Welcome to Doom9's Forum, THE in-place to be for everyone interested in DVD conversion.

Before you start posting please read the forum rules. By posting to this forum you agree to abide by the rules.

 

Go Back   Doom9's Forum > General > Decrypting

Reply
 
Thread Tools Search this Thread Display Modes
Old 5th October 2016, 20:07   #1  |  Link
Eneri
Registered User
 
Join Date: Sep 2016
Posts: 1
Public MKBs

Are there security or law-related complications about publishing MKBs found in Blu Ray disks one buys? Are there publicly downloadable copies of the last MKBs? Is it allowed to post them on this forum?

I own just a few Blu Ray disks, all of them with very old MKBs. If it is allowed, I would thank you if someone could share the latest MKB available from one of your disks (it is the file AACS/MKB_RO.inf in the disk). I managed to get the private host key from a couple of players and would like to know whether they are revoked or not.
Eneri is offline   Reply With Quote
Old 6th October 2016, 13:29   #2  |  Link
dizzier
Registered User
 
Join Date: Jan 2010
Posts: 74
I believe there is nothing prohibiting MKBs to be published. However, to save space, here's the host revocation list for MKBv61:
Code:
  0x000000000001 - 0x0000000003E8
  0x000080000001 - 0x0000800080E8
  0x270F80000001 - 0x270F80000BB8
  0xFF2210100001 - 0xFF221010001F
  0xFF2210400001 - 0xFF221040001F
  0xFF2220000001 - 0xFF22200000FF
  0xFF2290100001 - 0xFF229010001F
  0xFF2290400001 - 0xFF229040001F
  0xFF22A0000001 - 0xFF22A00000FF
  0xFF2318000001 - 0xFF231800001F
  0xFF2318100001 - 0xFF231810001F
  0xFF2318400001 - 0xFF231840001F
  0xFF2340000001 - 0xFF23400000FF
  0xFF2710000001 - 0xFF271000001F
  0xFF2790000001 - 0xFF279000001F
  0xFFFF0000000B - 0xFFFF00000014
  0xFFFF00000016
  0xFFFF00000021 - 0xFFFF0000002A
  0xFFFF00000035 - 0xFFFF00000038
  0xFFFF0000004E - 0xFFFF00000052
  0xFFFF00000054 - 0xFFFF00000057
  0xFFFF0000005D - 0xFFFF00000066
  0xFFFF00000080
  0xFFFF00000088 - 0xFFFF00000091
  0xFFFF00000094
  0xFFFF000000AE
  0xFFFF000000B2 - 0xFFFF000000BB
  0xFFFF000027DB
  0xFFFF00002817
  0xFFFF00002820
  0xFFFF00002834 - 0xFFFF0000283D
  0xFFFF00002846
  0xFFFF0000284B
  0xFFFF80000001 - 0xFFFF80000024
  0xFFFF80000029
  0xFFFF8000002F
  0xFFFF80000039
  0xFFFF80000045
  0xFFFF80000071
  0xFFFF80000079
  0xFFFF8000007C - 0xFFFF8000007E
  0xFFFF800000AD
  0xFFFF800000C4 - 0xFFFF800000C6
  0xFFFF800000D0
  0xFFFF800000F4 - 0xFFFF800000FD
  0xFFFF80000146
Just check certificate ID and you'll see if it is revoked or not. Note that host private keys aren't particularly interesting, they can be easily extracted. The one I've posted some time ago on this forum still works up to MKBv61 (MKBv62 was released since then, but I don't know if it was revoked there or not).
dizzier is offline   Reply With Quote
Old 25th March 2018, 23:26   #3  |  Link
candela
Registered User
 
Join Date: Jun 2005
Posts: 259
For testing purposes, I made a collection of MKB_RO.inf files and dumped the HRL and DRL lists. Download links: MKBv01-64 & HRL_DRL_MKBv01-64

For some reason, MKBv26 cannot be dumped by libaacs. I tried several different discs. However, the HRL and DRL are identical to MKBv27. Also, it appears these MKB versions were never released: 02, 05, 11, 13, 29, 41, 45, 59. If you have any disc with these versions please post.

