First AACS Blu-Ray/HD-DVD Key Revoked

Thomas Charron writes "An update posted for Intervideo WinDVD 8 confirms that it's AACS key has been possibly revoked. WinDVD 8 is the software which had its device key compromised, allowing unfettered access to Blu-Ray and HD-DVD content, resulting in HD movies being made available via many torrent sites online. This is possibly the first known key revocation which has taken place, and little is known of the actual process used for key revocation. According to the release, 'Please be aware that failure to apply the update will result in AACS-protected HD DVD and BD playback being disabled,' which pretty much confirms that the key revocation has already taken place for all newly released Blu-Ray and HD-DVD discs."

I don't completely get it.

[yagu]

I don't completely understand what's going on here. And that's exactly my point. I don't want to understand. Does this breach disable any user's player until they update their hardware? Will some disks play and others not? (I'm kind of making this up, but I'm role-playing what most consumers are experiencing based on my limited anecdotal observations).

I don't want to know the ins and outs of the security of the media. I want it to work like the old CD players. I insert a disk, I watch a movie. Simple. Easy. Done.

I think above and beyond the hurdle of introducing a new format, ahem, two new formats, for DVDs this kind of hiccup could be fatal to the rollout. People are annoyed enough with little things (cables plugged in wrong way, audio/video receivers improperly configured, etc.), when it comes to having to update firmware to be able to play stuff they've paid for, they're going to be mad. And maybe some, maybe many are going to rethink their upgrade plans and find regular DVD okay enough. And maybe people who have been considering HD DVD will stay away in droves. Fingers crossed.

Re:I don't completely get it.

[Gossi]

What this means is that *NEW* HD-DVD and Bluray discs won't work on old players, unless patched. It's a consumer nightmare as they won't know nor care about HD-DVD piracy -- they just want a disc which works.

Put simply: industry + clueless = idiots who damage their own profits. The music industry has proven this well already -- now it's time for the movie industry to not learn from the past.

Re:I don't completely get it.

[scottnews]

It means *NEW* HD-DVD and Bluray discs won't work on WinDVD 8. The key for WinDVD 8 has been revoked. Other players use different keys. Those have not been revoked. WinDVD has released a free update with a new key, and presumably an attempt to encrypt it.

This is why HD-DVD and Bluray players require a network jack. It allows for old keys to be removed and new ones to be implemented, among other things.

Re:I don't completely get it.

[Kjella]

What this means is that *NEW* HD-DVD and Bluray discs won't work on old players, unless patched.

Actually:
1. New discs won't play on the players who has had their keys revoked. Just to make that clear, this only has any effect for users of the WinDVD software player.
2. If I remember correctly, the player will keep a version of the revocation keys. So from what I've understood, once you put in a disc which says "Hey, you're supposed to be revoked" that player will stop working until you get an upgrade.

For a software player, this isn't more than what it just said - a required software update. It doesn't get nasty until hardware keys are found...

Re:I don't completely get it.

[midnighttoadstool]

They are trying to address the problem of the rights of the copyright holder in this age of the internet. They aren't clueless idiots.

It may be that in the end the internet will bring an effective end to the mini-monopolies that copyright gives the holder, which may even be reflected in law as a recognition of a new reality. And we'll go back to musicians getting paid the same as anyone else.

They are afraid of that and working very hard to stop anyone realising that new reality, particularly law-makers.

Re:I don't completely get it.

[LarsG]

If I remember correctly, the player will keep a version of the revocation keys. So from what I've understood, once you put in a disc which says "Hey, you're supposed to be revoked" that player will stop working until you get an upgrade.

Ouch. Imagine all the damage an enterprising anti-DRM vigilante can do if revocation lists can be faked. Or a SNAFU in the manufacturing plant.

Re:I don't completely get it.

So can I then sue the movie studio for releasing defective product which destroyed my $500 machine?

Re:I don't completely get it.

[evilviper]

once you put in a disc which says "Hey, you're supposed to be revoked" that player will stop working until you get an upgrade.

This myth appears to have originated simply by a reporter from The Register misunderstanding an out-of-context quote, from someone who didn't entirely understand AACS to begin with.

Reading about AACS from the source, I didn't see anything like this at all. So please stop spreading bullshit myths.

And don't drink coke while you're eating pop rocks, or your stomach will explode, and you'll die.

Re:I don't completely get it.

[kinglink]

This is the type of stupidity I expected to find.

You own the discs, no one is going to take them away from you. You own the right to use those discs. However WinDVD8 lost to right to play those discs. WinDVD8 then is issued a new key, and will continue to be allowed to play those discs. It's just requiring a update for the software. That seems reasonable in this case. Completely locking out a hardware drive or something that can't update would be unreasonable, but right now this isn't sounding like a bad thing.

The group behind this owns the format, if you disagree with this policy (Which was public from the beginning) You don't have to buy either of these formats, dvd still works wonders. But they aren't being unreasonable here. It's the same way if you disagree with Microsoft you don't have to buy the 360.

Re:I don't completely get it.

[evilviper]

Fastest mod-up ever? I just reload the comment I finished posting, and it's at +3...

Re:I don't completely get it.

[JWW]

Yep, I think this might answer the whole question of which format will win question....

The answer is neither....

When screw the customer is one of the FEATURES of a product the people selling it are #$#$%$% morons!

Re:I don't completely get it.

[Original+Replica]

Remembering the purpose of being in the industry in the first place - selling entertainment to people.

Fixed that for ya.

Re:I don't completely get it.

[SiliconEntity]

once you put in a disc which says "Hey, you're supposed to be revoked" that player will stop working until you get an upgrade. This myth appears to have originated...

It's not a myth at all. Try reading section 4.8 of the AACS Introduction and Common Cryptographic Elements spec:

An AACS licensed drive shall retain in non-volatile storage, the most recent Host Revocation List (HRL) data which it encounters and has verified. To do this, for the first AACS drive authentication to the media inserted, the drive shall read an MKB recorded on the media to check if its version is higher than the version of HRL that it has stored in its non-volatile memory... If the version of MKB recorded on the media is higher than the version of HRL that the drive has stored in its non volatile memory, the drive verifies the signature in the Host Revocation List Record of MKB as specified in section 3.2.5.2. If the signature is successfully verified, the drive shall replace the previously stored HRL data, if any, with the newly read HRL data.

