Welcome to Doom9's Forum, THE in-place to be for everyone interested in DVD conversion.

Before you start posting please read the forum rules. By posting to this forum you agree to abide by the rules.

 

Go Back   Doom9's Forum > General > Decrypting

Reply
 
Thread Tools Search this Thread Display Modes
Old 30th May 2007, 06:19   #1  |  Link
arnezami
Registered User
 
Join Date: Sep 2006
Posts: 390
New Processing Key found!! (MKB v3 is now open)

I guess its official now.

The new Processing Key was posted by BtCB on freedom to tinker about a week ago (release day +1).

its:

Code:
45 5F E1 04 22 CA 29 C4 93 3F 95 05 2B 79 2A B2
Save it. Store it.

This opens up all newly released (and many to be released) HD DVD and Blu-ray discs. Wanna understand: go here.

Regards,

arnezami

PS. I strongly advise everybody who knows how it was retrieved not to talk about it publicly.

-- Btw: To get a VUK you first need to get the Volume ID of the disc (there are several ways). If you have that you can use aacskeys with this Volume ID as input. --

Last edited by arnezami; 30th May 2007 at 18:16.
arnezami is offline   Reply With Quote
Old 30th May 2007, 07:05   #2  |  Link
zeroprobe
Registered User
 
Join Date: Jan 2002
Posts: 155
damn I need a new jacket.

Who dares to post it on digg lol. Would surely start another riot.

Last edited by zeroprobe; 30th May 2007 at 07:10.
zeroprobe is offline   Reply With Quote
Old 30th May 2007, 08:23   #3  |  Link
Zotty
Registered User
 
Join Date: Sep 2006
Posts: 110
Nice one, thank you!

Oooh these are the moments I hate going to work. I'd rather stay home and play around with this new 'toy'
Zotty is offline   Reply With Quote
Old 30th May 2007, 09:27   #4  |  Link
bob0r
Pain and suffering
 
bob0r's Avatar
 
Join Date: Jul 2002
Posts: 1,337
Quote:
BtCB Says:

May 23rd, 2007 at 4:02 am
Here’s mine:

45 5F E1 04 22 CA 29 C4 93 3F 95 05 2B 79 2A B2

What are the odds that this is the new processing key?

...
Priceless
bob0r is offline   Reply With Quote
Old 30th May 2007, 20:28   #5  |  Link
jetsetter
Registered User
 
Join Date: Feb 2007
Posts: 1
Quote:
Originally Posted by bob0r View Post
Priceless
Yes. Nice way to post that. I suppose future keys will require ever-more-subtle leaks onto the webs.
jetsetter is offline   Reply With Quote
Old 30th May 2007, 12:56   #6  |  Link
FoxDisc
Registered User
 
Join Date: Jan 2007
Posts: 274
Quote:
Originally Posted by arnezami View Post
PS. I strongly advise everybody who knows how it was retrieved not to talk about it publicly.
BtCB made it clear where it came from. He used Ed Felten's automatic key assignment proggie on that web page. Wow! It's amazing that he happened to be assigned a valid PK! I wonder what the chances are that it will happen again..... say shortly after the next revocation.
FoxDisc is offline   Reply With Quote
Old 3rd June 2007, 04:07   #7  |  Link
Galileo2000
Registered User
 
Join Date: Jan 2007
Posts: 224
Quote:
Originally Posted by FoxDisc View Post
BtCB made it clear where it came from. He used Ed Felten's automatic key assignment proggie on that web page. Wow! It's amazing that he happened to be assigned a valid PK! I wonder what the chances are that it will happen again..... say shortly after the next revocation.
@FoxDisc:
I love this post. I love Ed Felten's automatic key assignment on the web page.

Now it is clear how the key was obtained.

Chances are high the key will be obtained again pretty soon using the same assignment.