HRL and DRL for MKBv64
Code:
Host Revocation List  (MKB version 64):
  000000000001 - 0000000003e8
  000080000001 - 0000800080e8
  015380013c69 - 015380018a88
  06d580000015 - 06d580000028
  270f80000001 - 270f80000bb8
  ff2210100001 - ff221010001f
  ff2210400001 - ff221040001f
  ff2220000001 - ff22200000ff
  ff2290100001 - ff229010001f
  ff2290400001 - ff229040001f
  ff22a0000001 - ff22a00000ff
  ff2318000001 - ff231800001f
  ff2318100001 - ff231810001f
  ff2318400001 - ff231840001f
  ff2340000001 - ff23400000ff
  ff2710000001 - ff271000001f
  ff2790000001 - ff279000001f
  ffff0000000b - ffff00000014
  ffff00000016
  ffff00000021 - ffff0000002a
  ffff00000035 - ffff00000038
  ffff0000004e - ffff00000052
  ffff00000054 - ffff00000057
  ffff0000005d - ffff00000066
  ffff00000080
  ffff00000088 - ffff00000091
  ffff00000094
  ffff000000ae
  ffff000000b2 - ffff000000bb
  ffff000027db
  ffff00002817
  ffff00002820
  ffff00002834 - ffff0000283d
  ffff00002846
  ffff0000284b
  ffff80000001 - ffff80000024
  ffff80000029
  ffff8000002f
  ffff80000039
  ffff80000045
  ffff80000071
  ffff80000079
  ffff8000007c - ffff8000007e
  ffff800000ad
  ffff800000c4 - ffff800000c6
  ffff800000d0
  ffff800000f4 - ffff800000fd
  ffff8000012d - ffff8000012e
  ffff80000146
  ffff80000153 - ffff80000154
  ffff80000174
  ffff80000189
  ffff80000196 - ffff80000197
  ffff800001b4
  ffff800001c0
  ffff800001d2
Drive Revocation List  (MKB version 64):
  000000000001 - 0000000003e8
  000080000001 - 0000800055f0
  270f20000001 - 270f20000514
  270f80000001 - 270f800007d0
  ff2600000001 - ff2600000096
candela is offline   Reply With Quote
Old 19th June 2018, 18:41   #4  |  Link
candela
Registered User
 
Join Date: Jun 2005
Posts: 259
Discs with MKBv65 are beginning to popup. Download links: HRL_DRL_MKBv01-65.7z & MKBv01-65.7z

HRL and DRL for MKBv65
Code:
Host Revocation List  (MKB version 65):
  000000000001 - 0000000003e8
  000080000001 - 0000800080e8
  015380013c69 - 015380018a88
  06d580000015 - 06d580000028
  270f80000001 - 270f80000bb8
  ff2210100001 - ff221010001f
  ff2210400001 - ff221040001f
  ff2220000001 - ff22200000ff
  ff2290100001 - ff229010001f
  ff2290400001 - ff229040001f
  ff22a0000001 - ff22a00000ff
  ff2318000001 - ff231800001f
  ff2318100001 - ff231810001f
  ff2318400001 - ff231840001f
  ff2340000001 - ff23400000ff
  ff2710000001 - ff271000001f
  ff2790000001 - ff279000001f
  ffff0000000b - ffff00000014
  ffff00000016
  ffff00000021 - ffff0000002a
  ffff00000035 - ffff00000038
  ffff0000004e - ffff00000052
  ffff00000054 - ffff00000057
  ffff0000005d - ffff00000066
  ffff00000080
  ffff00000088 - ffff00000091
  ffff00000094
  ffff000000ae
  ffff000000b2 - ffff000000bb
  ffff000027db
  ffff00002817
  ffff00002820
  ffff00002834 - ffff0000283d
  ffff00002846
  ffff0000284b
  ffff80000001 - ffff80000024
  ffff80000029
  ffff8000002f
  ffff80000039
  ffff80000045
  ffff80000053
  ffff80000071
  ffff80000079
  ffff8000007c - ffff8000007e
  ffff800000ad
  ffff800000c4 - ffff800000c6
  ffff800000d0
  ffff800000f4 - ffff800000fd
  ffff8000012d - ffff8000012e
  ffff80000146
  ffff80000153 - ffff80000154
  ffff80000174
  ffff80000189
  ffff80000196 - ffff80000197
  ffff800001b4
  ffff800001c0
  ffff800001d2
Drive Revocation List  (MKB version 65):
  000000000001 - 0000000003e8
  000080000001 - 0000800055f0
  270f20000001 - 270f20000514
  270f80000001 - 270f800007d0
  ff2600000001 - ff2600000096
Compared to MKBv64, host certificate ffff80000053 has been revoked

