Mediatek does not have HD-DVD players (yet) , the current one is Toshiba which is basically PC which makes it easier to hack in.

The problem can be the OS they use, if it's something of their own if will be really hard to hack but if it's Windows or Linux based ... ;)


And all this 64 keys must to be in the player firmware, no?

Mtz , you not really fully understend what you talking about :)
Title keys is different from player keys , different from volume keys.

I knew that Mediatek not producing yet (or ever). But this Toshiba have a firmware.

enjoy,
Mtz

Then switch to some kind of darknet.
TOR hidden services or Freenet websites should do.
Or perhaps I2P. The "Off Topic" area of the I2P forums would be one place to start a thread to discuss further communications options, while keeping the doom9 thread "on-topic." :) There may be other I2P sites that would be appropriate and I2P seems to be working better, of late, and could certainly use more users. But yes, it would be nice if someone could anonymously host a forum using Tor hidden services or I2P.

I've been chomping at the bit to post (had to wait 5 days after registering).

I'm very surprised that muslix64 has been taken so seriously on the flimsiest of evidence. I actually had to laugh when I saw that Reuters had picked up the story. Granted, muslix64's story could be legit, but so could anyone else making the claim and offering no evidence. It's nice to see a few more doubters over the last few days.

Don't be fooled by some code that hashes the title key file and then twiddles bits. The code could be 100% legitimate and fully capable of decrypting the movie, but what does that prove other than that muslix64 was able to put together a java app using some standard decryption libraries.

I'm also bothered by the vague references to finding the key in memory. Why not be more specific? Why not say when X function is called the stack contains the key, etc? Why conveniently pop up, answer no question, conveniently pop up again, answer no question, then conveniently take a vacation? He says that the key was easy to find, so could this be the reason he didn't think he needed to offer any more help? If so, one would think someone else having the decrypt code all done for them could have verified the story.

Would anyone have taken this story very seriously if it were just a video on youtube? If not then you probably shouldn't be taking it seriously, because that's basically all it is. What muslix64 has added is some unverifiable code (without the key it does noting useful) and he has popped into this forum and said virtually nothing. So what do we have as evidence? I'd say nothing.

I've looked at some of the calls to crypto routines in the DLL mentioned earlier in the thread. All I see is some stuff doing secure key exchanges and key BLOBs (which you can search for on MSDN). I don't claim to know how this stuff works or how you could ever use a key without it being in the clear in memory at some point unless the decryption is done in hardware. What hardware would that be, though? What are the hardware requirements for HD and BD DVD? Does it require a video card with HDCP to play at all and if so is the decryption done in hardware on the card?

The PowerDVD people claim the key is not kept in memory. Could they be lying? Yes, but if so they'll eventually be caught in a lie. Since keeping the key in memory would be an obvious and huge security hole, their story seems more believable than muslix64's claim (which he offers no evidence for).

Another question I would have for muslix64 if he weren't "taking a vacation" is, why hash the entire key file in the first version of his app? Couldn't the encrypted title key in that file have been used as an ID avoiding the sha1 hash? Was it simply a design choice?

Does it require a video card with HDCP to play at all and if so is the decryption done in hardware on the card?No. An HDCP capable card is not required. However, the VGA output res may be scaled down. Given that a specific card is not required, it's doubtful the card plays a role in decryption.

The PowerDVD people claim the key is not kept in memory. Could they be lying? Yes, but if so they'll eventually be caught in a lie. Since keeping the key in memory would be an obvious and huge security hole, their story seems more believable than muslix64's claim (which he offers no evidence for).Well--how many places have we identified as potential places to find the key (regardless of liklihood)?

1. Main DRAM memory. (The obvious place).
2. Files/Registry.
3. CPU Cache (unlikely to remain there--under Windows memory mgmt.) Disable cache.
4. CPU Registers (ultimately and fleetingly, a certainty)
5. FPU Registers (at 80 bits maximum, how likely?)
6. Swap files. Disable virtual memory.
7. On the HD-DVD drive. (Seems unlikely across the USB interface and do drives have any volatile/flash memory?)