What this means is that disks are distributed with Host Revocation Lists on them, cryptographically signed by AACS. Whenever a disk is inserted, the drive checks to see if the HRL on the disk is newer than the one it has in nonvolatile memory, and if so, it checks the AACS signature on the new one and stores it in memory. This allows a drive to refuse to talk to a given host software. Likewise there is a drive revocation list that the hosts are supposed to hold which tells them not to talk to certain drive versions, in case an attack is found in some models of drives.

Re:I don't completely get it.

[rlp]

> if you disagree with this policy ... You don't have to buy either of these formats

Works for me.

Re:I don't completely get it.

[Jah-Wren+Ryel]

What this means is that disks are distributed with Host Revocation Lists on them, cryptographically signed by AACS. Whenever a disk is inserted, the drive checks to see if the HRL on the disk is newer than the one it has in nonvolatile memory, and if so, it checks the AACS signature on the new one and stores it in memory. This allows a drive to refuse to talk to a given host software. Likewise there is a drive revocation list that the hosts are supposed to hold which tells them not to talk to certain drive versions, in case an attack is found in some models of drives.

Fortunately, the Xbox HD-DVD drive (which works great on PC's too) has just been hacked to ignore these kinds of revocations.

Re:I don't completely get it.

[WaltFrench]

An AACS licensed drive shall retain in non-volatile storage, the most recent Host Revocation List (HRL) data which it encounters...

Makes me wonder: what will be the bait for the downloadable DVD Trojan that includes spoofed HRL files to disable the most popular 100 DVD players? Nude Brittany? Snuff Films? Hillary & bin Laden in flagrante delicto? Or will the Trojans target only Sony, or MSFT, or ???

Or how about some warez that'll burn a 15-second DVD of the FBI warning, complete with an as-of-today HRL that re-grants permissions to a user-specifiable list of devices? How long until they appear?

Looks like the vaunted AACS encryption scheme is rather leakier than anybody could've imagined. Whee! "Inquiring Minds Want to Know!"

Re:I don't completely get it.

[Caffeinate]

We went over this above. Old disks will continue to play. However once you put a new disk (newer than the revocation date) in the player, the blacklist is updated and NO disks will play until an updated key is flashed to the player.

For more details - http://www.google.com/.

Re:I don't completely get it.

[Splab]

Since you don't have the key to sign the lists it will take just about for ever until that happens - or the key gets leaked.

Re:I don't completely get it.

[kinglink]

Works for me too. I still use Dvds even with my HDTV, I do use an upscaled DVD player.

Re:I don't completely get it.

[whyde]

When I first became aware of AACS, I read what I could of the spec and pondered whether it would be possible to produce and distribute a disc which deliberately uses the properties of NVM and the MKB/HRL specification to insert a bogus "maximum value" HRL which contains a do-nothing (or nothing useful) revocation list.

The net result of this is, once inserted, the disc guarantees that all future discs will play regardless of the player codes which have ever been, or will ever be, revoked. Since it has no concept of time except for the supposedly monotonically increasing version numbers of the HRL, it should be possible to max out the HRL value so no disc can ever update the player's revocation list.

I'd be suprised to find out that this is not possible.

Re:I don't completely get it.

[afidel]

What a bunch of bullshit, your player doesn't disable itself just because it sees its key in the key revocation list of a disk! The disks title key is encrypted with all of the valid keys and keys which have been revoked are simply not used to encrypt the disks title key, and therefore the disk will not play. You still have access to all titles released before the key was disabled.

Re:I don't completely get it.

[Erpo]

once you put in a disc which says "Hey, you're supposed to be revoked" that player will stop working until you get an upgrade.

This myth appears to have originated...

It's not a myth at all. Try reading section 4.8 of the AACS Introduction and Common Cryptographic Elements spec

It isn't a myth, but Host Revocation and Drive Revocation are trivial to bypass and are not what is being described in this article.

HRLs and DRLs only serve to stop Hosts (PCs) and drives (HD-DVD or Blu-Ray) from communicating with eachother. For example, if a host's certificate is revoked and the drive knows this, the drive will not read certain bits off of the data medium and pass them along the ATA bus back to the PC. The bits are still on the medium and they are not encrypted or anything like that. The drive will just refuse to read them. This has already been fixed in at least one instance by flashing the drive's firmware. In any case, all one would need to do to get around this for good would be to make an HD-DVD or Blu-Ray drive that just reads the bits off of the medium and passes them back to the host PC just like a CD-ROM or DVD-ROM drive does.

What's being described in this article is that the software player's "device keys" are being revoked. Here is how that works (basically):

Each disc contains video that is encrypted with a master key. Each player contains a set of "device keys". The subset difference tree algorithm (part of the AACS spec) is used to encrypt the master key so that it can only be decrypted by a certain set of device keys. Before WinDVD 8 was revoked, the subset difference tree algorithm was used to encrypt the master key for each disc so that it could be decrypted by any set of device keys. Now, according to the article (or at least the summary), new discs are being produced for which any set of device keys can be used to recover the master key except WinDVD 8's device keys.

So, if you managed to get a copy of WinDVD 8's device keys before today, you were set. You could decrypt, play, and copy any Blu-Ray or HDDVD disc. Now, you can't decrypt, play, or copy new Blu-Ray or HDDVD discs, at least until you get your hands on a new set of device keys...

Note: I have deliberately dumbed down my explanation of the spec for two reasons. First, there are several intermediate keys that are involved in the process. Explaining the function of each and every intermediate key between the device keys and the title key would take a long time and not contribute any real information about the "spirit" of how AACS works. Second, the AACS spec is not fully implemented. According to what I have read, the AACS spec includes the concept of sequence keys that can be used for "forensic" purposes. However, the Sequence Key Blocks required to get any benefit from that part of the spec are not present on current Blu-Ray and HDDVD media.

Re:I don't completely get it.