Last edited by candela; 14th September 2018 at 17:36.
candela is offline   Reply With Quote
Old 19th June 2018, 21:05   #5  |  Link
TTide
Registered User
 
Join Date: Jul 2014
Posts: 25
Public MKBs

Where do you save this information to?
Does this mean we can watch MKBv65 movies?
TTide is offline   Reply With Quote
Old 19th June 2018, 21:52   #6  |  Link
candela
Registered User
 
Join Date: Jun 2005
Posts: 259
Quote:
Originally Posted by TTide View Post
Where do you save this information to?
Does this mean we can watch MKBv65 movies?
No, it means you don't want to insert a MKBv65 disc in your drive if you want to keep using the revoked certificate (should you have the key for it). The data in this thread is only for information/testing purposes, it does not contain anything you can use to enable playback
candela is offline   Reply With Quote
Old 20th November 2018, 18:57   #7  |  Link
candela
Registered User
 
Join Date: Jun 2005
Posts: 259
MKBv66 has been released. Download links: HRL_DRL_MKBv01-66.7z & MKBv01-66.7z

HRL and DRL for MKBv66
Code:
Host Revocation List  (MKB version 66):
  000000000001 - 0000000003e8
  000080000001 - 0000800080e8
  015380013c69 - 015380018a88
  06d580000015 - 06d580000028
  270f80000001 - 270f80000bb8
  ff2210100001 - ff221010001f
  ff2210400001 - ff221040001f
  ff2220000001 - ff22200000ff
  ff2290100001 - ff229010001f
  ff2290400001 - ff229040001f
  ff22a0000001 - ff22a00000ff
  ff2318000001 - ff231800001f
  ff2318100001 - ff231810001f
  ff2318400001 - ff231840001f
  ff2340000001 - ff23400000ff
  ff2710000001 - ff271000001f
  ff2790000001 - ff279000001f
  ffff0000000b - ffff00000014
  ffff00000016
  ffff00000021 - ffff0000002a
  ffff00000035 - ffff00000038
  ffff0000004e - ffff00000052
  ffff00000054 - ffff00000057
  ffff0000005d - ffff00000066
  ffff00000080
  ffff00000088 - ffff00000091
  ffff00000094
  ffff000000ae
  ffff000000b2 - ffff000000bb
  ffff000027db
  ffff00002817
  ffff00002820
  ffff00002834 - ffff0000283d
  ffff00002846
  ffff0000284b
  ffff80000001 - ffff80000024
  ffff80000029
  ffff8000002f
  ffff80000039
  ffff80000045
  ffff80000053
  ffff80000071
  ffff80000079
  ffff8000007c - ffff8000007e
  ffff800000ad
  ffff800000c4 - ffff800000c6
  ffff800000d0
  ffff800000f4 - ffff800000fd
  ffff8000012d - ffff8000012e
  ffff80000146
  ffff80000153 - ffff80000154
  ffff80000174
  ffff80000189
  ffff80000196 - ffff80000197
  ffff800001b4
  ffff800001c0
  ffff800001d2
  ffff800001e9
  ffff800001eb
Drive Revocation List  (MKB version 66):
  000000000001 - 0000000003e8
  000080000001 - 0000800055f0
  270f20000001 - 270f20000514
  270f80000001 - 270f800007d0
  ff2600000001 - ff2600000096
Compared to MKBv65 the following host certificates have been revoked:
- ffff800001e9
- ffff800001eb

They really don't seem to like the UHD loophole as they are now blocking host certificates every MKB release

Last edited by candela; 20th November 2018 at 19:21.
candela is offline   Reply With Quote
Old 29th November 2018, 06:45   #8  |  Link
maetel99
Registered User
 
Join Date: Apr 2018
Posts: 21
Quote:
Originally Posted by candela View Post
They really don't seem to like the UHD loophole as they are now blocking host certificates every MKB release
Candela, could you explain what you mean by this? What is the "UHD loophole" and why would it affect AACS 1.0 host certificates?
maetel99 is offline   Reply With Quote
Old 29th November 2018, 17:11   #9  |  Link
dizzier
Registered User
 