Another question I would have for muslix64 if he weren't "taking a vacation" is, why hash the entire key file in the first version of his app? Couldn't the encrypted title key in that file have been used as an ID avoiding the sha1 hash? Was it simply a design choice?The answer should be in the AACS spec but the problem may be in deciding which title key to use to ID the disc. Title keys could be "mix and match," depending on manufacture and origin. Better to ID using all the keys to determine an ID match. (Not referring to the AACS "ID" here.)

Simply put, for any decryption to be done a key must be kept somewhere in either memory or the CPU registers. Even if it's obfuscated in memory it must be in the clear in the CPU's registers at some point.

My take on the possible locations:

1. Main DRAM memory. (The obvious place).
Cyberlink denies it but they have a pretty big vested interest. This is very likely.
2. Files/Registry.
At the lowest level, the key would still have to be loaded into memory and ultimately registers to use it, so this possibility can be ignored with 100% certainty.
3. CPU Cache (unlikely to remain there--under Windows memory mgmt.) Disable cache.
Unless Cyberlink developers are on crack, we can be sure it's not here.
4. CPU Registers (Ultimately and fleetingly, a certainty)
A breakpoint on the decryption routine would discover it here, this should be the top priority.
5. FPU Registers (at 80 bits maximum, how likely?)
Can be safely assumed not to be the case.
6. Swap files. (Disable virtual memory.
This should be pursued as a second priority after CPU registers.
7. On the HD-DVD drive. (Seems unlikely across the USB interface.)
Extremely unlikely. I almost want to say it can be safely ignored.

The answer should be in the AACS spec but the problem may be in deciding which title key to use to ID the disc. Title keys could be "mix and match," depending on manufacture and origin. Better to ID using all the keys to determine an ID match. (Not referring to the AACS "ID" here.)

Yeah reading the doc is what caused me to ask the question. Upon revisiting it I see that there are/can be multiple keys (up to 64?), so I suppose just hashing the entire file might be easier.

(WRT: files/registry)
At the lowest level, the key would still have to be loaded into memory and ultimately registers to use it, so this possibility can be ignored with 100% certainty.My point here isn't about any single location, but yes, there are places that can be ignored without precluding the finding of a solution. However, should they be ignored? Some places are easier to observe than others. Most commercial binary code isn't all that easy to observe and debug--even with SoftICE. Both observability and probability should be considered. :)

No. An HDCP capable card is not required. However, the VGA output res may be scaled down. Given that a specific card is not required, it's doubtful the card plays a role in decryption.


I just wanted to comment on this part. I attempted to play an HD-DVD using the same exact software as seen in the YouTube video. When I load the movie and push play the Universal logo starts to come up (the one with the globe and sun beams) a few seconds into this small clip the movie shuts down and gives me a message that says I cannot view the video due to certain restrictions. So it actually doesn't even downsize the resolution, it just won't let you view it. I assume this is when some sort of HDCP checks are taking place.

I am willing to do more research from here if people are willing to help me. I am running the same exact setup as the youtube video shows except I don't have copies of the movies that were used. I have a copy of Data Rescue Pro but I have no clue how to use it.

7. On the HD-DVD drive. (Seems unlikely across the USB interface and do drives have any volatile/flash memory?)

As far as i know, the xbox 360 HD-DVD addon, does come with some flash memory, if you plug it into windows, its meant to show up 2 devices (1 the drive, and 1 memory)

EDIT - These are the 2 devices which show up when plugging into a mac/pc

XBOX 360 HD DVD Memory Unit
XBOX 360 HD DVD Player

Well--how many places have we identified as potential places to find the key (regardless of liklihood)?

1. Main DRAM memory. (The obvious place).
2. Files/Registry.
3. CPU Cache (unlikely to remain there--under Windows memory mgmt.) Disable cache.
4. CPU Registers (ultimately and fleetingly, a certainty)
5. FPU Registers (at 80 bits maximum, how likely?)
6. Swap files. Disable virtual memory.
7. On the HD-DVD drive. (Seems unlikely across the USB interface and do drives have any volatile/flash memory?)


I think we can ignore all of those places other than RAM if we are to believe muslix64, because he said 1) it's in RAM and 2) it's easy to find (which implies that it probably isn't obfuscated).

