EDN Senior Technical Editor Brian Dipert exposes, analyzes and
opines on diverse topics in technology. Follow the Brian's Brain Twitter feed at www.twitter.com/BrianzBrain.
Advertisement
Profile
RSS Feed
-
Add this blog to your RSS newsreader!
Recent Posts
- Dispatches From Taiwan: A Bewitching E-Book Tote-Along
- Self-Serving 'Synergy': Silicon Image's HDMI Unholy Trinity
- Garmin's Forerunner 405 Series: The Personification Of Location-Based Services
- The Tech Tidbit Smorgasbord: An End-Of-Workweek Cure For The Bored (Or Easily Distracted)
- Apple's iPhone Series: Acquisitions And Various Other Ruminations
- High SATA Speeds: Just For SSDs?
- Intel's Rise = ARM's (Minor) Demise: Nokia Drops An Atom Bomb
- RSS In An Email Client: Netbooks And NewsGator Make It Easy, You Can't Deny It
- Apple And Steve Jobs: Shame On You If The WSJ Report Is True
- AT&T/Apple (And Other) Hardware Cost Subsidization: A Certain Path To Sooner-Or-Later Customer Frustration?
Recent Comments
- Dell''s disappointer on SD = No Future Compatibility Security?
- ScienceLiterate on The Resurrection Of Cold Fusion: A Much-Needed Transfusion Or Continued Delusion?
- TheMANwithNOname on 2012: The Year Of Looming Solar Disaster, When Civilization Devolves?
- SSD Dude on High SATA Speeds: Just For SSDs?
- David on Malware: Another Pandemic Of Which You Need To Be Aware
Most Commented On
- Canceling Sirius: So Frustrating, It's Making Me Delirious (79)
- Windows Vista: What's With The Negative Dogmata? (73)
- Sigma SD14 Dissatisfaction: Finally Believe Me, Foveon Fanboys? (66)
- Nintendo's Wii: Privily, Why So Rare Art Thee? (63)
- 2012: The Year Of Looming Solar Disaster, When Civilization Devolves? (56)
Archives
- June 2009
- May 2009
- April 2009
- March 2009
- February 2009
- January 2009
- December 2008
- November 2008
- October 2008
- September 2008
- August 2008
- July 2008
- June 2008
- May 2008
- April 2008
- March 2008
- February 2008
- January 2008
- December 2007
- November 2007
- October 2007
- September 2007
- August 2007
- July 2007
- June 2007
- May 2007
- April 2007
- March 2007
- February 2007
- January 2007
- December 2006
- November 2006
- October 2006
- September 2006
- May 2006
- April 2006
- March 2006
- February 2006
- January 2006
- December 2005
- November 2005
- October 2005
- September 2005
- August 2005
- July 2005
- June 2005
- May 2005
- April 2005
- March 2005
By Category
- Convergence (2)
- Digital ICs (1)
- ESC (1)
- Multimedia (2)
- Opinion/Analysis (1)
- Peripherals (1)
- Semiconductors (1)
- Show Daily Report (1)
Consumer Electronics Design Articles
- EDN on Consumer Electronics: Accelerating consumers' NAS adoptions
- Memcon panel explores readiness of DDR3
- Accelerating consumers’ NAS adoptions: assessing your product options
- EDN on Consumer Electronics: Apple's iPhone 3G S: Presenting its secret specs
- EDN on Consumer Electronics: Is multimedia abandoning DSPs?
- More...
Blog
Saturday, December 30, 2006
AACS 0wn3d? An Update*
Dec 30 2006 4:40PM | Permalink |Email this|Comments (13) |
In late 1999, hackers discovered an unprotected CSS key in the object code of the Xing DVD player. Shortly thereafter, a flood of CSS-circumventing DVD ripping programs emerged. Before I continue, I'll elaborate on key portions of the prior two sentences:
- "Back in late 1999": This was roughly four years after the DVD standard was approved, and approximately three years after the first DVD players went on sale.
- "Circumventing": The CSS algorithm wasn't cracked. Due to human coding error, an encryption key was left exposed, and the whole house of cards promptly came tumbling down.