Join Date: Jan 2010
Posts: 74
Quote:
Originally Posted by maetel99 View Post
Candela, could you explain what you mean by this? What is the "UHD loophole" and why would it affect AACS 1.0 host certificates?
This is nicely explained here
dizzier is offline   Reply With Quote
Old 11th March 2019, 00:25   #10  |  Link
candela
Registered User
 
Join Date: Jun 2005
Posts: 259
MKBv68 has been released (MKBv67 was skipped). Download links: HRL_DRL_MKBv01-68.7z & MKBv01-68.7z

HRL and DRL for MKBv68
Code:
Host Revocation List  (MKB version 68):
  000000000001 - 0000000003e8
  000080000001 - 0000800080e8
  015380013c69 - 015380018a88
  06d580000015 - 06d580000028
  270f80000001 - 270f80000bb8
  ff2210100001 - ff221010001f
  ff221010005f - ff2210100064
  ff2210100068 - ff221010006b
  ff2210400001 - ff221040001f
  ff22104004f7 - ff22104004fb
  ff22104084f6 - ff22104084fa
  ff2220000001 - ff22200000ff
  ff22200084f6 - ff22200084fa
  ff22200104f6 - ff22200104fa
  ff2290100001 - ff229010001f
  ff2290400001 - ff229040001f
  ff22a0000001 - ff22a00000ff
  ff2318000001 - ff231800001f
  ff2318100001 - ff231810001f
  ff2318400001 - ff231840001f
  ff23184004f7 - ff23184004fb
  ff2340000001 - ff23400000ff
  ff2710000001 - ff271000001f
  ff2710000063 - ff2710000068
  ff271000006c - ff271000006f
  ff2790000001 - ff279000001f
  ffff0000000b - ffff00000014
  ffff00000016
  ffff00000021 - ffff0000002a
  ffff00000035 - ffff00000038
  ffff0000004e - ffff00000052
  ffff00000054 - ffff00000057
  ffff0000005d - ffff00000066
  ffff00000080
  ffff00000088 - ffff00000091
  ffff00000094
  ffff000000ae
  ffff000000b2 - ffff000000bb
  ffff000027db
  ffff00002817
  ffff00002820
  ffff00002834 - ffff0000283d
  ffff00002846
  ffff0000284b
  ffff80000001 - ffff80000024
  ffff80000029
  ffff8000002f
  ffff80000039
  ffff80000045
  ffff80000053
  ffff80000071
  ffff80000079
  ffff8000007c - ffff8000007e
  ffff800000ad
  ffff800000c4 - ffff800000c6
  ffff800000d0
  ffff800000f4 - ffff800000fd
  ffff8000012d - ffff8000012e
  ffff80000146
  ffff80000153 - ffff80000154
  ffff80000174
  ffff80000189
  ffff80000196 - ffff80000197
  ffff800001b4
  ffff800001c0
  ffff800001d2
  ffff800001e9
  ffff800001eb
Drive Revocation List  (MKB version 68):
  000000000001 - 0000000003e8
  000080000001 - 0000800055f0
  270f20000001 - 270f20000514
  270f80000001 - 270f800007d0
  ff2600000001 - ff2600000096
Compared to MKBv66 the following host certificates have been revoked:
Code:
ff221010005f - ff2210100064
ff2210100068 - ff221010006b
ff22104004f7 - ff22104004fb
ff22104084f6 - ff22104084fa
ff22200084f6 - ff22200084fa
ff22200104f6 - ff22200104fa
ff23184004f7 - ff23184004fb
ff2710000063 - ff2710000068
ff271000006c - ff271000006f
Hmm... anyone has an idea to which device these certs belong or which ripper uses these?
candela is offline   Reply With Quote
Old 4th July 2019, 21:41   #11  |  Link
candela
Registered User
 
Join Date: Jun 2005
Posts: 259
MKBv70 has been released (MKBv69 was skipped). Download links: HRL_DRL_MKBv01-70.7z & MKBv01-70.7z

