backtop


Print 46 comment(s) - last by SGWB.. on Feb 16 at 3:45 PM


The tool that arnezami and muslix64 used to defeat AACS

The HD DVD that gave up its Processing Key for all to use
One key to decrypt them all

Last December, a hacker named “Muslix64” circumvented HD DVD copy protection, resulting in the release of pirated copies on the Internet. Less than one month later, the same Muslix64, with the help of another hacker, was able to crack the encryption on Blu-ray Discs.

On Sunday, another Doom9 forum poster named “arnezami” presented the next great breakthrough in HD DVD and Blu-ray Disc decryption. Previously, every HD movie needed its own unique key in order to be decrypted; but with arnezami’s discovery, there is one key to rule them all -- at least for now, until the Advanced Access Content System Licensing Administrator gets on it.

What arnezami found was the Processing Key, which appears to be the silver bullet in decrypting all existing HD DVD and Blu-ray Discs. Arnezami was armed only with an Xbox 360 HD DVD player and the bundled King Kong movie. Other Doom9 forum contributors posted their keys to HD DVD movies such as The Departed and Spy Game, which were proved decryptable using the Processing Key.

Figuring that the copy protection schemes on Blu-ray Disc are similar to HD DVD, other posters reported data from Talladega Nights and House of Flying Daggers, which were also decrypted using the Processing Key found from King Kong.

Arnezami unlocked the secrets to HD DVD and Blu-ray Disc encryption without the use of any hacked software or hardware. “Most of the time I spend studying the AACS papers,” he wrote. “A good understanding of how things worked have helped me greatly in knowing what to find in the first place (and how to recognize something).”

Arnezami started his quest by finding the Volume ID to King Kong, which motivated him to find the Media Key. After a few trial and error attempts, arnezami had the idea to of watching the data move from the HD DVD drive to the memory on his computer. “What I wanted to do is ‘record’ all changes in this part of memory during startup of the movie,” he wrote in his explanation. “Hopefully I would catch something interesting.”

“In the end I did something a little more efficient: I used the HD DVD VUK extractor and adapted it to slow down the software player (while scanning its memory continuously) and at the very moment the Media Key was detected it halted the player,” arnezami continued. “I then made a memdump with WinHex.”

Using this method, arnezami found that his first C-value was a hit, leading to the discovery of the Processing Key. “I now had the feeling I had something,” he said.

Arnezami isn’t revealing which software player he used to expose the key information for fear that the Advanced Access Content System Licensing Administrator would crackdown on the software developer. What he did want to say, however, is that he made his discovery simply by watching the data as it passed through his system.



Comments     Threshold


This article is over a month old, voting and posting comments is disabled

Too easy
By estaffer on 2/14/2007 11:43:20 AM , Rating: 2
it's all too easy! these people (who makes the encryptions) should make it harder so 'other' people will not break them easily. once you see a copy of those movies on the market (not black, just plain market that you see everyday) then you know you failed.




RE: Too easy
By Kragoth on 2/14/2007 7:33:56 PM , Rating: 2
I don't think you fully understand how things work inside computers. And as long as decryption is handled by software keys will always be able to be found. Even with Intel and Vista producing all these security tools you cannot expect them to stop people who know how to hack. Virtual machines make it impossible to stop people reading memory as the host machine is not limited by the security of the virtual machine. Hardware decryption is a much more secure way of doing this but also increases costs 10 times. The fact still remains that if these companies spent less money on security and brought down the price of their goods more items would sell. They will never stop hackers and piracy (at least not in the next 10 years). There is always someone smarter or someone that will hand out the information for the right price. Software can be reverse engineered with ease these days so even if the memory dumps are stopped there are so many other ways of bypassing security.

I have no sympathy for these companies as they think that some piece of software encryption is going to stop piracy. They need to look at the facts and realize that they need a NEW strategy... maybe look at rewarding customers who buy the genuine disc instead of wasting time and money on a "no piracy dream"


RE: Too easy
By SGWB on 2/16/2007 3:45:50 PM , Rating: 2
You are correct. If it can play on a PC, it can be cracked on a PC.

I predict that when the BluRay/HD-DVD successor comes about, it will either dispense with DRM entirely or it will not be playable on general purpose computers.


"It's okay. The scenarios aren't that clear. But it's good looking. [Steve Jobs] does good design, and [the iPad] is absolutely a good example of that." -- Bill Gates on the Apple iPad

Related Articles
Blu-ray Encryption Defeated
January 23, 2007, 6:49 PM
First Pirated HD DVDs Released
January 17, 2007, 4:30 PM
Hackers Claim HD DVD Encryption Circumvented
December 28, 2006, 12:24 PM













botimage
Copyright 2014 DailyTech LLC. - RSS Feed | Advertise | About Us | Ethics | FAQ | Terms, Conditions & Privacy Information | Kristopher Kubicki