[blitziod]

the "Solution" lies with us, or you rather as I am a reseller. Produce an open source hi def format that anybody can use royalty free and nobody owns. Pirates will distribute content on it, thus insuring every PC in the world has a player. Once adopted by every PC , samsung, sony, toshiba, etc will HAVE to make hardware that can also read it. Soon after major production co's will one by one tire of paying for useless DRM license fees. Then nobody will use DRM. MP3 format is (slowly) doing this with music.

Re:I don't completely get it.

[smchris]

Count me confused too. So what will be _really_ cool (anarchy-wise) will be when people release hacks for consumer media hardware of the future the way people hack game consoles to play linux? How do they tell what hardware has been conpromised? Each Blu-Ray disk comes with an explicit agreement to let the industry probe your hardware?

Re:I don't completely get it.

[Skreems]

It's not. Or more specifically, not in the way you want.

Storing the revocation list like this is likely only useful so that the device can give the user specific instructions to go look for an update, and maybe disable itself even for older discs. Every new disc will still fail to provide a disc key to the player, as the player key will not be included in the tree of allowed ones. You still couldn't play new discs, the best you might do is prevent the player from understanding that it needs an upgrade.

Re:I don't completely get it.

[Skreems]

You do still have access to the title keys on all pre-revocation discs. However, it is in the spec that a player shall disable itself if it finds its current key on the revocation list. That includes old discs as well. So while you still COULD decrypt the title key, the player will by-design refuse to do so.

Re:I don't completely get it.

[Thomas+Charron]

Because of the WinDVD hack, the hardware key WAS found I believe.

this was primarily due to the fact that Microsoft in their infinite wisdom wasn't properly implementing USB device communications encryption, and they where able to capture all the key information over pretty much plaintext by monitoring/sniffing the USB bus.

Re:I don't completely get it.

[brandond1976]

This is why HD-DVD and Bluray players require a network jack. It allows for old keys to be removed and new ones to be implemented, among other things.

HD-DVD is the only one that requires the player have the necessary hardware to access the network. In Bluray it is optional.

Re:I don't completely get it.

[TClevenger]

Remembering the purpose of being in the industry in the first place - renting entertainment to people.

Fixed that for you. :-)

Re:I don't completely get it.

[SiliconEntity]

Your description of device keys and such is accurate if simplified, but how do you KNOW that this is all that is involved in the update? The Intervideo site says

This update includes security enhancements as well as updated licensing keys that will be required to view both newly purchased HD DVD/BD titles and those in your existing HD DVD/BD collections.[Emphasis mine] That last part wouldn't be true if all they were doing is switching to a new set of device keys. Also this part:

Please be aware that failure to apply the update will result in AACS-protected HD DVD and BD playback being disabled. would not be true either.

I'll also point to the AACS site, where they say,

Through this online update process, manufacturers are also able to see that consumers update their player implementations prior to distribution of encryption key expiration information via new movie discs. That phrase, "distribution of encryption key expiration information via new movie discs" sounds a lot like distribution of an HRL.

Granted, the situation is ambiguous. But it seems to me that this could indicate that as part of the Media Key Block update on new disks, a new HRL will be distributed to invalidate the old WinDVD host key, in addition to the changes for the new WinDVD device key. That would be more consistent with what all these parties are describing.

Re:I don't completely get it.

[neccoant]

Moderate parent up.

Re:I don't completely get it.

[Erpo]

But it seems to me that this could indicate that as part of the Media Key Block update on new disks, a new HRL will be distributed to invalidate the old WinDVD host key, in addition to the changes for the new WinDVD device key. That would be more consistent with what all these parties are describing.

You're 100% right.

There's already enough misinformation layered on top of AACS, which is built on the fundamentally impossible idea of DRM. Thank you for helping to keep me from adding to it. Hopefully anyone who reads my post will also read your reply.

Mod parent up, please.

Re:I don't completely get it.

[Flendon]

What this means is that *NEW* HD-DVD and Bluray discs won't work on old players, unless patched. It's worse than that:

This update includes security enhancements as well as updated licensing keys that will be required to view both newly purchased HD DVD/BD titles and those in your existing HD DVD/BD collections. By downloading Corel's free update, you will be able to continue to enjoy the latest HD DVD/BD content, while ensuring that copyrighted materials are properly protected.

Please be aware that failure to apply the update will result in AACS-protected HD DVD and BD playback being disabled. - intervideo.com (first emphasis mine, second emphasis in original)

When the crack was first being discussed on the doom9 forums this was covered. Every disc comes with a list of valid keys. The player will check if the list on the disc is newer than the list in memory. If the disc has a newer list it will update the list in memory. So any disc produced after the key was revoked will 'patch' WinDVD to stop playing HD content until you apply the 'security patch'. Don't have internet access to patch your system? So sorry, thanks for all your money, pirate! Several of those doing the cracking told the others not to mention what player they were using to do their debugging to prevent exactly this situation.

It should also be noted that InterVideo does not supply the patch, but refers you to "your PC or Drive manufacturer's websites."

Re:I don't completely get it.

[(Score.5,+Interestin]

It's actually quite possible, see the description of player immunization at http://www.cs.auckland.ac.nz/~pgut001/pubs/vista_c ost.html#revocation, down towards the end of the section.

Re:I don't completely get it.

[RockDoctor]

This is why HD-DVD and Bluray players require a network jack. It allows for old keys to be removed and new ones to be implemented, among other things.

Run that past me again, please.
Does that mean what I think it does - the support services for HD-DVD and Blue Ray consist of :

1. mains electrical power (240VAC, or whatever you have in your country;
2. Some sort of display unit to put the pictures onto; and
3. a connection into an internet-connected network, with one of several types of network authentication processes, and permission to talk to one or several hosts on the internet.

In short, Cleetus and Do'reen (the teuchters of the Simpsons) are going to have to have significant networking skill to get the box connected and working.
I can see a lot of boxes getting returned to the retailer, with demand for a refund, once the Cleetus-es of the world get to trying to hook this up.

It took the wife long enough to persuade me to get a TV ; I really can't see these new formats flying until they've disposed of this sort of barrier to uptake.