If we aren't to believe him then we're at square one. We don't even know which player, if any, is a viable target. Personally, I think we are at square one.

I'm interested in the secure key exchange stuff. I've just started reading the AACS docs which so far haven't given me a clear picture of the sequence of event's which occur when a movie is played using a PC. Is it possible that the primary decryption is done inside the HD-DVD drive and the secure key exchange is for streaming encrypted compressed video to the player using the player's public key?

Guess it's time to help you guys out ...

So far we know that somewhere in the vast place that makes up the memory of our computers there must be a code piece that feeds keys into a decryption algorithm. These keys may or may not be "in the open", i.e. residing in unprotected data pages. One possible attack vector might be to inspect the kernel mode driver that Cyberlink PowerDVD 7.x installs.

However, the biggest challenge so far has been to identify the key data portion (volume/title/etc). It seems that some people in this and various other boards - most of them being of the non-technical nature - believe that Cyberlink conveniently stored them in memory as an easily detectable string, like "YO HAX0R DIS IZ DA KEY: 8F902A...". Not so. The key is a sequence of 8-bit values with no deterministic characteristic, i.e. it will look completely random (in the cryptographical sense).

But all hope is not lost. The biggest strength of AACS - relying on proven and secure cryptography - is also its weakness. What muslix64's code, unfortunately, obfuscated due to its reliance on a Java-internal cryptography library is the fact that AES-128 (or AES-Rijndael, as it is called) uses - apart from some discrete algebra - several sets of constants, namely:


the Rijndael round constants Rcon in the Rijndael key schedule: http://en.wikipedia.org/wiki/Rijndael_key_schedule
the Rijndael S-box http://en.wikipedia.org/wiki/Rijndael_S-box


These constant sequences must occur in every implementation of AES-Rijndael since AACS mandates the use of standard implementations of AES-Rijndael.

So start looking for occurences of 0x637c777b or 0x8d010204 (possibly with reverse byte-order), and trap/breakpoint the code that uses that data, then you'll have found the AES-128 decryption routines. The Rijndael key schedule is especially noteworthy since it's being fed the decryption key directly ...

the movie shuts down and gives me a message that says I cannot view the video due to certain restrictions. Did you try disabling video acceleration in the player? I remember reading that hint somewhere.

If we believe all this to be true, doesn't the author say in memory numerous times? I can't imagine he wouldn't say registers, if in registers, etc

i.e.

from post 244

The AACS spec says "Device keys must be protected!" so I suppose they put more effort in protecting these keys then the volume key in memory.

again in the saga.txt

December 13:

Now I focus only on title key. I was very surprise to realize that the title key is there, in memory! Can it be
that easy? I don't believe it. Around 7PM, I decrypt my first movie "pack". Around 11PM, I have now a totally decrypted
movie! But there is a problem. Frame skipping.

Then there is the problem with

* Secondly, PowerDVD does not keep "Title Keys" in system memory. Cyberlink is not sure how the user got the Title Key and notes that the released tool nor the video on YouTube provides the information on obtaining the Titles Keys.

So how many software players are compliant if it wasn't powerDVD, (can't be that many available yet)? Of course they mention nothing of volume unique key...

I suppose it would help if we knew the experience level of our poster.

It took me about a week to do. But I have wasted few days
trying to work on too complicated approach. In fact, it is very simple.

Simple for who? Someone with years of assembly language understanding? Someone who has studied encryption? etc

He seems to drop a hundred hints

-How do you extract title/volume keys?

I won't explain it in detail. Read the AACS doc first. You will understand.
The title keys are located on the disk in encrypted form, but for a
content to be played, it has to be decrypted! So where is the
decrypted version of the title/volume keys? Think about it...

or

There is 3 important things in cryptography:

1-Private key protection
2-Private key protection
3-Private key protection


but I have browsed through all the documents/specs, and volume unique keys descriptions are all over the place, in this document and in that one. It could be all a joke, but very elaborate none the less, he would have done alot of studying to not have made a mistake that one of us would have found by now.

PowerDVD 6.5 must be used to do this, none later.

PowerDVD 6.5 must be used to do this, none later.

You speak from experience or you read that somewhere?

