Maker Pro
Maker Pro

LMAO ! Premium content protection for HD DVD broken already 1

E

Eeyore

Jan 1, 1970
0
This should amuse Microsoft in view of it happening before Vista's official
release.

Apparently provoked by being unable to watch the HD DVD he'd bought because he
didn't have a 'compliant' monitor 'muslix64' decided to hack it.


On December 26, 2006 a person using the alias "muslix64" posted a utility named
BackupHDDVD and its source code for a working AACS decryptor on the doom9.org
forums. The program is not an exploit or hack per se. Rather it is a tool that
can be used to decrypt AACS protected content once one knows the encryption key.
As such, it is no surprise or indication of vulnerability that such a program is
possible and it can be seen as merely an implementation of the publicly
available standard AACS Guide. However, Muslix64 claims to have found title and
volume keys in main memory while playing HD DVD disks using a software player,
and that finding them is not difficult.[12] Details of how to do this were
revealed later (January 12, 2007) by other doom9.org forum members that also
found title and volume keys of several movies in main memory of a software
player called WinDVD.

On January 2, 2007 "muslix64" published a new version of his/her program, with
volume key support.[1]

Cyberlink, developers of PowerDVD maintain that their software was not used as
part of the exploit.[2]

The claimed attack (extraction of the encryption keys from a software player)
highlights the inherent weakness of software movie players for the PC platform.
The use of encryption doesn't offer any true protection in this scenario since
the software player must have the encryption key available somewhere in memory
and there's no way to protect against a determined hacker extracting the
encryption key (if everything else fails the user could run the program in a
virtual machine making it possible to freeze the program and inspect all memory
addresses without the program knowing). Avoiding such attacks would require
changes to the PC platform (see Trusted Computing) or that the content
distributors do not permit their content to be played on PCs at all (by not
providing the companies making software players with the needed encryption
keys). Alternatively, they could use the AACS system's revocation mechanism to
revoke a specific software player after it is known to have been compromised. In
that case, the compromised players could still be used to break old titles but
not newer releases as they would be released without encryption keys for the
compromised software players requiring hackers to break other players. The
latter alternative is not a desirable option, because it would result in
legitimate users of compromised players being forced to upgrade or replace their
player software in order to view new titles.

On January 13, 2007 "LordSloth" on Doom9 discovered how to grab the volume
license keys from WinDVD's memory. With that discovery, it became possible to
take backup of HD DVDs. Later that day, the first pirated HD DVD, Serenity, was
uploaded on a private torrent tracker.

http://en.wikipedia.org/wiki/HD_DVD#Muslix64.27s_exploit
http://en.wikipedia.org/wiki/BackupHDDVD


In the meantime Vista's first service pack is being prepared...
http://www.internetnews.com/ent-news/article.php/3655931

And the European Comission's being lobbied to declare Vista illegal..
http://www.pcmag.com/article2/0,1895,2087727,00.asp

What a fuss !

Graham
 
P

PeteS

Jan 1, 1970
0
Technically, AACS hasn't been broken, it's been bypassed.

Exactly, but how long do you give AACS now it's getting implemented on a
volume platform?

Cheers

PeteS
 
E

Eeyore

Jan 1, 1970
0
PeteS said:
Exactly, but how long do you give AACS now it's getting implemented on a
volume platform.

Security of AACS
Concerns of experts

The proposal was voted one of the technologies most likely to fail by IEEE
Spectrum magazine's readers in the January 2005 issue [1]. Concerns about the
approach include its similarity to past systems that failed, such as Content
Scrambling System (CSS), and the inability to preserve security against attacks
that compromise large numbers of players. Jon Lech Johansen ("DVD Jon"), who
defeated the original DVD CSS, expected AACS to be cracked by winter 2006/2007
[2].

In late 2006, noted security expert Peter Gutmann released A Cost Analysis of
Windows Vista Content Protection, a technical paper criticising the implementation
of AACS on Windows Vista.

Providing this protection incurs considerable costs in terms of system
performance, system stability, technical support overhead, and hardware and
software cost. These issues affect not only users of Vista but the entire PC
industry, since the effects of the protection measures extend to cover all
hardware and software that will ever come into contact with Vista, even if it's
not used directly with Vista (for example hardware in a Macintosh computer or on a
Linux server).

http://en.wikipedia.org/wiki/Advanced_Access_Content_System

Crazy really.