Awesome

[Vexorian]

No one can deny how convenient this is for the customers. The companies love us.

let's have a vote

How many of you like to have your computers controlled by media corporations and Microsoft? Voting time is now. http://defectivebydesign.org/

Re:let's have a vote

[RightSaidFred99]

You know, it's the damnedest thing. My computer is controlled by me. Everytime I see people whining about DRM I wonder what the fuss is. I run Windows XP and have had no issues with DRM because I don't buy DRM'd media. Instead of whining, I just put my money where my mouth is and so far I haven't fallen asleep cursing Microsoft or anyone else because I don't have any DRM issues to speak of. It's God Damned amazing.

Re:let's have a vote

[RightSaidFred99]

Guh? I don't have any DRM issues at work, either. Not sure what you could possibly mean.

Re:let's have a vote

[RightSaidFred99]

Oh yes, I have. I copy the DVD to my hard drive using AnyDVD and I put the DVD for the games in when I want to play. Not exactly rocket surgery. If a particular DRM scheme doesn't fit my needs, I don't use it. Otherwise, I don't care.

Case in point - Itunes. I used to use it because the Hymn project had a crack for the content. I could buy the music and decrypt it and use it however the hell I wanted. When they changed the Itunes scheme and Hymn no longer worked, I stopped buying Itunes. Problem solved with a minimum of tears or whining.

Re:let's have a vote

[Dare+nMc]

have had no issues with DRM because I don't buy DRM'd media.

I have only bought 3 un-cracked DRM'd media, I have plenty of DVD's but their cracked, so no worries they load up on my media player with just a couple clicks, and a hour later it'll be loaded on my player whenever it is next turned on.

odds are that what you meant as well, you purchase no DRM'd content that is still effective.

FYI, of those 3 I bought, 1 I never got anything to work (e-book), the other 2 I got video only, no sound (HD content on DVD).

Re:let's have a vote

[Reaperducer]

Just curious -- will you return to iTunes to sample EMI's DRM-free offerings, or are you done with iTunes for good?

Re:let's have a vote

[bearfx]

So you don't have any DVD's? congrats on your self control.

Re:let's have a vote

[LordLucless]

That's nice for you. You happen to be an informed consumer. Unfortunately, you're one of a rare breed. Average consumers don't know squat about DRM key revocations on next-gen media; all they know is that BlueRay is "better" than DVD, so they go out and buy it, without knowing how much control the media companies have over their new purchase.

Due to the ignorance of the average consumer, DRM products become widespread, and, within a few years, become a defacto standard. Now it's too late, both for the educated consumer, and the ignorant one who suddenly realizes how screwed they are when their players key is revoked every six months. Because of their purchasing patterns, the DRMed media has become entrenched and there are no alternatives on the market.

Re:let's have a vote

[RightSaidFred99]

Sure I'll go back, if the price is right. I'm not an anti-DRM fanatic, I don't have any moral objections to DRM products - I just don't want them if they don't fit my needs.

Re:let's have a vote

[gdrumm0356]

Well, mine is not I guess. I've reinstalled twice, and recovery disk twice, on my two systems.
I was NOT downloading IE7 or WMP11, and they slipped in as UPDATES not UPGRADES. If one was in, the other caused the DRM messages to show up playing UNPROTECTED analog cable channels. The worst cast was gettting the message watching LIVE TV.

Please tell me again how YOU control your computer. For me I guess M$ will slip in their DRM wherever they want, and move the optional software up to critical or high priority to get it downloaded from Updates.

Fortunately, I only have to worry about this for another year or two when COMCAST goes all digital, and I can just buy a couple of DVRs. That coincides with the time to trash Windows XP and MCE anyway, since I will not be going to Vista. (most things are converted to Solaris/Wine now)

soo....

so if WinDVD 8's AACS key gets banned, basically all WinDVD 8 has to do is issue a patch to give it a new key, so that future discs will work? seems like that would be something that would be hackable and exploitable... especially if other aacs keys are known, i imagine hacks would come out to change the program's aacs key to any known unblocked aacs key...

it's entirely possible that i have this all wrong.

Re:soo....

[Dachannien]

Knowing the key in the first place is the exploit.

Re:soo....

[Skreems]

I really really don't see how they expect to hide this. At some point it has to exist in unencrypted form so that it can be used to extract the title key from the disk. So they can try to hide that, but as soon as someone pokes their way past the obfuscation, it's going to come out. With some patience, someone who knows assembly should be able to tease out the part of the code that accesses the disc for the first time, and then it's game over.

.. but what if a hardware player is compromised?

[uncleFester]

this is what's more curious to me.. when/if a hardware player ever is compromised, what are you gonna do then? the content owner denies your access to their content.. you think the manufacturer will step up with an "oops, our bad; here's a new unit to play stuff.." har.

i don't even know if this has happened with dvd or how possible it is.. but i have to think the potential is out there, and unless the unit has some sort of design foresight to resolve some issue (firmware updates to my bluRay player? and what kinda new 'security' hole is that?!?) i'd think you could be toast. .. that might actually be one class-action suit i could hop on and enjoy, just to watch potential legal fallout. :)

-r

Copyedit?

[interiot]

Can't Slashdot do a minimal amount of copyediting to stories before posting them?

An update posted for Intervideo WinDVD 8 confirms that it's AACS key has been possibly revoked. WinDVD 8 is the software which had it's device key compromised,

"Possibly" "confirmed" appears on its face as a likely contradiction, and it is... the linked article says "please be aware that failure to apply the update will result in AACS-protected HD DVD and BD playback being disabled".

Re:Copyedit?

... and for G*d's sake, it's "its," not "it's"!

(World's easiest job: slashdot "editor.")

Re:Copyedit?

[denmarkw00t]

Mod parent up! (I would, but I've already commented on this article.) /.'s editing is quite shallow - at least every sentence is properly capitalized. Maybe we need a 'Grammar or GTFO' meme... oh shi- this isn't eBaum's my bad.

Re:Copyedit?

[Dogtanian]

Can't Slashdot do a minimal amount of copyediting to stories before posting them? "Possibly" "confirmed" appears on its face as a likely contradiction CowboyNeal reports that Slashdot will "definitely maybe" take up your suggestion. Noel Gallagher unavailable for comment.

Re:Copyedit?