Last edited by Galileo2000; 3rd June 2007 at 13:13.
Galileo2000 is offline   Reply With Quote
Old 30th May 2007, 13:13   #8  |  Link
mixanobios
Registered User
 
Join Date: Oct 2001
Location: Crete, Greece
Posts: 33
i wonder if i can get next week's lotto numbers using the same tool
mixanobios is offline   Reply With Quote
Old 30th May 2007, 13:44   #9  |  Link
zeroprobe
Registered User
 
Join Date: Jan 2002
Posts: 155
aacs la must be really unlucky, whats are the odds of that happening lol.

Last edited by zeroprobe; 30th May 2007 at 14:38.
zeroprobe is offline   Reply With Quote
Old 30th May 2007, 14:50   #10  |  Link
FoxDisc
Registered User
 
Join Date: Jan 2007
Posts: 274
Quote:
Originally Posted by arnezami View Post
I strongly advise everybody who knows how it was retrieved not to talk about it publicly.
On a more serious note, let's look at what the disclosure of this PK tells the AACS LA about where it came from:

The AACS LA knows the content of the last MKB (can anyone tell me where the "V3" number comes from? Is it built into the MKB?) The last MKB had only 15 S-D sets that matched 15 DKs and 15 PKs (these 15 are in the software branch - there are another 511 non-software branches). Presumably, this PK is one of the 15. Some of the 15 are as small as a single device. One of them is huge (about 2^22), but I strongly suspect that this is not that big set. I'll guess that this PK is one of the other 14, all of which fall within 128 devices. By matching this PK to the MKB released, they narrow the device down, and may have pinpointed it.

Even if the group that matches this PK is not a single device, they may be able to narrow it further. A processing key corresponds to a device key. A device key corresponds to a specific subset difference set, i.e., a specific node on a specific "floor" of the entire tree. The LA knows the matching floor and node numbers. They also know that the matching DK can only be calculated from DKs on this floor that are on the binary tree above this node. Finally they know which DKs have been given out. They may be able to narrow the device down if not all DKs that can calculate this PK have been assigned.

I'd like to know which of these groups match the PK just disclosed. It's something the LA already knows, and it's something that could be calculated with a moderate bit of effort.

Code:
umask:uv number
05:0000001C
03:0000002A
05:00000028
03:00000046
02:00000049
02:0000004F
02:00000055
02:0000005B
03:00000069
05:00000068
02:00000085
02:0000008B
04:00000091
07:00000090
17:00000080

Last edited by FoxDisc; 30th May 2007 at 16:21.
FoxDisc is offline   Reply With Quote
Old 30th May 2007, 15:02   #11  |  Link
mrazzido
Registered User
 
mrazzido's Avatar
 
Join Date: Jan 2007
Posts: 114
wow very great! i hope i get some days new european bluray disc with new keys. then i check this.
mrazzido is offline   Reply With Quote
Old 30th May 2007, 15:10   #12  |  Link
Bystander
Registered User
 
Join Date: Jan 2007
Posts: 45
Attempting to decrypt my Pirates of the Caribbean: Dead Man's Chest with new info.

New Proessing key works. However, it is required to copy the Certificate folder as well as BDMV folder.

Used fetchvidbr to get vid, then inserted the new processing key into the simple.txt file for aacskeys. Then used aacskeys to calculate the hash and vuk while using the vid in the command line args. Then inserted into DumpHD database and presto.

Last edited by Bystander; 30th May 2007 at 16:42.
Bystander is offline   Reply With Quote
Old 30th May 2007, 15:19   #13  |  Link
Sirber
retired developer
 
Sirber's Avatar
 
Join Date: Oct 2002
Location: Canada
Posts: 8,978
already on digg

http://digg.com/security/455FE10422C...Processing_Key
__________________
Detritus Software
Sirber is offline   Reply With Quote
Old 30th May 2007, 16:05   #14  |  Link
FoxDisc
Registered User
 
Join Date: Jan 2007
Posts: 274
Quote:
Originally Posted by arnezami View Post
The new Processing Key was posted by BtCB on freedom to tinker about a week ago (release day +1).
This is a side note to Slysoft, who I expect monitors this forum. It's in the interest of Slysoft to disclose the Processing Key they have uncovered as soon as they release their software.