Graham
 
M

MassiveProng

Jan 1, 1970
0
Apparently provoked by being unable to watch the HD DVD he'd bought because he
didn't have a 'compliant' monitor 'muslix64' decided to hack it.


On December 26, 2006 a person using the alias "muslix64" posted a utility named
BackupHDDVD and its source code for a working AACS decryptor on the doom9.org
forums.

Total bullshit.
 
M

MassiveProng

Jan 1, 1970
0
Exactly, but how long do you give AACS now it's getting implemented on a
volume platform?

It is a MUCH more difficult task than DVD was.

First off DVD wasn't cracked, the keys got let out.

NOW, one can brute force a DVD key, but you will not likely be doing
it any time soon with HD-DVD.

Good luck with that, assholes.

Codes that have been in service for years, and have yet to be
cracked:

VideoCipher I Nearly two decades.
VideoCipher II Over a decade
DigiCipher I About a decade
DigiCipher II << This one is used on HD broadcasts & ET Links.
Also about a decade.

Why have these not been cracked? Could it be the key schema?

HD-DVD has a similar format for keeping the key(s), and the keys are
bigger as well.

You can get started. Maybe your grandson will finish up. By then
there will be new formats about.
 
M

MassiveProng

Jan 1, 1970
0
You're saying it didn't happen ?


There is no "working AACS decryptor".

As the other poster made clear, it was a sidestep, not a crack.
 
R

Robert Baer

Jan 1, 1970
0
Eeyore said:
This should amuse Microsoft in view of it happening before Vista's official
release.

Apparently provoked by being unable to watch the HD DVD he'd bought because he
didn't have a 'compliant' monitor 'muslix64' decided to hack it.


On December 26, 2006 a person using the alias "muslix64" posted a utility named
BackupHDDVD and its source code for a working AACS decryptor on the doom9.org
forums. The program is not an exploit or hack per se. Rather it is a tool that
can be used to decrypt AACS protected content once one knows the encryption key.
As such, it is no surprise or indication of vulnerability that such a program is
possible and it can be seen as merely an implementation of the publicly
available standard AACS Guide. However, Muslix64 claims to have found title and
volume keys in main memory while playing HD DVD disks using a software player,
and that finding them is not difficult.[12] Details of how to do this were
revealed later (January 12, 2007) by other doom9.org forum members that also
found title and volume keys of several movies in main memory of a software
player called WinDVD.

On January 2, 2007 "muslix64" published a new version of his/her program, with
volume key support.[1]

Cyberlink, developers of PowerDVD maintain that their software was not used as
part of the exploit.[2]

The claimed attack (extraction of the encryption keys from a software player)
highlights the inherent weakness of software movie players for the PC platform.
*** See below
The use of encryption doesn't offer any true protection in this scenario since
the software player must have the encryption key available somewhere in memory
and there's no way to protect against a determined hacker extracting the
encryption key (if everything else fails the user could run the program in a
virtual machine making it possible to freeze the program and inspect all memory
addresses without the program knowing). Avoiding such attacks would require
changes to the PC platform (see Trusted Computing) or that the content
distributors do not permit their content to be played on PCs at all (by not
providing the companies making software players with the needed encryption
keys). Alternatively, they could use the AACS system's revocation mechanism to
revoke a specific software player after it is known to have been compromised. In
that case, the compromised players could still be used to break old titles but
not newer releases as they would be released without encryption keys for the
compromised software players requiring hackers to break other players. The
latter alternative is not a desirable option, because it would result in
legitimate users of compromised players being forced to upgrade or replace their
player software in order to view new titles.

On January 13, 2007 "LordSloth" on Doom9 discovered how to grab the volume
license keys from WinDVD's memory. With that discovery, it became possible to
take backup of HD DVDs. Later that day, the first pirated HD DVD, Serenity, was
uploaded on a private torrent tracker.

http://en.wikipedia.org/wiki/HD_DVD#Muslix64.27s_exploit
http://en.wikipedia.org/wiki/BackupHDDVD


In the meantime Vista's first service pack is being prepared...
http://www.internetnews.com/ent-news/article.php/3655931

And the European Comission's being lobbied to declare Vista illegal..
http://www.pcmag.com/article2/0,1895,2087727,00.asp

What a fuss !

Graham
Reading the M$ Vista reqirements, hardware has been and is being
altered to "conform" to the DRM "mandate"; that means *all* OSes will
have to kowtow to each and every (different) manufacturers
implimentation in handling the digital stream thru the transforms
required as data travels from DVD to screen.
 
