revocation". If someone publishes only volume keys, there is no way to know from which player these keys where extracted from, making the revocation system useless. They can do content revocation, but to revoke what? All movies before 2007? They can do player revocation, so I will just change the player I'm using, big deal...


So what is the AACS revocation system good at?
It is good for that scenario:
Someone post on the net, a tool that do the complete decryption automatically. Off course the program use stolen device keys from an official player. They (AACS and friends) will eventually get their hands on this program, look at the device keys and revoke them. Making that player unable to play new titles. But the author of this program can pre-extract a bunch of devices keys from different players and release them, one at the time, when the previous one have been blacklisted. The AACS spec says "Device keys must be protected!" so I suppose they put more effort in protecting these keys then the volume key in memory.


Affirmation 4: BackupHDDVD is nothing, only one person out of a million have the technical skills to extract keys.

My comment: BackupHDDVD is a proof of concept.

Picture this:
Few skilled persons can do massive volume key extraction, and send the keys to a central server on the internet. Then, they create an easy to use decryption program, with a nice GUI that do online key recovery. That way, my father and your father can backup movies.
Or they can send the keydb.cfg file on P2P networks (BitTorrent, E-Mule, etc..)
See the problem now?


Affirmation 5: You can extract keys from software player on personal computer but not on hardware player.

My comment: It's easier to extract keys from software player, but it also possible to extract keys from hardware player (the set-top box in your living room!)



Conclusion:

The attack I describe in "Affirmation 4", is not here yet, but it's coming. So I give MPAA and AACSLA a head start. Start to think what you can do about that.

To totally block this attack, they need to put different keys on every disk! Now, they only have different keys for different movies. I don't know about the manufacturing process of the disk. This solution may not be possible.

The best they can do, is doing shorter manufacturing run of a particular movie, so it would be difficult to get your hand on every "pressing" of a movie.

When they design AACS, they assume people will look for the device keys. I don't care about device keys. I do care about volume key. Having the device keys mean that you have to re-implements all the complex crypto and do the full AACS process.
I leave all this dirty job to the player and recover only the volume key.

There is 3 important things in cryptography:

1-Private key protection
2-Private key protection
3-Private key protection


Did I break AACS? I don't know. What do you think?

I'm not going to work on this anymore, I'm taking a vacation!
muslix64 is offline   Reply With Quote
Old 2nd January 2007, 22:16   #244  |  Link
muslix64
Registered User
 
Join Date: Dec 2006
Posts: 35
Here it is...

Ok, here it is, BackupHDDVD V1.00!

What's new in this version?

- Volume key support
- Partial resume of an interrupted decryption session
- New file format and file name for key database file.

The key database file is now KEYDB.cfg

You can download it here:

http://rapidshare.com/files/9942683/...DV100.zip.html
http://z13.zupload.com/download.php?...filepath=59843


File name: BackupHDDVDV100.zip
File size: 22,429 bytes
SHA1 hash: 0d938a376133dfaf78ec47e6d41201d553a6bb81


This may be my last post here.

I'm going to have a rest for a while.

Take care everyone and wish me good luck!
muslix64 is offline   Reply With Quote
Old 2nd January 2007, 22:22   #245  |  Link
Sy
Registered User
 
Sy's Avatar
 
Join Date: Feb 2002
Posts: 44
Nice! Thanks for your hard work... will be interesting to see where your efforts lead.
__________________
Sometimes I sit and think... and sometimes I just sit...
Sy is offline   Reply With Quote
Old 2nd January 2007, 22:23   #246  |  Link
jp110099
Registered User
 
Join Date: Aug 2002
Posts: 34
Thanks for the great program! I hope to get an xbox360 hd-dvd player soon.
jp110099 is offline   Reply With Quote
Old 2nd January 2007, 22:28   #247  |  Link
zeroprobe
Registered User
 
Join Date: Jan 2002
Posts: 155
any programs that helped you on your way?
zeroprobe is offline   Reply With Quote
Old 2nd January 2007, 22:39   #248  |  Link
Adub
Fighting spam with a fish
 
Adub's Avatar
 
Join Date: Sep 2005
Posts: 2,699
You rule Muslix64! Go and have a great vacation.
__________________
FAQs:Bond's AVC/H.264 FAQ
Site:Adubvideo
Adub is offline   Reply With Quote
Old 2nd January 2007, 22:40   #249  |  Link
BUZZARD1
Registered User
 
Join Date: Dec 2001
Location: nashville
Posts: 20
Where do I go to get the drivers for my xbox360 hd-dvd drive? Also can some one confirm if power dvd 7.2 works with this or must I use 6.5.
__________________
bing the dvd's out and lets go to town! im always striving to get around buying a dvd burner!

i love www.doom9.org
BUZZARD1 is offline   Reply With Quote
Old 2nd January 2007, 22:41   #250  |  Link
zeroprobe
Registered User
 
Join Date: Jan 2002
Posts: 155
again the keys are not posted, you gotta find them.
zeroprobe is offline   Reply With Quote
Old 2nd January 2007, 22:47   #251  |  Link
Sy
Registered User
 
Sy's Avatar
 
Join Date: Feb 2002
Posts: 44
Quote:
Originally Posted by BUZZARD1 View Post
Where do I go to get the drivers for my xbox360 hd-dvd drive? Also can some one confirm if power dvd 7.2 works with this or must I use 6.5.
You can always google "xbox 360 hd-dvd drive windows drivers"

We can confirm that PowerDVD can read EVO files but nobody has yet confirmed that that is the program that you need to use to extract the volume keys or title keys needed to decrypt the video.
__________________
Sometimes I sit and think... and sometimes I just sit...
Sy is offline   Reply With Quote
Old 2nd January 2007, 22:57   #252  |  Link
noclip
Registered User
 
Join Date: Dec 2006
Posts: 154
Great job muslix64!