If Slysoft does not release the PK they are using, someone here will sooner or later uncover and release a PK. Notice how quickly BtCB had this PK. He published it on release day +1, and may have had it before then. If BtCBs PK is the same one that Slysoft is using in AnyDVD, there's no harm, but what if they are different? If there are two holes, both will get plugged in the next round of cat vs. mouse (IMHO, the LA looks like the poor mouse right now.) It would be better for Slysoft not to have both holes plugged. They may even have found the same PK released here, but used another one and by not publicly disclosing the one they use in their software, they lose this PK as a backup for the next round.

I'd also like to point out that it's in the best interest of fair use lovers here for Slysoft to copy and use any PK released here, if it's released before Slysoft releases their own software, and for any PK released by Slysoft to be used in software released here. No one should complain about such behaviour from Slysoft or open source software authors - for the same reason - there's just no benefit to having two or more PKs released and two or more exploits closed on every round.

My .02
FoxDisc is offline   Reply With Quote
Old 31st May 2007, 00:09   #15  |  Link
mlansell
Registered User
 
Join Date: Mar 2005
Posts: 32
Quote:
Originally Posted by FoxDisc View Post
there's just no benefit to having two or more PKs released and two or more exploits closed on every round.
Or they could just not release their key and the danger of two being "out there" and revoked together doesn't even come up.

I really don't see how them releasing their key helps them in any way, and seeing as theirs is a comercial operation, it's not reasonable to expect them to release keys just to be nice to us.

Mal
mlansell is offline   Reply With Quote
Old 31st May 2007, 01:40   #16  |  Link
FoxDisc
Registered User
 
Join Date: Jan 2007
Posts: 274
Quote:
Originally Posted by mlansell View Post
Or they could just not release their key and the danger of two being "out there" and revoked together doesn't even come up.
They can't "just not release their key." When they release their software, the LA immediately knows what key Slysoft has found. and they'll revoke it on the next round. The LA already knows the key - all they have to do is see which of the C-records AnyDVD accesses. It takes them ten minutes of work. Nothing Slysoft does can hide it.

Quote:
I really don't see how them releasing their key helps them in any way,
Then you didn't read/understand my post.

Quote:
and seeing as theirs is a comercial operation, it's not reasonable to expect them to release keys just to be nice to us.
Mal
It's not "just to be nice to us" - it's in their own best interest. They lose two possible exploits instead of a single one if they don't. They may lose one of their own backup keys if they don't.
FoxDisc is offline   Reply With Quote
Old 31st May 2007, 07:04   #17  |  Link
mlansell
Registered User
 
Join Date: Mar 2005
Posts: 32
Quote:
Originally Posted by FoxDisc View Post
They can't "just not release their key." When they release their software, the LA immediately knows what key Slysoft has found. and they'll revoke it on the next round. The LA already knows the key - all they have to do is see which of the C-records AnyDVD accesses. It takes them ten minutes of work. Nothing Slysoft does can hide it.
I don't yet understand how the key stuff works, but couldn't they just access all the C-records, or at least a lot of them, to hide the one they are really using?

Quote:
It's not "just to be nice to us" - it's in their own best interest. They lose two possible exploits instead of a single one if they don't. They may lose one of their own backup keys if they don't.
But that relies on a random bunch of people unconnected with their operation to not release any other keys they find - do you think that likely? Will people here really not bother to go after other keys, if Slysoft released theirs? We've seen with the latest key that it doesn't stay quiet long when a new one is found...

Mal
mlansell is offline   Reply With Quote
Old 31st May 2007, 12:51   #18  |  Link
FoxDisc
Registered User
 
Join Date: Jan 2007
Posts: 274
Quote:
Originally Posted by mlansell View Post
I don't yet understand how the key stuff works, but couldn't they just access all the C-records, or at least a lot of them, to hide the one they are really using?
That wouldn't slow them down much. AnyDVD can only decrypt the title with one valid C-record. AACS LA can just keep munging different C-records until AnyDVD fails.

