Slashdot Mirror

← Back to Stories (view on slashdot.org)

HDCP Break Proven

Posted by timothy on from the importance-of-honesty-in-a-relationship dept.

zavyman writes: "I just noticed at Cryptome that the flaws in HDCP posted to Slashdot earlier this year, which one person refused to disclose due to possible threats from the DMCA, have been made public by different authors. Scott Crosby of Carnegie Mellon University, Ian Goldberg of Zero Knowledge Systems, and Robert Johnson, Dawn Song, and David Wagner of UC Berkeley have published a formal cryptanalysis of the High-bandwidth Digital Content Protection System that proves its fatal flaws. Interesting reading for those with some background with cryptanalysis."

9 of 220 comments (clear)

  1. Just in case... by Akardam · · Score: 4, Informative

    Just in case the origonal authors' fears are justified, I've mirrored the page here [http://lookingglass.akardam.net/mirrored/hdcp-wea kness/hdcp111901.htm for the link wary].

    Mirror early, mirror often.

  2. This is unbelievably lame by apankrat · · Score: 2, Informative

    Having a bit of formal training in Math, I'm just speechless. This is not crypto analisys, this is second semester of Algebra, Quiz question #2.

    Public/Private keys .. blech .. I do not know who designed this, neither I'm not sure if they even cared to independently evaluate it, but this is incredibly and incomprehensibly lame. It's like using XOR encryption or computing hash bytes multiplication.

    --
    3.243F6A8885A308D313
  3. From the indications I know of. by Convergence · · Score: 5, Informative

    (This is the author of the slides, BTW)

    Intel wanted a scheme that could be implemented in under 10,000 gates. IMHO, the designers were aware of the flaw, though not necessarily of the full impact of the flaw. Some of the attacks are subtle.

  4. As the person who was first..... by Convergence · · Score: 4, Informative

    There were two versions posted on cryptome, the second (latex2html, much easier to read) omitted this statement the first version had:

    `` The attacks on HDCP are neither complicated nor difficult. They are basic linear algebra. Thus, there have been at least 4 independent discoveries of these flaws. The four I know of are my co-authors, Neils Ferguson, Keith Irwin (http://www.angelfire.com/realm/keithirwin/HDCPAth acks.html), and myself (www.cryptome.org/hdcp-weakness.htm). The last two have been available publically for 3 months and 3 weeks prior to Neils Ferguson's declaration. Neils declaration and the skylarov case were an eye-openeer for me and made fully realize what I had done, and what negative consequences I was in danger of experiencing.

    What wrathful gods one risks angering by a 20 minute straightforward application of 40 year old math. This was an accident, not a habit. Like other researchers, I do not want to be smited and thus do not expect to analyze any more such schemes as long as the DMCA exists in its current form.

    (This statement is my own and does not represent the opinions of my co-authors.)''

    So, for those of you who watch cryptome, I broke it there about 3 days after it was leaked, 6 months ago. Keith Irwin also put his observations up 3 months ago. All of this predates skylarov and ferguson.

    So, this is only the official version of the break, the slides I presented 2 weeks ago.

  5. It was broken over 6 months ago. by Convergence · · Score: 5, Informative

    I broke it over 6 months ago, go look at the cryptome archives, where its been sitting since May 9th.

    I know of at least 4 researchers who have independently discovered the flaws. (See my other slashdot post).

    After Skylarov and Ferguson, I was reluctant to point out that my work had been sitting around on cryptome since May. I suspect Keith Irwin felt similarily.

    Neils wasn't the first to go public or even second, though he did raise a wonderful stink. :)

  6. Re:mirrored by jbridge21 · · Score: 3, Informative

    ok sorry changed the URL due to misinformation

    here's the proper URL

  7. HDTV by Ogerman · · Score: 5, Informative

    This is pretty basic, but for those who don't know, HDCP is the encryption scheme of choice for HDTV video signals. This is fairly huge news that it has been broken since all TV's and broadcasts in the US will supposedly eventually switch to the HDTV standard. Unless they pull a fast one and switch the standard (which would alienate everyone who has already bought expensive HDTV equipment), this means that DMCA or not, people are going to have guaranteed access to plaintext HDTV signals for as long as the standard is in use. Of course, I'm personally hoping that the DMCA is at least re-written, preferrably scuttled altogether.

    1. Re:HDTV by digithead · · Score: 2, Informative

      On January 1, 2007 all analog broadcasting in the US is scheduled to cease IF 85% of the homes in the US are capable of receiving digital TV. That's probably a pretty big "if" right now. Especially since the industry can't get it's act together on some of these content protection schemes.

      There are quite a few early adopters who will be alienated by the lack of an appropriate digital interface (DVI or IEEE 1394) on their multi-thousand dollar HDTV. Without this interface their set-top HDTV tuner won't be able to verify that it's allowed to pass on a full resolution digital signal for HDCP encoded content. The result is that most current HDTV owners won't be able to watch full resolution pay-per-view, premium channels and whatever else the networks or MPAA will require be encoded with HDCP.

      Why didn't they buy a set with IEEE 1394 or DVI you ask? Because there basically aren't any available. JVC has one set with DVI, select Mitsubishi's have IEEE 1394 and no set-top boxes have either! Even if you have a set with an appropriate interface, you'll have to replace your box and most of them are still close to $1K. Please, don't even get me started on the problems with the current set-top boxes.

      The cracking of HDCP may futher delay the availability of additional content since the MPAA doesn't want full resolution HD movies being broadcast without it. I just wish the broadcasters, manufacturers and content providers could all just figure this mess out so consumers can start seeing beautiful digital TV. If you haven't seen a full blown HD signal on a properly configured monitor, you're really missing something!

      BTW, don't even ask about the satellite boxes which include code that allows the direct broadcast satellite companies (DirecTV & Echostar) to downrez any program they wish to whatever resolution they choose!

      --
      Once you lick the lollipop of mediocrity, you'll suck forever!
  8. Wiretap by Ian+Peon · · Score: 2, Informative
    No, I'm in favor of being able to get wiretap permission for a person, and then be able to tap cellphone, fax, phone, etc without having to go through more redtape.


    OK, scenario for ya: I work in a small office (25 people) and one of them is a subject of an investigation. When you pick up the phone anywhere in our office, the phone system grabs the next free line. That means that the FBI will be listening to ALL CALLS into and out of our office because this person may be using that phone. The legislation does not limit this! There was a Senator (can't remember the name, can't find it on Google) who had wanted to add that the tap was not allowed to be monitored if the suspect was not on the phone at the time, but this got shot down.


    Another question is how often does a suspect use a phone before it's wire-tapped? Should we expect all public to be tapped? If I throw a party and a friend-of-a-friend makes a call or two to order a pizza, should I wonder if my phone is now tapped?

    --
    Never never never smoke crack before geometry class!