It's a puzzle that Muslix64 invited us to join...
Every one could had a piece...
Who's the guilty????
All the community!!!

So, All the comummunity can't go to jail...

He He He...

Someone can say:
BD you're the next in the list...

i can't believe there is so much speculation and hype about this HD-DVD decrypter that muslix64 has written.

all the guy did was write an implementation of an AACS decrypter in java, and he posted the source code. THIS IS NOT A DIFFICULT THING TO DO FOLKS-- YOU CAN DOWNLOAD THE DAMN SPEC FROM A PUBLIC WEBSITE FOR GODS SAKE. since i am a software engineer, i would write same damn program in a week too, and so could every other software engineer in the world worth his salt.

ah but there is more to the story. muxlix64 goes on to claim that he's extracted volume keys from his HD-DVD disks-- now that is one hell of a claim and actually takes some skill. BUT HE PROVIDES NOT ONE SHRED OF PROOF THAT HE'S ACTUALLY DONE THIS. anyone with a camcorder could make a you-tube movie with a blacked-out text screen where one claims to have secret volume keys.

until someone provides real evidence that they can reliably extract volume keys from an HD-DVD player, this whole damn thread is all one gigantic waste of time.

let's recap:
muslix64: i wrote an aacs decrypter.
me: *yawn*
muslix64: and i've extracted volume keys from my HD-DVD's
me: wow that's amazing, show me.
muslix64: no
me: *yawn*

lol...lots of new posters on the board now.

Who's the guilty????
All the community!!!

So, All the comummunity can't go to jail...

WRONG, the Studios, Hollywood, DRM, MPA, Buena Vista, etc, they're the one to blame. Why they created such unfair system? Why not to sell those HD discs for $3 bucks or less?

They're selling less now the DVD can be copied? HELL NO! In fact, they never sold so much before!! :sly:

I just wanted to comment on this part. I attempted to play an HD-DVD using the same exact software as seen in the YouTube video. When I load the movie and push play the Universal logo starts to come up (the one with the globe and sun beams) a few seconds into this small clip the movie shuts down and gives me a message that says I cannot view the video due to certain restrictions. So it actually doesn't even downsize the resolution, it just won't let you view it. I assume this is when some sort of HDCP checks are taking place.

I got this same result using my Dell 700 Inspiron. On "The Thing" the Universal Logo plays for a few seconds then gives the message "this content is protected, playback cannot continue." This is with Power DVD 6.5. I wouldn't think HDCP would be relevant on a laptop?

Did you try disabling video acceleration in the player? I remember reading that hint somewhere.

Negative, it didn't help. Still got the same error.

I'm interested to figure out why this error is occurring. Maybe I'll try to do a memory dump right when I get the error to see if I can find anything.

Negative, it didn't help. Still got the same error.

I'm interested to figure out why this error is occurring. Maybe I'll try to do a memory dump right when I get the error to see if I can find anything.

do you have the dvi connected to something aswell as the vga?

i had the same issue until you unplug one and have only one output out of the card.

i had the same issue over hdmi gcard which i had connected via vga to my monitor aswell.... another hassle this HDCP will now cause me as i have to pull the vga to watch over hdmi to my plasma tv.... i aint buying anymore hd-dvd's until this is sorted out either...

I got this same result using my Dell 700 Inspiron. On "The Thing" the Universal Logo plays for a few seconds then gives the message "this content is protected, playback cannot continue." This is with Power DVD 6.5. I wouldn't think HDCP would be relevant on a laptop?


why would you think HDCP isnt relevant on a laptop? that is the main reason they want it is so you cant move it around. you need a HDCP monitor or screen and a HDCP video card.

the consumer has to take another movie industry move right up the ass...

If you want to see why powerdvd may not be playing HD-DVDs try downloading the Cyberlink HD Advisor. It will check your system and let you know what components you need to upgrade to achieve playback:

http://www.cyberlink.com/multi/support/bdhd_support/diagnosis.jsp

I wanted to try and search for the keys but according to this program I can't playback HD because I need to upgrade my 2 (SLI'd) Nvidia Quadro 4500's (~$2000) to a $200 FX7600GT :rolleyes: because it supports HDCP.