[Thomas+Charron]

My bad in both cases. :-)

I added the possibly after the fact, because it's assumed that it's being revoked, but we can't tell if this is a preemptive update, or if its being forced and has already been revoked.

Re:Copyedit?

[adolf]

For the sake of fuck: It's "God," or perhaps "$deity," but never G*d.

Thank you.

In other words,

[bjdevil66]

Update your software now because you are may be guilty of a crime.

hardware players?

[MoOsEb0y]

What are the implications for hardware players? Will they now need to be updated, or does this key revocation only apply for WinDVD in particular. If so, does this mean that it would be possible to hack apart a hardware HDDVD/Bluray player and take its key? This doesn't seem like a very secure system if that kind of attack is possible.

Re:hardware players?

[Kjella]

What are the implications for hardware players?

None.

would [it] be possible to hack apart a hardware HDDVD/Bluray player and take its key?

Nobody's done it, but if it happened they coudl revoke that key. Of course, if you found a way to extract it from a class of players, they might have to recall all those players.

Re:hardware players?

[bhima]

Doubtless, a update could be achieved with a properly written DVD.

Still I'd love to see the necessity.

PS3

[Sobieski]

Soo, what if PS3s key gets revoked? Would all the owners have to return their machine?

Re:PS3

[ivan256]

It's a networked device. They'd just put out a firmware update. Sorry to shatter your dreams.

It would be more interesting to find out what would happen if the key to the Sony standalone BluRay players was discovered.

Re:PS3

[fimbulvetr]

It's not that simple. If they got the first key, it's pretty likely they'll get the second, third, etc. The inconvenience of always having to flash, + the failure rate of these flashes doesn't make for a very good experience.

Re:PS3

[Odin's+Raven]

It would be more interesting to find out what would happen if the key to the Sony standalone BluRay players was discovered.

They'd probably do what standalone DVD player vendors do - release a firmware update as a disc image that customers could download, burn, and insert into their standalone player. From there, it works much the same way as flashing a desktop computer's BIOS - the DVD player starts to load the disc, recognizes it as an update, and flashes its firmware. (For example, Pansonic has nearly two dozen updates like this available in the DVD Firmware section of their support site.)

From a quick check on the Sony support site, they've already released a disc-based firmware upgrade for their BDP-S1 BluRay Player, so this seems like the route Sony would use if they ever had to push out new keys.

Re:PS3

[badfish99]

This will work fine for a few years, while there are only a few models of player, and they are expensive enough for it to be worthwhile supporting them.

But after a while it will become impossible to get updates for older models of players. People will have to keep on buying new ones as the keys for their old ones are revoked.

Perhaps the stores will start having special offers: "buy this disk for $100 and get a free player that will play it".

Re:PS3

[mccoma]

I don't think it will work fine. No normal consumer will "download a disc image, etc." They will take the player back and complain it is not playing anything anymore, or start a "virus" scare with the disc that "destroyed" their player.

Actually, this sounds like a great new business for "Geek Squad". We can rescue your player from those evil hackers - pay us.

Re:PS3

[stewwy]

yes so how do you find the new ps3 key .... you compare the new firmware with the old and voilà ( well not quite that straight forwards but you get the idea)
Its been hacked once therefore the security will be much lower as both the known key and the unknown key will be out there, the key must be transmitted with the "upgrade" or what's the point. you can also make a pretty good guess as to where in the code the information was and now is.

Re:PS3

[Tim+Browse]

I imagine the PS3 has a 'hard to get' Private Key (or even multiple ones) on a hardened chip somewhere. So they encrypt the key during the upgrade (i.e. on the wire, and presumably store it encrypted in the firmware) with the public key, and the PS3 decrypts it with the private key on demand.

After all, if the key is currently sitting in the PS3 firmware already, unencrypted, how hard do you think it would be for people to crack the encryption without an upgrade happening?

(NB. I am not a cryptographer, I just play at being a clueless amateur on slashdot)

Re:PS3

[stewwy]

(NB. I am not a cryptographer, I just play at being a clueless amateur on slashdot) same here!!
but a firmware update on disc is a MUCH easier thing to manipulate than the one on the player, that was one of the points I was trying to make.

My understanding from reading the doom9 forums is WINDVD8 was cracked by reading the pc memory during the handshaking before playback. this should theoretically be possible on any pc like device.
That's the problem with any DRM scheme at some point the data MUST be in memory unencrypted you don't need to use/understand cryptography to do an end run around it, which, basically, is what happened.
The beauty of the present situation is we now know a whole set of keys and information about those keys. Logically that makes it easier to find keys in other software no matter how well hidden

Unlike the DVD hack this wasn't the result of a flawed player (where the keys where obvious) but the result of a fundamental flaw in all DRM attempts
I seem to remember that early on in the HD/BR development for VISTA it was said that only 64bit vista would be supported because of its protected memory features, but they have been cracked now (see the post on here about VISTA signed drivers) if you have the drivers you can read the memory :) I may be wrong here but it IS logical.

once its been done once it is always easier a second time

Re:PS3

[Tim+Browse]

but a firmware update on disc is a MUCH easier thing to manipulate than the one on the player, that was one of the points I was trying to make

Yes, but my point was that it wasn't. Either you can decrypt the key or you can't. i.e. either you can attack the encryption algorithm or you can't. Unless I missed some breaking news, you can't. As I indicated, it's not like they'll be sending/storing the key in cleartext.

So the same methods that you mention (wait until the software has to decrypt the key(s), because it always does) will still work. I don't see that they'll be any easier, though. Now they're known, it's obviously quick to do, but I don't see that diffing the firmware will help any.

The beauty of the present situation is we now know a whole set of keys and information about those keys. Logically that makes it easier to find keys in other software no matter how well hidden

Er, not if each software or hardware player has its own key, which as I understand it, it does. (a key for each model/version, not for individual players).

So you're stuck with trawling memory for random* data again. Knowing what one private key is does not help you crack others, otherwise you have a pretty weak encryption algorithm. Barring naive implementations, of course, which I'm not saying is impossible...but for software players that cannot mandate hardware support (like a TPM style device), due to virtualisation abilities, it's hard to see how they will remain uncrackable indefinitely.