Now fast-forward to the present. This past Thursday evening (eight months after Toshiba began selling its HD-A1 HD DVD player), I alerted you to the first reports of a possible crack of the AACS encryption algorithm at the core of HD DVD (and, for that matter, Blu-ray). Since then, I've uncovered a few more nuggets that I think you'll find interesting. And things may get even more interesting if the hacker known as Muslix64 follows through with the promise made at the Doom9 forum thread which linked to the decryption routine:
I already have a version that works with volume key instead of title keys. Even more powerfull! Version 1.0, with volume key support should be out on january 2
Question 1: Did Muslix64 crack AACS? Actually, it appears he/she didn't; instead the hacker circumvented it, relying on the same sort of human error that crippled CSS over seven years ago. The FAQ that accompanied BackupHDDVD mentioned CyberLink's PowerDVD, and the YouTube video Muslix64 made (which is, I must say, quite entertaining) also shows the program running. CyberLink hasn't responded to my requests for comment, but several anonymous and well-placed sources indicate that the program is the source of the leak. Apparently, Muslix64 figured out how to find the unencrypted title keys in system RAM.
Question 2: Is Blu-ray immune? Yes, at least for the moment. But probably not for long. Muslix64 indicates that he/she doesn't own a Blu-ray drive; an Xbox HD DVD drive like the one I wrote about earlier this month was used to read discs on the PC (coincidentally on Christmas Eve, prior to hearing about the hack, I obtained my own copy of Cyberlink PowerDVD Ultra). However, although my original post on this topic suggested that Blu-ray's beyond-AACS BD+ might protect it, several other anonymous and well-placed sources indicate that BD+ is not yet finalized and therefore not yet implemented; existing Blu-ray titles are protected only by AACS. PowerDVD also supports Blu-ray. So if someone else can figure out how Muslix64 found the title keys (or, alternatively, if Muslix64 gets his or her hands on a Blu-ray drive) it's not a stretch to imagine Blu-ray discs also being compromised. On that note, I owe the HD DVD Promoters group an apology; I probably should have instead titled my original post "AACS Encryption Cracked?".
Question 3: Is this circumvention recoverable by HD DVD's backers? Unclear. Revocability is at the core of AACS and similar modern DRM schemes, and AACS's cryptographic validation procedure incorporates a handshaking protocol between keys embedded in the media and those within the client (PC-based software, dedicated player, etc). The client key for PowerDVD could be added to the 'revoked' list for future HD DVD media, preventing playback until users upgraded to a newer, fixed version of the program. But I'm pretty sure that all already-pressed media is vulnerable. Also, please note that Muslix64 promises a 'volume key' version of BackupHDDVD in a few days. I believe that he/she means 'volume identifier', which is well described in this AACS document (PDF). The distinction between volume and title keys is small (they both span only a single disc) but may be significant.
Frankly, at the end of the day, whether or not AACS has been crippled means absolutely nothing to organized pirates. They have plenty of other avenues at their disposal to obtain high-quality A/V sources, including leaks from movie studio insiders and high-def video cameras in theaters. However, just as the original P2P version of Napster put the hurt on the music industry, the defeat of AACS will encourage computer-savvy individuals to obtain their movie fixes from copyright-infringing Internet sources. Yes, a high-def film is a massive download payload. See one of the many reasons why I'm closely following the fiber rollout, not to mention the plummeting prices and burgeoning capacities of HDDs? Ars Technica's recent observations (picked up by Slashdot) on piracy's increasing popularity at the expense of legal video acquisition are quite timely in this regard.
I'll close with a personal plug. In researching this piece, I reacquainted myself with a feature article I wrote back in early 2000 on digital rights management. It's quite comprehensive, if I do say so myself, and still scarily relevant. Give it a read and then tell me, and the other denizens of Brian's Brain, what you think.
And now I'll lighten up; check out Gizmodo's top 5 hacker videos. Enjoy!
Reader Comments
at 12/30/2006 10:38:16 PM, Marcos said:
We're reaching, or in some cases, have reached the point, where purchasing unauthorized copies from a pirate source AT FULL PRICE is a better value proposition for customer. Even Apple's iTunes DRM, the least obnoxious of the DRM schemes, is close to the edge. So the pirates and the P2P networks will be competing with the Studios not only on price (much cheaper to free) but on product quality as well. By offering an unencumbered product, they'll be offering a better product. Furthermore, we already have the example of the Sony rootkit, where a studio product could actually cause damage. On the studios' side of the equation, they offer the consumer lawful and authorized copies. Realistically, the studios don't have a chance if they continue down this road. And I'm not even getting into the FUBAR situation of people's players being blacklisted and needing updates to continue working with new product, as keys are discovered. That's going to go over real well with consumers. Trusted Computing Platform (TCP) is a big bogeyman among some of the free software people. I think the threat is overblown.