I can't wait till someone cracks this DRM/HDCP/AACS crap.

If you want to see why powerdvd may not be playing HD-DVDs try downloading the Cyberlink HD Advisor. It will check your system and let you know what components you need to upgrade to achieve playback:

http://www.cyberlink.com/multi/support/bdhd_support/diagnosis.jsp

I wanted to try and search for the keys but according to this program I can't playback HD because I need to upgrade my 2 (SLI'd) Nvidia Quadro 4500's (~$2000) to a $200 FX7600GT :rolleyes: because it supports HDCP.

I can't wait till someone cracks this DRM/HDCP/AACS crap.

please tell me you do CAD work lol.

Also, easy to find out where the crypto is in those files.

I think we have some clues here:

If we believe all this to be true, doesn't the author say in memory numerous times? I can't imagine he wouldn't say registers, if in registers, etc

i.e.

from post 244
The AACS spec says "Device keys must be protected!" so I suppose they put more effort in protecting these keys then the volume key in memory.

again in the saga.txt

Quote:
December 13:

7. On the HD-DVD drive. (Seems unlikely across the USB interface and do drives have any volatile/flash memory?)

Now I focus only on title key. I was very surprise to realize that the title key is there, in memory! Can it be
that easy? I don't believe it. Around 7PM, I decrypt my first movie "pack". Around 11PM, I have now a totally decrypted
movie! But there is a problem. Frame skipping.

Then there is the problem with

Quote:
* Secondly, PowerDVD does not keep "Title Keys" in system memory. Cyberlink is not sure how the user got the Title Key and notes that the released tool nor the video on YouTube provides the information on obtaining the Titles Keys.

So how many software players are compliant if it wasn't powerDVD, (can't be that many available yet)? Of course they mention nothing of volume unique key...

I suppose it would help if we knew the experience level of our poster.


I put this togheter with these 2 posts:


27th December 2006, 20:00 muslix64

I have a XBOX 360 external USB drive on my PC.



Yesterday, 23:38 toytown

As far as i know, the xbox 360 HD-DVD addon, does come with some flash memory, if you plug it into windows, its meant to show up 2 devices (1 the drive, and 1 memory)

EDIT - These are the 2 devices which show up when plugging into a mac/pc

XBOX 360 HD DVD Memory Unit
XBOX 360 HD DVD Player


No one reckons that the key is actually kept in the HD-DVD disc-reader itself (in its memory)?

Like the key they try to hack out of XBOX360 games (where an "ok"-signal is sent from the player to the rest of hardware when key is decrypted), they have used a hacked firmware to always send the "ok"-signal. I know this is not the same cryptation and security system. But the idea of having the disc-reader itself approve the disc would be the same.

In addition to the post above i also found this on a website:

From majornelson.com: If you have picked up the Xbox 360 HD DVD Player you have probably noticed that in addition to the unbelievable picture and sound quality, you now have 'HD DVD' as a new storage device section under Memory on your System Blade of your Xbox 360's Dashboard. I have gotten a few emails asking me what this is and more specifically if it can be used to store game content, arcade titles etc. The answer is you can't. You can only delete items from this memory area, not add them. In fact, games won't even 'see' this area...so for the most part you'll never come across it, but I wanted to explain exactly WHAT this area is. This memory area is part of the HD DVD spec and it only accessible by the Xbox 360 HD DVD player when using the advanced features of the HD DVD format. For example, if you lay down any bookmarks from the HD DVD's that you rent from from Netflix, then you'll use the Memory section of the System blade to delete that content, since it would stand to reason that you don't need the information again since you rented the disc. Unfortunately, none of the current HD DVD's properly tag their data..so for the short term all you'll see is 'Unknown Title.' Remember: Not every HD DVD has the same advanced features, so check the back of the HD DVD packaging (Example) to see what each title supports.

http://www.majornelson.com/archive/2006/11/16/xbox-360-hd-dvd-player-memory.aspx

This picture shows that the memory on the drive is about 200mb (enough for lots of titles)
http://www.flickr.com/photos/majornelson/298947903/

If you want to see why powerdvd may not be playing HD-DVDs try downloading the Cyberlink HD Advisor. It will check your system and let you know what components you need to upgrade to achieve playback:

http://www.cyberlink.com/multi/support/bdhd_support/diagnosis.jsp



That advisor says my monitor (Samsung SyncMaster 940BW 19") isn't HDCP, but everything I've read says it is. I hope the advisor is just wrong.