HRL and DRL for MKBv70
Code:
Host Revocation List  (MKB version 70):
  000000000001 - 0000000003e8
  000080000001 - 0000800080e8
  015380013c69 - 015380018a88
  06d580000015 - 06d580000028
  270f80000001 - 270f80000bb8
  ff2210100001 - ff221010001f
  ff221010005f - ff2210100064
  ff2210100068 - ff221010006b
  ff2210400001 - ff221040001f
  ff22104004f7 - ff22104004fb
  ff22104084f6 - ff22104084fa
  ff2220000001 - ff22200000ff
  ff22200084f6 - ff22200084fa
  ff22200104f6 - ff22200104fa
  ff2290100001 - ff229010001f
  ff2290400001 - ff229040001f
  ff22a0000001 - ff22a00000ff
  ff2318000001 - ff231800001f
  ff2318100001 - ff231810001f
  ff2318400001 - ff231840001f
  ff23184004f7 - ff23184004fb
  ff2340000001 - ff23400000ff
  ff2710000001 - ff271000001f
  ff2710000063 - ff2710000068
  ff271000006c - ff271000006f
  ff2790000001 - ff279000001f
  ffff0000000b - ffff00000014
  ffff00000016
  ffff00000021 - ffff0000002a
  ffff00000035 - ffff00000038
  ffff0000004e - ffff00000052
  ffff00000054 - ffff00000057
  ffff0000005d - ffff00000066
  ffff00000080
  ffff00000088 - ffff00000091
  ffff00000094
  ffff000000ae
  ffff000000b2 - ffff000000bb
  ffff000027db
  ffff00002817
  ffff00002820
  ffff00002834 - ffff0000283d
  ffff00002846
  ffff0000284b
  ffff80000001 - ffff80000024
  ffff80000029
  ffff8000002f
  ffff80000039
  ffff80000045
  ffff80000053
  ffff80000071
  ffff80000079
  ffff8000007c - ffff8000007e
  ffff800000ad
  ffff800000c4 - ffff800000c6
  ffff800000d0
  ffff800000f4 - ffff800000fd
  ffff8000012d - ffff8000012e
  ffff80000146
  ffff80000153 - ffff80000154
  ffff80000174
  ffff80000189
  ffff80000196 - ffff80000197
  ffff800001b1
  ffff800001b4
  ffff800001c0
  ffff800001d2
  ffff800001e9
  ffff800001eb
Drive Revocation List  (MKB version 70):
  000000000001 - 0000000003e8
  000080000001 - 0000800055f0
  270f20000001 - 270f20000514
  270f80000001 - 270f800007d0
  ff2600000001 - ff2600000096
Compared to MKBv68 the following host certificates have been revoked:
Code:
  ffff800001b1
candela is offline   Reply With Quote
Old 15th October 2019, 20:05   #12  |  Link
candela
Registered User
 
Join Date: Jun 2005
Posts: 259
MKBv72 has been released (MKBv71 was identical to MKBv70 as far as HRL/DRL). Download link

HRL and DRL for MKBv72
Code:
Host Revocation List  (MKB version 72):
  000000000001 - 0000000003e8
  000080000001 - 0000800080e8
  015380013c69 - 015380018a88
  06d580000015 - 06d580000028
  270f80000001 - 270f80000bb8
  ff2210100001 - ff221010001f
  ff221010005f - ff2210100064
  ff2210100068 - ff221010006b
  ff2210400001 - ff221040001f
  ff22104004f7 - ff22104004fb
  ff22104084f6 - ff22104084fa
  ff2220000001 - ff22200000ff
  ff22200084f6 - ff22200084fa
  ff22200104f6 - ff22200104fa
  ff2290100001 - ff229010001f
  ff2290400001 - ff229040001f
  ff22a0000001 - ff22a00000ff
  ff2318000001 - ff231800001f
  ff2318100001 - ff231810001f
  ff2318400001 - ff231840001f
  ff23184004f7 - ff23184004fb
  ff2340000001 - ff23400000ff
  ff2710000001 - ff271000001f
  ff2710000063 - ff2710000068
  ff271000006c - ff271000006f
  ff2790000001 - ff279000001f
  ffff0000000b - ffff00000014
  ffff00000016
  ffff00000021 - ffff0000002a
  ffff00000035 - ffff00000038
  ffff0000004e - ffff00000052
  ffff00000054 - ffff00000057
  ffff0000005d - ffff00000066
  ffff00000080
  ffff00000088 - ffff00000091
  ffff00000094
  ffff000000ae
  ffff000000b2 - ffff000000bb
  ffff000027db
  ffff00002817
  ffff00002820
  ffff00002834 - ffff0000283d
  ffff00002846
  ffff0000284b
  ffff80000001 - ffff80000024
  ffff80000029
  ffff8000002f
  ffff80000039
  ffff80000045
  ffff80000053
  ffff80000071
  ffff80000079
  ffff8000007c - ffff8000007e
  ffff800000ad
  ffff800000c4 - ffff800000c6
  ffff800000d0
  ffff800000f4 - ffff800000fd
  ffff8000012d - ffff8000012e
  ffff80000146
  ffff80000153 - ffff80000154
  ffff80000174
  ffff80000189
  ffff80000196 - ffff80000197
  ffff800001b1
  ffff800001b4
  ffff800001c0 - ffff800001c9
  ffff800001d2
  ffff800001e9
  ffff800001eb
Drive Revocation List  (MKB version 72):
  000000000001 - 0000000003e8
  000080000001 - 0000800055f0
  270f20000001 - 270f20000514
  270f80000001 - 270f800007d0
  ff2600000001 - ff2600000096