at 12/30/2006 10:39:32 PM, Marcos said:
My formatting disappeared!
at 12/30/2006 10:54:34 PM, Marcos said:
<p>OK, read your article. Much of it was over my head technically, but I think I got the gist.</p> I also picked up on some implications, whether they were intended or not. The Studios sell a product that we can call an entertainment/cultural product. If the use of this product (for example movies and music) becomes too onerous, the consumer will move to other products, perhaps completely different categories of entertainment/cultural products. People will go to where the fun value is and spend their money accordingly. Look at the success of the Wii this holiday season, where the money went to the product with the best fun/cost ratio.
at 12/30/2006 10:56:23 PM, Marcos said:
Nothing personal, but your commenting system sucks. =) Perhaps this is ironic, given the topic.
at 12/31/2006 3:01:31 AM, Toni said:
When will the companies understand that, by purchasing expensive copy protection systems, they are being lured in a fraudulent scheme? Since we have general-purpose systems, copy protection is theoretically impossible. In order to allow legitimate users to access the product, you must provide the content, an implementation of the algorithm and the key. So you're also providing it for others. It's intrinsecally unsecure, no matter how obscurely you implement the decryption process. So it's only a matter of time until someone finds his/her way through. A second step is cracking the actual code. Also, just a matter of time and more powerful computers. Although in this case the "time" involved could be years (or millions of years
at 12/31/2006 10:32:42 AM, Brian Dipert said:
Thanks, Marcos and Toni, for your comments, and my apologies for any difficulty with our comments system. I've been aware of the formatting bugs for some time now and have reported them to the folks who run our website; I hope they'll get fixed soon.
at 12/31/2006 10:59:29 AM, Mike said:
Imagine a Friday night where you pop in a HD-DVD you just rented, sit back, and get the error "This HD-DVD Player has been blacklisted. Please download new firmware or call us during business hours to have updated firmware mailed to you."
at 12/31/2006 12:47:05 PM, Brian Dipert said:
It's a Brave New World, Mike....;-)
at 1/1/2007 3:43:16 AM, efnethore said:
Allow me to take this opportunity to praise you for your level of professionlism. There is truely nothing like having leetspoke in a news article, Brian. Tips for you though, you can say '0wnt' or 'pwnt', but never '0wn3d', alternating capitalization aside. Concerning the 2nd of your 'prior two sentences', I believe you should do a little research before making a statement as facts. The authentication process used by CSS involving title key and bus key, were successfully reverse engineered by linux interest groups long before DeCSS came to be. If you don't think that qualifies as a crack, let me inform you that there are also birthday attacks that can literally crack the 5 byte key that CSS uses. The encryption algorithm can thus be cracked in 2^16 tries, another method can retrieve the disk key hash in 2^25 tries. Now, please let everyone know that CSS was indeed cracked. I'm not even going to say anything to your AACS comments, seeing that you obviously don't have a clue. If you don't think we can crack AACS, watch us work.
at 1/1/2007 6:06:39 AM, Tumelo said:
I'm always amused by the constant attempts by studios to upgrade or update the encryption they use on the endproduct, If as you say, people's players are likely to end up being blackmailed for deigning to utilise non-proprietary products, or products whose proprietary software has been revoked by pirates, then why on earth would anyone want to buy directly from the studios, I certainly might be motivated to buy pirated material. Right there, is something that turns normally law abiding people into criminals, when will they learn??
at 1/2/2007 8:31:41 PM, 1ee7 h4x0r said:
0wN3d and its variants are all perfectly acceptable. Using pwn and its variants would mark you as a computer game nerd, and nothing more.
at 1/2/2007 8:33:23 PM, Brian Dipert said:
Thank you, 1ee7 h4x0r, for that vote of confidence. I'm reassured to know it's not true that I "obviously don't have a clue" ;-)
at 6/4/2007 6:52:34 AM, G0d said:
The main intention of many pirates is to get the movie out in DVD, not to crack the system. As Muslix did, he could get the movie, end of the story. Also on AACS LA website, they confirm about the successful attack on AACS product. What about that ?
Post a comment
About Us | Contact Us | Free Email Newsletters | Free Magazine Subscription | Advertising | 
RSS
©1997-2009 Reed Business Information, a division of Reed Elsevier Inc. All rights reserved.
Use of this Web site is subject to its Terms of Use | Privacy Policy