I think we have some clues here:



I put this togheter with these 2 posts:





No one reckons that the key is actually kept in the HD-DVD disc-reader itself (in its memory)?

Like the key they try to hack out of XBOX360 games (where an "ok"-signal is sent from the player to the rest of hardware when key is decrypted), they have used a hacked firmware to always send the "ok"-signal. I know this is not the same cryptation and security system. But the idea of having the disc-reader itself approve the disc would be the same.

I think you're on the right track here. Muslix64 said that it was very easy to get the key from memory. It makes perfect sense that the key is actually in the extra memory device that XP mounts, when the drive is attached.

But it probably also means that only Xbox360 HD drives will work, since internal drives will have this memory more hidden.

I think you're on the right track here. Muslix64 said that it was very easy to get the key from memory. It makes perfect sense that the key is actually in the extra memory device that XP mounts, when the drive is attached.

But it probably also means that only Xbox360 HD drives will work, since internal drives will have this memory more hidden.

I don't think that makes any sense at all. What good would the key do there. If the PC needs it for decrypting it needs to be in RAM or a register (something directly accessible by the CPU). If the drive does the decrypting it needs to be in the drive's memory or a hardware register.

Best hoax of 2006 - and maybe 2007.

(Don't worry, this is my final post in here)

If the drive does the decrypting it needs to be in the drive's memory ....

If I read the previous posts correctly, then this IS the drive's memory. The drive was made for the XBox360 and maybe this was the easiest way to implement the memory storage needed as per the HDDVD specs.

I think you're on the right track here. Muslix64 said that it was very easy to get the key from memory. It makes perfect sense that the key is actually in the extra memory device that XP mounts, when the drive is attached.

But it probably also means that only Xbox360 HD drives will work, since internal drives will have this memory more hidden.

This is highly unlikely. The extra memory is the memory in the HD-DVD drive that saves Bookmarks for films. You can bookmark a scene and it will save it for you so you can back to that scene when you put the disk in again. They would also be breaking critical AACS rules by doing this.

You are all talking about the Xbox360 HDDVD drive´s memory. Do you actually have one attached to your PC? If I remember correctly, when I connected the drive for testing some weeks ago, only a driver for reading the file system was found and installed, not for the memory unit etc. - those drivers were not delivered with the hacked driver package and could not be installed if I recall correctly. Everytime booting up XP asked for drivers for this...
Furthermore I was told, that this driver packages that went around in the net just included the UDF 2.5 drivers which you might also get if you install the latest Nero InCD version.
Unfortunately, I don´t have this drive anymore and neither can continue testing nor say for sure that there was no driver installed for the memory unit.

This is highly unlikely. The extra memory is the memory in the HD-DVD drive that saves Bookmarks for films. You can bookmark a scene and it will save it for you so you can back to that scene when you put the disk in again. They would also be breaking critical AACS rules by doing this.

I maybe was out of line, but it makes perfect sense.
Microsoft maybe never intended that some PC would read that memory..

This is gonna be good.

This is gonna be good.

Great first post. :D

Hi Guys

Here is a mirror for the Software
http://www.backuphddvd.net

I maybe was out of line, but it makes perfect sense.
Microsoft maybe never intended that some PC would read that memory..

1.) Yes, I actually have an Xbox 360 HD-DVD Drive

2.) MS is well aware that people were going to hook these up to PC's. Lets see.....it uses a standard USB cable and it's actually just a normal IDE HD-DVD drive inside a plastic hull.

If they didn't want people to hook these up to PC's they would have made it much harder to do.