Compared to MKBv70 the following host certificates have been revoked:
Code:
  ffff800001c0 - ffff800001c9
candela is offline   Reply With Quote
Old 5th April 2020, 18:32   #13  |  Link
candela
Registered User
 
Join Date: Jun 2005
Posts: 259
MKBv76 has been released (MKBv73,74,75 were skipped). Download link

HRL and DRL for MKBv76
Code:
Host Revocation List  (MKB version 76):
  000000000001 - 0000000003e8
  000080000001 - 0000800080e8
  015380013c69 - 015380018a88
  06d580000015 - 06d580000028
  270f80000001 - 270f80000bb8
  ff2210100001 - ff221010001f
  ff221010005f - ff2210100064
  ff2210100068 - ff221010006b
  ff2210400001 - ff221040001f
  ff22104004f7 - ff22104004fb
  ff22104084f6 - ff22104084fa
  ff2220000001 - ff22200000ff
  ff22200084f6 - ff22200084fa
  ff22200104f6 - ff22200104fa
  ff2290100001 - ff229010001f
  ff2290400001 - ff229040001f
  ff22a0000001 - ff22a00000ff
  ff2318000001 - ff231800001f
  ff2318100001 - ff231810001f
  ff2318400001 - ff231840001f
  ff23184004f7 - ff23184004fb
  ff2340000001 - ff23400000ff
  ff2710000001 - ff271000001f
  ff2710000063 - ff2710000068
  ff271000006c - ff271000006f
  ff2790000001 - ff279000001f
  ffff0000000b - ffff00000014
  ffff00000016
  ffff00000021 - ffff0000002a
  ffff00000035 - ffff00000038
  ffff0000004e - ffff00000052
  ffff00000054 - ffff00000057
  ffff0000005d - ffff00000066
  ffff00000080
  ffff00000088 - ffff00000091
  ffff00000094
  ffff000000ae
  ffff000000b2 - ffff000000bb
  ffff000027db
  ffff00002817
  ffff00002820
  ffff00002834 - ffff0000283d
  ffff00002846
  ffff0000284b
  ffff80000001 - ffff80000024
  ffff80000029
  ffff8000002f
  ffff80000039
  ffff80000045
  ffff80000053
  ffff80000071
  ffff80000079
  ffff8000007c - ffff8000007e
  ffff800000ad
  ffff800000c4 - ffff800000c6
  ffff800000d0
  ffff800000f4 - ffff800000fd
  ffff8000012d - ffff8000012e
  ffff80000146
  ffff80000153 - ffff80000154
  ffff80000174
  ffff80000189
  ffff80000196 - ffff80000197
  ffff800001b1
  ffff800001b4
  ffff800001c0 - ffff800001c9
  ffff800001d2
  ffff800001e9
  ffff800001eb
  ffff80000217
Drive Revocation List  (MKB version 76):
  000000000001 - 0000000003e8
  000080000001 - 0000800055f0
  270f20000001 - 270f20000514
  270f80000001 - 270f800007d0
  ff2600000001 - ff2600000096

Compared to MKBv72 the following host certificates have been revoked:
Code:
  ffff80000217
candela is offline   Reply With Quote
Old 6th December 2021, 20:27   #14  |  Link
Losko
Registered User
 