* I chose that word deliberately :-)

Re:PS3

[daverabbitz]

Extracting an encryption key from a block of memory which you *know* has the plaintext-key in it somewhere is trivially easy. All you do is rotate through all the memory (if a optimising compiler is used, it will even be on a word boundary), trying the key against some sample data (A bluray disk), until you get a valid data-stream and checksum. Even with 4GB of memory to search this would only take on the order of a couple of days.

As for extracting a memory slice from the PS3, you would need to either crack the hypervisor, or resort to using a rather pricey logic analyser which has enough channels and speed to log XDR transactions, and even then it doesn't help you if the key never leaves the cache.

I suppose if you really wanted to make a go of it, you could use a sample accurate cell simulator and a logic analyser to duplicate the functions of the periphery chips, though with current computing resources I doubt you could beat any timing checks (in 5-10 years it would be trivial).

Re:PS3

[stewwy]

but a firmware update on disc is a MUCH easier thing to manipulate than the one on the player, that was one of the points I was trying to make.

Yes, but my point was that it wasn't. Either you can decrypt the key or you can't. i.e. either you can attack the encryption algorithm or you can't. Unless I missed some breaking news, you can't. As I indicated, it's not like they'll be sending/storing the key in cleartext.

You don't NEED to crack the encryption if you can snoop the keys, but if you do, having the encrypted text and the cleartext sure helps. actually using the key lengths they've used its not too hard I believe. Correct me if I'm wrong, as I said I'm no expert on cryptography. Er, not if each software or hardware player has its own key, which as I understand it, it does. (a key for each model/version, not for individual players).

So you're stuck with trawling memory for random* data again. Knowing what one private key is does not help you crack others, otherwise you have a pretty weak encryption algorithm. Barring naive implementations, of course, which I'm not saying is impossible...but for software players that cannot mandate hardware support (like a TPM style device), due to virtualisation abilities, it's hard to see how they will remain uncrackable indefinitely.

You are correct, but missed the point, I wasn't talking only about "knowing" the keys, I quite deliberately said knowing INFORMATION about the keys. which is a different thing entirely. for example I know the length of the key, I know information about the when the key is passed etc. (note the etc I don't want to list everything known) that is far more important/useful in finding other device, player and disk keys

All this is just speculation of course but I can see how it might/will be done

Re:PS3

[swillden]

It would be more interesting to find out what would happen if the key to the Sony standalone BluRay players was discovered.

Actually, it's very well-known what would happen: They would revoke the individual player that had its keys compromised. Note: Just that single unit, not the whole line. The beauty/horror (depending on your perspective) of the AACS key revocation system is that it can target individual units without affecting any other units, and it can do this without requiring huge amounts of disk space to be devoted to key blocks, and without requiring any of the devices to get updates, even if millions of individual players are revoked.

What this means is that smart hackers won't reveal the player keys they extract. Instead, they'll use those keys to compute the media keys, and then they'll publish the media keys. Your HD-DVD/Blu-Ray ripper will just have to consult an on-line database to find the key for the disk you have and then it will be able to decrypt it just fine. The media cartel won't be able to revoke the player key used to compute the media keys, because it won't know which ones they are.

Great!

[Bri3D]

And the update must have the new key in it!
And we know how smart InterVideo have been about protecting the keys so far...

The fact of the matter is that if it can be decrypted and the user has physical access, there is *no way* to make "unbreakable" DRM. None. At all.
Especially on most modern CPU architectures where memory and the bus are unencrypted. The data *has* to go through RAM and over the bus.
Therefore there *is no protection*
It takes *one* decrypt to defeat their supposed purpose "keeping them dirty pirates from getting it" and this decrypt will *always* happen. But yet they waste millions in R+D money making ridiculously bad systems to try to prevent something that's physically impossible to prevent.

Re:Great!

[Nasarius]

And the clever cracking groups will grab a key and not tell anyone, just keep using it to make releases. It'll be amusing to watch and see what happens, though. Will they keep playing whack-a-mole when they can find which key has been extracted? Will they finally realize it's just not worth the effort? Or will they end up revoking all software player keys and forcing you to buy and use the hardware players? I'm betting on the latter.

Re:Great!

[d-rock]

Exactly. I'm interested in how Corel is protecting the new key it's trying to distribute. I mean, if they can hack the AACS key out of the player why do they think that they won't break the update to get the new key? Even if they're using some sort of public/private key pair embedded in the software, that too should be easily extracted. I'd wager that the new key will be available very soon.

Derek

Re:Great!

[Lumpy]

You are missing the fun part. Every one of these they do gets us closer to completely cracking it. and once they do we can have the entire pool of keys on a disc and that will kill their ability right there.

Re:Great!

[evilviper]

there is *no way* to make "unbreakable" DRM. None. At all.

There's no way to make DRM unbreakable IN SOFTWARE. However, even there, there are numerous ways to make it so ridiculously difficult to find the key, that it would either require millions of dollars in equipment and thousands of man-hours for each key (which can be trivially revoked) or perhaps waiting many years until technology improves, until they don't really care anymore if the DRM is broken.

In hardware, however, DRM can be absolutely impossible to break, though the cost in doing so would be prohibitive, currently.

Re:Great!

[julesh]

Or will they end up revoking all software player keys and forcing you to buy and use the hardware players? I'm betting on the latter.

They can try it if they want to face a class action from everyone who's bought an HDDVD drive for their PC. I still don't see that intentionally and specifically disabling somebody's property can be legal.

Re:Great!

[Bri3D]

Wrong. Why?

The user still has to be able to *view* the content. There is no DRM for the mind (yet, hopefully ever).
No matter how much fancy full-pipeline encrypted hardware you build, the user still has to see it. And our minds don't support AES.

Re:Great!

[r3m0t]

That's true, but a lot of quality is lost in a re-recording. That's ignoring the possibility of legislation outlawing cameras or requiring cameras to comply with copy protection in video.

Which is better? (Consider video but ignore sound.)

1) A DVD rip from filesharing networks.
2) The movie from an HD-DVD which has been projected onto a (HDCP) display, recorded with an HD camcorder on a tripod, compressed and uploaded to filesharing networks.