R

Robert Baer

Jan 1, 1970
0
Eeyore said:
PeteS wrote:

Exactly, but how long do you give AACS now it's getting implemented on a
volume platform.


Security of AACS
Concerns of experts

The proposal was voted one of the technologies most likely to fail by IEEE
Spectrum magazine's readers in the January 2005 issue [1]. Concerns about the
approach include its similarity to past systems that failed, such as Content
Scrambling System (CSS), and the inability to preserve security against attacks
that compromise large numbers of players. Jon Lech Johansen ("DVD Jon"), who
defeated the original DVD CSS, expected AACS to be cracked by winter 2006/2007
[2].

In late 2006, noted security expert Peter Gutmann released A Cost Analysis of
Windows Vista Content Protection, a technical paper criticising the implementation
of AACS on Windows Vista.

Providing this protection incurs considerable costs in terms of system
performance, system stability, technical support overhead, and hardware and
software cost. These issues affect not only users of Vista but the entire PC
industry, since the effects of the protection measures extend to cover all
hardware and software that will ever come into contact with Vista, even if it's
not used directly with Vista (for example hardware in a Macintosh computer or on a
Linux server).

http://en.wikipedia.org/wiki/Advanced_Access_Content_System

Crazy really.

Graham
....and guess who has to put up with this dictatorial BS?
Anyone buying the new crap (with DRM management wired in).
 
E

Eeyore

Jan 1, 1970
0
Robert said:
Reading the M$ Vista reqirements, hardware has been and is being
altered to "conform" to the DRM "mandate"; that means *all* OSes will
have to kowtow to each and every (different) manufacturers
implimentation in handling the digital stream thru the transforms
required as data travels from DVD to screen.

Sounds like a disaster waiting to happen.

Graham
 
As the other poster made clear, it was a sidestep, not a crack.-

yes, he just grapped the key off the DVD, he didn't crack the
encryption.
but who cares, key has to be there or noone can watch
the DVD

-Lasse
 
J

James Beck

Jan 1, 1970
0
It is a MUCH more difficult task than DVD was.

First off DVD wasn't cracked, the keys got let out.

NOW, one can brute force a DVD key, but you will not likely be doing
it any time soon with HD-DVD.

Good luck with that, assholes.

Codes that have been in service for years, and have yet to be
cracked:

VideoCipher I Nearly two decades.
VideoCipher II Over a decade
DigiCipher I About a decade
DigiCipher II << This one is used on HD broadcasts & ET Links.
Also about a decade.
Didn't these use a rolling/changing key system?
Also, you had a constantly changing data stream to contend with.
When you have the disk in hand you have the same stream over and over
again. Takes away some of the hassle AND you know when you got it
right, the movie is watchable.
Why have these not been cracked? Could it be the key schema?
Maybe, but most likely $$$ and no one was interested in it other than
pirates. Couldn't say we need to back up a satellite data stream for
archival purposes.
HD-DVD has a similar format for keeping the key(s), and the keys are
bigger as well.
Yep, but the data is there and you only need to get that key once.
The players can decode the disk, so tell me a hacker can't figure out
how to get the data too.
You can get started. Maybe your grandson will finish up. By then
there will be new formats about.

I'll bet you dollars to doughnuts that the Chinese video pirates will
have a simple crack within 6 month, IF they don't already have one now.

Jim
 
M

MassiveProng

Jan 1, 1970
0
Didn't these use a rolling/changing key system?

No. Merely includes "false keys" in with the good.
Also, you had a constantly changing data stream to contend with.

Nope. An MPEG-2 transport stream is the exact same stream that
peels off a DVD.
When you have the disk in hand you have the same stream over and over
again. Takes away some of the hassle AND you know when you got it
right, the movie is watchable.

Recording a stream and using it over and over again IS how the
attempt to break DVD code as well. It is no harder to record a stream
off a satellite and hit it over and over till you break it.
Could it be the key schema?
Maybe, but most likely $$$

Ahhhh... Well, busting any stream costs dollars, dope.
and no one was interested in it other than
pirates.

Same scenario here. No one even attempts cracking this stuff,
except for pirate retards, AND THAT INCLUDES THOSE IN A COLLEGE
PROGRAM.
Couldn't say we need to back up a satellite data stream for
archival purposes.