Join Date: Dec 2010
Posts: 65
A couple of questions from a noob:
  1. when you say some host certificate have been revoked, does it mean some device will stop decrypting discs? (btw, does "host" mean a PC? a set-top-box? a bluray drive?)
  2. if the Media Key Block can revoke some certificates, does this mean it is stored onto the bluray drive? and if it is, is this irreversible?
Losko is offline   Reply With Quote
Old 7th December 2021, 20:48   #15  |  Link
candela
Registered User
 
Join Date: Jun 2005
Posts: 259
Quote:
Originally Posted by Losko View Post
A couple of questions from a noob:
  1. when you say some host certificate have been revoked, does it mean some device will stop decrypting discs? (btw, does "host" mean a PC? a set-top-box? a bluray drive?)
  2. if the Media Key Block can revoke some certificates, does this mean it is stored onto the bluray drive? and if it is, is this irreversible?
You would need to read the AACS specification to get a better understanding of how everything works

1. The host certificate is used in PC based systems (software player + bd-drive) to read the Volume Identifier (VID) and remove optional bus encryption. If the host certificate used by the player is revoked, the drive refuses to talk to the player. If you can't read the VID you cannot calculate the keys needed for disc decryption. However if all the keys for your disc are already in a database like the one from FindVUK, you no longer need the host certificate (unless the disc uses bus encryption you need it for playback but that's just a small percentage of BD discs. However, all UHD discs use it).

2. When you insert a disc in a drive, the drive compares the MKB version on the disc to the version stored in its flash memory. If the version is higher it overwrites the stored revocation list with the new one on the disc. From then on it's no longer possible to play new or old (!) discs with a revoked certificate. It's possible on some drives to "clear" the list with a firmware flashing tool like Dosflash but that's a dangerous tool that can easily brick your drive so it's not recommended
candela is offline   Reply With Quote
Old 7th December 2021, 21:57   #16  |  Link
Losko
Registered User
 
Join Date: Dec 2010
Posts: 65
Thanks Candela!

Quote:
Originally Posted by candela View Post
1. The host certificate is used in PC based systems (software player + bd-drive) to read the Volume Identifier (VID) and remove optional bus encryption. If the host certificate used by the player is revoked, the drive refuses to talk to the player. If you can't read the VID you cannot calculate the keys needed for disc decryption. However if all the keys for your disc are already in a database like the one from FindVUK, you no longer need the host certificate (unless the disc uses bus encryption you need it for playback but that's just a small percentage of BD discs. However, all UHD discs use it).
I recently used FindVUK to find keys for a few bluray discs and noticed they all were MKBv70 and MKBv72, some of the latest released.
So I was worried about my ability to keep using that optical drive to get more disc keys in future.
Losko is offline   Reply With Quote
Old 9th December 2021, 05:50   #17  |  Link
maetel99
Registered User
 
Join Date: Apr 2018
Posts: 21
The drive doesn't actually write a newer MKB to flash memory when you put the disc in. It only writes it when there is an attempt to "authenticate" the drive, meaning to obtain keys from the disc or to read data with bus encryption enabled. Usually this happens when you try to play or rip the disc.

So long as you don't play or otherwise attempt to obtain keys off the disc, you can read the disc without disturbing your stored MKB. That is why if you already have the keys for the disc via the keydb database, you can avoid overwriting your drive's MKB (so long as bus encryption is not required). You can also read the MKB file off the disc and determine its version.
maetel99 is offline   Reply With Quote
Old 24th June 2022, 22:29   #18  |  Link
candela
Registered User
 