The DVD rip, of course. The movie studios, in this scenario, have won. If I want the movie in SD quality, I can get it online, just as I can today. If I want the movie in HD quality, I have to buy it. Thus it is protected.

Of course, they long for the day that they can phase out the old Audio CD and DVD-Video formats, but that is very very far away.

Re:Great!

[Bri3D]

How about the video that's been re-encoded in good quality off the analog signal that *has* to exist in a monitor/projector (hell, if the DRM got bad/"good" enough well-funded groups i.e. chinese organized piracy groups could make devices that reconstructed signals off of LCD crystal drivers)?
Still not optimal, sure, and sure the studios have won a tiny victory, but it's still guaranteed to be better than SD.

Then there's the fact that to make a system "secure" up to that point requires integrating the cryptography engine (which has to be fast enough to decrypt the compressed stream on one end and encrypt the uncompressed digital video stream on the other) and A/V decoder on one chip that requires no external buffer memory and runs no other tasks (takes a raw encrypted video stream in and spits digital-decompressed audio and video out without involving any other hardware), which is easy but slightly expensive and which I'm fairly certain doesn't exist yet.

Re:Great!

[hedora]

*That* will increase HD-DVD sales... I'm already considering canceling cable since there's no way to use my PC to watch HD stations on my HDTV. Some day, someone will build a PCI -> cable card adapter that works under Linux, or under windows without DRM, and then I'll resubscribe.

Ensuring that I can't watch HD movies that I've paid for isn't going to get me to spring for a hardware HD-DVD player, even once I can pick up a hacked region-free one in chinatown for $20...

Here's a hint for the MPAA: Any business model that forces me to keep hundreds or thousands of shiny little disks in my living room is non-starter. So is any business model that breaks any of the following devices:

My Windows PC. Copy protection => crashiness, at least under XP and Win2003. At any rate, I expect to be able to use the "copy" command in DOS and Explorer for everything I can use it for today. Backup comes to mind. So does the ability to move stuff over my new fangled "ethernet" to my "laptop".

My Linux box. DeCSS is the only reason I bought my huge stack of DVDs. That's right, DeCSS increases movie sales. Go figure.

My portable video player, and the one I buy 20 years from now. My VHS tapes still work, but PlaysForSure doesn't play for sure now that the Zune is out... I doubt FairPlay will work a decade from now either. Sometime before VHS stops working, I can move VHS to mpeg4 if I want. I can't do that with DRMed stuff.

My TV set. I paid for the friggin' pixels; I better be able to make use of them.

That said, I'm more than willing to pay for movies. Just not between 2008 to 2014, judging from the direction the industry is moving in, and the amount of time its taking the RIAA to start listening to it's customers.

Re:Great!

[evilviper]

No matter how much fancy full-pipeline encrypted hardware you build, the user still has to see it.

No. Everyone is quick to talk about pointing a video camera at a screen, but it's expensive to get HD equipment, works pretty badly in practice (eg. refresh rate, black level, etc.), and with the quality loss, you might be better off just copying the DVD version instead.

But additionally, a electronic eye sees things very differently than human eyes. There are numerous methods to make moving images look perfect to us, while seriously distorting any recordings of it. The same is true for audio. It's not in use in home equipment yet, but it's certainly possible.

Re:Great!

[Bri3D]

I'd like to refer you to this comment where I've already pointed out that a camera (which is indeed expensive, low-quality, and easily fooled) is entirely unnecessary.

Re:Great!

[evilviper]

I've already pointed out that a camera (which is indeed expensive, low-quality, and easily fooled) is entirely unnecessary.

Taping an LCD and capturing it's output is still lossy, expensive, etc.

That method is just as easily fooled by different methods of (perceptual) signal obfustication.

And in addition, the analog step is very short, and the equipment could easily (but not cheaply) be hardened, to the point that it would be borderline impossible even for professionals to tap it. There's no reason LCD screens have to be as electronically simple as they currently are. That goes double for DLP.

Re:Great!

[Bri3D]

It's expensive, sure, but like I said it only has to be done once. And once there's a demand for pirated high definition content in Asia there will be groups with significant cash resources looking for a way in.

LCDs *must* have the final step of running varying voltage across the crystals to allow light through, and DLPs *must* have the final step of positioning the mirrors. There is no way around this. It's physics. LCDs would be *very* difficult to obtain a signal from at this stage, but DLP devices wouldn't be terribly difficult as each mirror reposition corresponds directly with a R/G/B pixel state. Any excess "noise" introduced by visual obfuscation would be detectable mathematically once the raw mirror switch signals were gathered.

Yes, some quality would be lost in the re-encode, but at the near-lossless bitrates HD content is encoded at the re-encode quality loss isn't too significant.

Re:Great!

[evilviper]

And once there's a demand for pirated high definition content in Asia there will be groups with significant cash resources looking for a way in.

If you've got the resources, you just do a bit-for-bit copy of the physical disk itself (encryption, bad sectors and all), and don't mind the DRM. Indistinguishable from a legit copy.

LCDs *must* have the final step of running varying voltage across the crystals to allow light through, and DLPs *must* have the final step of positioning the mirrors.

Yes, but there's nothing that says the LCD voltages need to be run across a cable from the electronics to the screen. Implant the chip on the screen itself, embed the wires deep inside it, and use smartcard-like methods to prevent tampering by anyone less skilled than perhaps the NSA.

DLP is even easier. It's already a chip. Just combine it with a decryption chip, or another type of controller, and harden the package.

For both, you use the pixel response time, or other factors, and work-up a scheme of sending 10 fake signals (that the screen won't have a chance to respond to) for every real signal. You send junk during blanking intervals, and you can also easily watermark the picture, slightly modifying a few (seemingly random) pixels.

Any excess "noise" introduced by visual obfuscation would be detectable mathematically once the raw mirror switch signals were gathered.

Easy to say, extremely difficult to actually do (without SIGNIFICANT quality losses).

Yes, some quality would be lost in the re-encode, but at the near-lossless bitrates HD content is encoded at the re-encode quality loss isn't too significant.