You're an idiot, and 99% of all copied DVDs in use today are not
backups, you pirate fucktard.
Yep, but the data is there and you only need to get that key once.

Not if there are several.
The players can decode the disk, so tell me a hacker can't figure out
how to get the data too.

Back to the pirate fucktard. You say hacker, I say twit bent on not
paying for what he gets. Same result. You are a bunch of thieving
bastards.
I'll bet you dollars to doughnuts that the Chinese video pirates will
have a simple crack within 6 month, IF they don't already have one now.


They are working on their own CRAP. They are likely not even making
an attempt.
 
J

jasen

Jan 1, 1970
0
It is a MUCH more difficult task than DVD was.

First off DVD wasn't cracked, the keys got let out.

yes it was. about the time decss was out someone discoveredy a way to
brute-force discover the CSS encryption key, due to a couple of mistakes the
56? bit key really only 32? bits in complexity and a computer of that
vintage could have the answer by brute-force in a few minutes.

soon advances in hardware reduced this to seconds, by which time the region
keys were essentially worthless.
NOW, one can brute force a DVD key, but you will not likely be doing
it any time soon with HD-DVD.

This time they used an accepted strong encryption instead of trying to roll
their own.

Bye.
Jasen
 
F

Frithiof Andreas Jensen

Jan 1, 1970
0
Reading the M$ Vista reqirements, hardware has been and is being
altered to "conform" to the DRM "mandate"; that means *all* OSes will
have to kowtow to each and every (different) manufacturers
implimentation in handling the digital stream thru the transforms
required as data travels from DVD to screen.

Well, we all know what is going to happen when the developers are ordered to
"make this work before we ship - or else"!!

The implemetation is quickly boiled down to a choice between: Either
implementing the protocol as Bill & Hollywood intended (and probably blow the
shipping date and the bonus check) or focusing on the "work" part of the
requirements; i.e. Lie and Cheat so that HD DVD plays when inserted, "sekrety"
sofware is "happy" and $BOSS is Happy.
 
J

James Beck

Jan 1, 1970
0
Nope. An MPEG-2 transport stream is the exact same stream that
peels off a DVD.
Not what I meant.
Since a satellite stream is never the EXACT same content, it is never
the same data. Unless they played the same movie, over and over again,
the data stream is almost random.

You're an idiot, and 99% of all copied DVDs in use today are not
backups, you pirate fucktard.
Didn't say there were. I said there is no legitimate reason to backup a
data stream from some one else's satellite. Ahhh, slinging insults, the
last refuge of a little minds, with little self confidence.

Back to the pirate fucktard. You say hacker, I say twit bent on not
paying for what he gets. Same result. You are a bunch of thieving
bastards.

Why would my questioning of your opinion make me a pirate, and why the
personal insults? Are you related to Phil Allison or just seeing the
same shrink?
That's the beauty of USENET, it lets little Napoleans vent with no
reprisals. I'll bet your 40 years old, living at home, and your mom
still beats you for leaving the toilet seat up.
They are working on their own CRAP. They are likely not even making
an attempt.

Yeah, but the pirate market is too big a fish for them to pass up.

Jim
 
M

MassiveProng

Jan 1, 1970
0
Since a satellite stream is never the EXACT same content, it is never
the same data.

easily recordable. In digital form, yes. I said that... alredy...
or was going to.
 
M

MassiveProng

Jan 1, 1970
0
Didn't say there were. I said there is no legitimate reason to backup a
data stream from some one else's satellite.


Unless you are trying to get keys or break encryption. Remember the
topic of the thread, dude.

You seem to think cracking an optical disk is easier because you can
look at the same set of bits over and over again, and I am saying that
a satellite stream is no harder as accomplishing the same thing is all
one needs do. One just would have to record a segment of it.

Ever see the movie "Brainstorm"?

ahhh nevermind...
 
M

MassiveProng

Jan 1, 1970
0
. Ahhh, slinging insults, the
last refuge of a little minds, with little self confidence.


You're the one that seems to be wanting to crack HD DVD. I burn data
discs on my PC. I BUY movies from a legitimate retailer.

So if you're not a pirate fucktard, say so. Otherwise, your
admission would make you... a pirate fucktard. Pretty simple shit.
Not an insult to anyone not a pirate, and if you are, it's an
observation of fact, not an insult.

So if you are not a pirate, you should not feel insulted, and if you
feel insulted, you're likely a pirate... and a fucktard.
 
Top