You are all talking about the Xbox360 HDDVD drive´s memory. Do you actually have one attached to your PC? If I remember correctly, when I connected the drive for testing some weeks ago, only a driver for reading the file system was found and installed, not for the memory unit etc. - those drivers were not delivered with the hacked driver package and could not be installed if I recall correctly. Everytime booting up XP asked for drivers for this...
Furthermore I was told, that this driver packages that went around in the net just included the UDF 2.5 drivers which you might also get if you install the latest Nero InCD version.
Unfortunately, I don´t have this drive anymore and neither can continue testing nor say for sure that there was no driver installed for the memory unit.

Yes, I own one. It uses flash memory to keep track of bookmarks in movies. With the right drivers this flash memory can be read. I'm pretty sure if you take the time to hunt down drivers your going to find nothing in there. Toshiba would have never let this out of the door if they were trying to hide keys in there.

still think its not a HOAX then

try to play a hd dvd disc like muslix64 did by clicking on the file
'FEATURE_1.EVO'

all you get is a blank/black screen with no film footage and some
audio clicks/buzzes as not all of the keys are present.

to play a hd dvd disc you need to go to the 'ADV_OBJ' folder
then click on one of the 'VPLST000.XPL' files as this has the first key needed
to play the footage and is also the order in which the hd dvd disc plays.

Regards.

i think the video is fake. I just watched it again to see how it was directed and its done in the manner to hide certain things. I would say if we could see more of the file sizes at point 43 seconds to verify the file sizes from the previous points in the movie then we would know he didn't alter the drives.. Its pretty easy to name CD rom drives from F to G and so forth. Whos to say he didnt name his HD DVD rom G and copy it to his hard drive which is M:\ and then to fool everyone changed his hd dvd rom name to M and the HD back to something else?

My second post regarding Muslix64 nick. ;) musli > ilsum = "A function that counts the total number of true values in a vector declared LOGICAL. It returns zero if the number of elements, N, is less than one." Source. (http://techpubs.sgi.com/library/tpl/cgi-bin/getdoc.cgi?coll=0530&db=man&fname=/usr/share/catman/p_man/cat3/complib/ILSUM.z)
Even all this is a fake, this guy is smart.

enjoy,
Mtz

This is highly unlikely. The extra memory is the memory in the HD-DVD drive that saves Bookmarks for films. You can bookmark a scene and it will save it for you so you can back to that scene when you put the disk in again. They would also be breaking critical AACS rules by doing this.

I don't think the key is in the hd-dvd drive's memory either.

If the decryption was taking place in the hd-dvd drive, then the data sent from it would already be unencrypted. You could simply save that stream..?

lol, we need more hackers to actually try and debug the code (although I bet powerdvd's eula says something along the lines of not being allowed to reverse engineer their software)

...although I bet powerdvd's eula...

BAHAHAHAHAHAHAHAHA!

*breath*

AHAHAHAHAHAHAHAHAHA!

Seriously though, PowerDVD's EULA probably prohibits you from using it to watch movies. No doubt reading this thread, much less participating in it is a violation too.

Yes, I own one. It uses flash memory to keep track of bookmarks in movies. With the right drivers this flash memory can be read. I'm pretty sure if you take the time to hunt down drivers your going to find nothing in there. Toshiba would have never let this out of the door if they were trying to hide keys in there.

Actually Microsoft provides the drivers for the memory. If you are running windows XP go to windows update (http://windowsupdate.microsoft.com) and do a custon update. In the hardware section you will see: "xbox 360 hd dvd interface". From there you can install the drivers. I installed them on my laptop and it did not make the memory available as a hard drive or anything. In the system devices the ""xbox 360 hd dvd interface 0 & 1" is listed under the USB root hub section rather than showing up with the yellow exclamation point. I don't know where to go from here.... :confused:

Awwww No

Things just got a bit more difficult


Warner Bros., which helped popularize the DVD more than a decade ago, plans to announce next week a single videodisc that can play films and television programs in both Blu-ray and HD DVD, the rival DVD technologies.


http://news.com.com/New+disc+may+sway+DVD+wars/2100-1041_3-6147053.html

I must admit I've followed this thread since seeing info
posted on a news site.

Even on New Years eve I was on the phone with a colleague
about it.

Time for me to "Re-Generate" for a bit
I'd think the "KEY" to this is in the AACS Documentation
Read, Read and then Re-Read it.

Thats what I recomend, time to "RE-GENERATE"