As for the key, if it's not in memory it has to be in the CPU registers, right?
noclip is offline   Reply With Quote
Old 2nd January 2007, 23:10   #253  |  Link
milh31
Registered User
 
Join Date: Dec 2004
Posts: 3
muslix64 delivered what he promised

Dude thanks
milh31 is offline   Reply With Quote
Old 2nd January 2007, 23:46   #254  |  Link
zeroprobe
Registered User
 
Join Date: Jan 2002
Posts: 155
it really is frustrating lol

its batman without robin
tea without sugar


Great work though, alot of effort gone in to it.
zeroprobe is offline   Reply With Quote
Old 2nd January 2007, 23:47   #255  |  Link
hechacker1
Registered User
 
Join Date: May 2006
Posts: 4
I was reading the AACS spec sheets and found something interesting.

There is less than 1MB of space to store the revoked keys on any hd-dvd disc (at least in this revision of the spec). Which means in theory, if you succeed in getting enough keys, and the AACS adds them to the revoke list, eventually they will run out of space!

I think.. I am just trying to understand muslix64 comments by actually dwelling into the AACS spec.

I also think Powerdvd's reply is BS because they know they goofed up somewhere. We'll see if they suddenly push out an update. And as muslix64 said, the AACS spec doesn't require protection of the volume key, so it should always be obtainable, it's just a matter of the degree of difficulty.
hechacker1 is offline   Reply With Quote
Old 3rd January 2007, 00:06   #256  |  Link
DanITman
Registered User
 
Join Date: Dec 2006
Posts: 16
Not even a hint to where the keys are

Oh well, thanks for all your work. If this thing blows up from here you will go down as the pioneer who started it all.

Thanks Man!
DanITman is offline   Reply With Quote
Old 3rd January 2007, 00:29   #257  |  Link
lazyn00b
Registered User
 
Join Date: Feb 2003
Location: USA
Posts: 152
**** Sorry, but without even one working key this is nothing but speculation.

Sure, the BackupHDDVD program looks nice, but without verifiable proof that a volume key has been actually been extracted, this is nothing to get excited about.

Frankly, I now suspect that the youtube video is a hoax, and that muslix64 is just hoping against hope that some superhacker out there will figure out where PowerDVD HD hides the keys.

Last edited by Guest; 3rd January 2007 at 01:29. Reason: rule 4
lazyn00b is offline   Reply With Quote
Old 3rd January 2007, 00:40   #258  |  Link
noclip
Registered User
 
Join Date: Dec 2006
Posts: 154
The volume key has to be in the registers to calculate the CMAC value (and decrypt title keys). If you were to set a breakpoint on the routine that accesses the memory location of the CMAC, you would find the Volume key in the registers.
noclip is offline   Reply With Quote
Old 3rd January 2007, 00:57   #259  |  Link
BUZZARD1
Registered User
 
Join Date: Dec 2001
Location: nashville
Posts: 20
If anything

If anything it got the community really thinking togeather on how to come up with a solution. So cheers to that.
__________________
bing the dvd's out and lets go to town! im always striving to get around buying a dvd burner!

i love www.doom9.org
BUZZARD1 is offline   Reply With Quote
Old 3rd January 2007, 01:27   #260  |  Link
MaXiMuS
Registered User
 
MaXiMuS's Avatar
 
Join Date: May 2002
Posts: 139
Quote:
Originally Posted by muslix64 View Post
Ok, here it is, BackupHDDVD V1.00!

What's new in this version?

- Volume key support
- Partial resume of an interrupted decryption session
- New file format and file name for key database file.

The key database file is now KEYDB.cfg

You can download it here:

http://rapidshare.com/files/9942683/...DV100.zip.html
http://z13.zupload.com/download.php?...filepath=59843


File name: BackupHDDVDV100.zip
File size: 22,429 bytes
SHA1 hash: 0d938a376133dfaf78ec47e6d41201d553a6bb81


This may be my last post here.

I'm going to have a rest for a while.

Take care everyone and wish me good luck!


THANX !

eDiT
another mirror of BackupHDDVDV100.zip
__________________
iNTEL Q9300 - 4GB - 9800GT + MacMini iNTEL + MacBOOK iNTEL + MSiWind

Last edited by MaXiMuS; 3rd January 2007 at 01:46. Reason: mirroring
MaXiMuS is offline   Reply With Quote
Reply

Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump


All times are GMT +1. The time now is 09:50.


Powered by vBulletin® Version 3.8.11
Copyright ©2000 - 2024, vBulletin Solutions Inc.