Quote:
But that relies on a random bunch of people unconnected with their operation to not release any other keys they find - do you think that likely? Will people here really not bother to go after other keys, if Slysoft released theirs? We've seen with the latest key that it doesn't stay quiet long when a new one is found...
You are right that there's some temptation to disclose a new PK once it's found, but as long as there's at least one public PK that works, the temptation can be resisted more easily. If it's not released, and not revoked the next round, whoever found it can release it on 0-day of the next MKB revocation and look like a hero.
FoxDisc is offline   Reply With Quote
Old 31st May 2007, 07:04   #19  |  Link
arnezami
Registered User
 
Join Date: Sep 2006
Posts: 390
Quote:
Originally Posted by FoxDisc View Post
This is a side note to Slysoft, who I expect monitors this forum. It's in the interest of Slysoft to disclose the Processing Key they have uncovered as soon as they release their software.

If Slysoft does not release the PK they are using, someone here will sooner or later uncover and release a PK. Notice how quickly BtCB had this PK. He published it on release day +1, and may have had it before then. If BtCBs PK is the same one that Slysoft is using in AnyDVD, there's no harm, but what if they are different? If there are two holes, both will get plugged in the next round of cat vs. mouse (IMHO, the LA looks like the poor mouse right now.) It would be better for Slysoft not to have both holes plugged. They may even have found the same PK released here, but used another one and by not publicly disclosing the one they use in their software, they lose this PK as a backup for the next round.

I'd also like to point out that it's in the best interest of fair use lovers here for Slysoft to copy and use any PK released here, if it's released before Slysoft releases their own software, and for any PK released by Slysoft to be used in software released here. No one should complain about such behaviour from Slysoft or open source software authors - for the same reason - there's just no benefit to having two or more PKs released and two or more exploits closed on every round.

My .02
You are right that it would be in the best interest of us and Slysoft if they (in the future) would use an already Processing Key if that key has been released before their own product (with their new key) has not yet been released.

The same is true for us: if they release their key (ehm program) we should use that one. We shoud find one on our own but use theirs. But since it is not known which key they are using its simlply a guess: its possible we find a different Processing Key then they have which (if posting that one) would be a waste: two players instead of one player would be instructed to harden their product.

In order to make sure we release the same key either Slysoft has to tell someone (privately) over here from where they got their key (they wouldn't have to give it away) or we have to ask SlySoft privately whether our to be released key is the same as theirs or we have to figure it out ourselves. Which would take extra time. This would indeed benefit both us and them. To prevent multiple keys from being out there.

On the other hand: the ACCS LA pretty much revoked all players this time so they may do this the next time aswell. But not all players will be ordered to harden themselves so I think this is an important issue. Maybe we should talk with SlySoft about this .

Of course if next time we find the key(s) first this won't be an issue at all .

Regards,

arnezami

PS. A program cannot hide which Device/Processing Key(s) its using. Not from the AACS LA anyway.

Last edited by arnezami; 1st June 2007 at 08:29.
arnezami is offline   Reply With Quote
Old 30th May 2007, 16:53   #20  |  Link
evdberg
Registered User
 
Join Date: Dec 2006
Posts: 202
@FoxDisc,

According to my (updated) MKB tool the media key is found at entry 4 (zero-based, so the 5th entry).

Quote:
can anyone tell me where the "V3" number comes from?
It is stored in a long word at offset 8 in the beginning of the file (in the 'Type and Version' section to be precise).

Last edited by evdberg; 30th May 2007 at 17:02.
evdberg is offline   Reply With Quote
Reply

Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump


All times are GMT +1. The time now is 09:52.


Powered by vBulletin® Version 3.8.11
Copyright ©2000 - 2024, vBulletin Solutions Inc.