Join Date: Jun 2005
Posts: 259
MKBv77 has been released. Download link

HRL and DRL for MKBv77
Code:
Host Revocation List  (MKB version 77):
  000000000001 - 0000000003e8
  000080000001 - 0000800080e8
  015380013c69 - 015380018a88
  06d580000015 - 06d580000028
  270f80000001 - 270f80000bb8
  ff2210100001 - ff221010001f
  ff221010005f - ff2210100064
  ff2210100068 - ff221010006b
  ff2210400001 - ff221040001f
  ff22104004f7 - ff22104004fb
  ff22104084f6 - ff22104084fa
  ff2220000001 - ff22200000ff
  ff22200084f6 - ff22200084fa
  ff22200104f6 - ff22200104fa
  ff2290100001 - ff229010001f
  ff2290400001 - ff229040001f
  ff22a0000001 - ff22a00000ff
  ff2318000001 - ff231800001f
  ff2318100001 - ff231810001f
  ff2318400001 - ff231840001f
  ff23184004f7 - ff23184004fb
  ff2340000001 - ff23400000ff
  ff2340518005
  ff2710000001 - ff271000001f
  ff2710000063 - ff2710000068
  ff271000006c - ff271000006f
  ff2790000001 - ff279000001f
  ffff0000000b - ffff00000014
  ffff00000016
  ffff00000021 - ffff0000002a
  ffff00000035 - ffff00000038
  ffff0000004e - ffff00000052
  ffff00000054 - ffff00000057
  ffff0000005d - ffff00000066
  ffff00000080
  ffff00000088 - ffff00000091
  ffff00000094
  ffff000000ae
  ffff000000b2 - ffff000000bb
  ffff000027db
  ffff00002817
  ffff00002820
  ffff00002834 - ffff0000283d
  ffff00002846
  ffff0000284b
  ffff80000001 - ffff80000024
  ffff80000029
  ffff8000002f
  ffff80000039
  ffff80000045
  ffff80000053
  ffff80000071
  ffff80000079
  ffff8000007c - ffff8000007e
  ffff800000ad
  ffff800000c4 - ffff800000c6
  ffff800000d0
  ffff800000f4 - ffff800000fd
  ffff8000012d - ffff8000012e
  ffff80000146
  ffff80000153 - ffff80000154
  ffff80000174
  ffff80000189
  ffff80000196 - ffff80000197
  ffff800001b1
  ffff800001b4
  ffff800001c0 - ffff800001c9
  ffff800001d2
  ffff800001e9
  ffff800001eb
  ffff80000217
Drive Revocation List  (MKB version 77):
  000000000001 - 0000000003e8
  000080000001 - 0000800055f0
  270f20000001 - 270f20000514
  270f80000001 - 270f800007d0
  ff2600000001 - ff2600000096

Compared to MKBv76 the following host certificates have been revoked:
Code:
  ff2340518005
Note: I found out that MKBv75 does exist. However, HRL/DRL is identical to MKBv72
candela is offline   Reply With Quote
Old 30th June 2022, 10:19   #19  |  Link
pitsie
Registered User
 
Join Date: Jul 2009
Posts: 9
Quote:
Originally Posted by candela View Post
MKBv77 has been released.
Thanks for that! Do you know of any titles that use v77?
pitsie is offline   Reply With Quote
Old 30th June 2022, 17:57   #20  |  Link
candela
Registered User
 
Join Date: Jun 2005
Posts: 259
Quote:
Originally Posted by pitsie View Post
Thanks for that! Do you know of any titles that use v77?
Code:
"06E8DC16468C97E745851E0D51DFAED4B4541C85"	"LUPIN_PART6_5 (ルパン三世 PART6  BOX II Disc1)"
"20D6B1480310EB02ADB3E7882C9CCBB31F1887E2"	"PROMISES (Promises)"
"4274C5DBC9A822FA7A9AB902786763C6B2E1CBCA"	"BDROM (Love Live! Nijigasaki High School Idol Club 2nd Season Vol.1)"
"6A7A81FC14BB9D8A099071D104102D00D2449AF2"	"WORLDS_END_HAREM_3 (終末のハーレム 3)"
"89BA2BD8D35B2517E8DB4639A2C1B2BAE09302DF"	"BD_VIDEO (Puella Magi Madoka Magica Magia Record Side Story Final SEASON 1)"
"8C0FCE3D88BA7A9F6B26582757C0A6725905D759"	"LUPIN_PART6_8 (ルパン三世 PART6  BOX II Disc4)"
"9AFA9D4A73E55D2D28C2F31CC68C82D805974ED0"	"LUPIN_PART6_7 (ルパン三世 PART6  BOX II Disc3)"
"FD0B4A15663510FD2B55CDAC8130E8D3FE7D2ACA"	"LUPIN_PART6_6 (ルパン三世 PART6  BOX II Disc2)"
candela is offline   Reply With Quote
Reply

Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump


All times are GMT +1. The time now is 17:34.


Powered by vBulletin® Version 3.8.11
Copyright ©2000 - 2024, vBulletin Solutions Inc.