We're not even talking about just reencoding, we're talking about reencoding including all the noise and encoding junk they throw in when it gets to the screen, as well as whatever artifacts will be added by sending it to another screen, which does the same thing, yet again, on less than perfect data.

Re:Great!

[kevinadi]

A better scenario is a concerted hacking effort for all players, hardware and software, and release all the cracked keys simultaneously. THAT is an occurrence I'd very much like to see.

Re:Great!

[DimGeo]

Sorry, my friend, you're speaking to deaf ears...

Re:.. but what if a hardware player is compromised

[zippthorne]

Spam a bunch of new disks with an update patch?

Upgrade Cycle

This is another new "Upgrade Cycle" that the (legit) consumer has to pay for in the end. How so? How long is WinDVD 8 going to be supported; aka how many patches are going to be issued for said software, also for how long.

It's hard to upgrade hardware

[jfengel]

It should be a lot more difficult to get the keys for a hardware player than for a software player. WinDVD made an easy target because it is running on a general-purpose computer, which means that the key is sitting there in memory at some point to be snooped out. It's not easy, I'm sure, to find that key among the many megabytes of code, but it's there.

A hardware player isn't a general purpose computer. I'm sure it's possible for somebody with the right hardware to snoop inside its memory (say, inserting a special thingamabob between the memory and the mother board that allows you to read all reads/writes as they go past), but it's not going to be readily available.

Presumably somebody will be the first one to do this, and that is sure going to be a bad day for both formats. People are prepared to upgrade their software; it happens all the time and it's a relatively painless process for most people. Upgrading your hardware is not going to be easy, and it may not even be possible. (I used to own a DVD player which was "upgraded" by downloading a patch, burning it onto a CD, and putting that in the machine, but I don't know if every DVD player supports that.)

If they start denying keys on hardware players, there will be a world of pain, but I don't expect this to shatter the world. They'll just advise everybody to download a patch with a new key.

Re:It's hard to upgrade hardware

[d-rock]

And then they'll either hack the patch to get the new key or use the same method they used to extract the original key to get the new one...

Re:It's hard to upgrade hardware

[Ironsides]

It should be a lot more difficult to get the keys for a hardware player than for a software player.

Only if you try to get the key directly from the hardware player. I remember reading with DeCSS on the standard DVDs, that the keys were guessable by a human once they found a pattern in them. While they are using 128bit encryption for Blu-Ray and HD-DVD and DVD only used 40 bit, they still use multiple keys for unlocking the content, effectively reducing the number of bits by who knows how many. It's possible that once enough keys are found, a smart brute-force of the keyspace could be executed that would find all the keys.

Re:It's hard to upgrade hardware

[m0rph3us0]

The problem with that is then on every disc each key needs to be encoded.

Lets say the market is 580 million players.

580 million * 128 bits = 8.64267349 gigabytes

That is 8 gigabytes just for the keys. Let alone the amount of time required to try decoding each encrypted field.

Sorry, it just won't work.

Re:It's hard to upgrade hardware

[Jeremy+Erwin]

Not if you organize your keyblock as a binary tree.

Re:It's hard to upgrade hardware

[evilviper]

The problem with that is then on every disc each key needs to be encoded.

No, it doesn't. Mathematics isn't nearly that primitive. You absolutely don't have to, nor does AACS store every individual key on a disk. It's called "broadcast encryption" and it existed before AACS. Each player doesn't have a single, globally unique key. It has several keys which, in combination, are globally unique. See: http://web.archive.org/web/20060604054302/http://w ww.lotspiech.com/AACS/

Sorry, it just won't work.

Sorry, you know nothing about cryptography. That is, in fact, how AACS works. Your ignorance of it doesn't change reality.

Re:It's hard to upgrade hardware

[evilviper]

A hardware player isn't a general purpose computer.

Actually, it is. Toshiba's first HD-DVD players are, in fact, Pentium 4 computers.

(I used to own a DVD player which was "upgraded" by downloading a patch, burning it onto a CD, and putting that in the machine, but I don't know if every DVD player supports that.)

Not ALL, but the vast majority of DVD players can be flashed in the same manner.

Re:It's hard to upgrade hardware

[Jah-Wren+Ryel]

Presumably somebody will be the first one to do this, and that is sure going to be a bad day for both formats. People are prepared to upgrade their software; it happens all the time and it's a relatively painless process for most people.

I don't have the link readily available, I think the actual paper may have been pulled from the web and thus only available on the wayback machine, but AACS has the ability to revoke individual players.

In a nutshell the way it works is that players do not have just a single key, instead they have a whole bunch of keys and each individual player is supposed to have a unique set of keys. The discs all have a bunch of keys on them too, such that every individual player is guaranteed to have at least one key that is also on the disc.

When they revoke a specific player they do a little set theory math to figure out what keys to leave off the disc such that the one player they want to take out will not have any of his keys on the new discs, but all the other 'good' players will still have at least one key they can use.

That is how it is supposed to work. I would not be surprised if some didn't follow that guideline and just used an identical set of keys across all players of a specific model or production run. There are other parts of AACS that are defined but have not been implemented in the hardware/software released so far.

Re:It's hard to upgrade hardware

[pyite]

they still use multiple keys for unlocking the content, effectively reducing the number of bits by who knows how many. It's possible that once enough keys are found, a smart brute-force of the keyspace could be executed that would find all the keys.

It's simply unlikely. AES' 128 bits is too much, and the algorithm has been shown to be too secure at present. It's a highly critiqued algorithm that has been proven not highly vulerable to known techniques of cryptanalysis. AES has a highly mathematic structure (being based on operations on GF(8)) that makes it both easy to test theoretical attacks on as well as provide credibility to its claims of strength.

Re:It's hard to upgrade hardware

[adamstew]

***********The workaround for pirates is simple: distribute disc keys, but keep the AACS key secret so that the MPAA does not know which key to revoke. The disc keys can't be revoked.*********

Or the pirates could just copy the entire disks, bit-for-bit, encryption and all. No need to decrypt, no need to remaster, no way that the MPAA can stop it. ...at least for the bulk pirates that mass produce disks by the truckload.

Re:It's hard to upgrade hardware

[xjerky]

Why does this bit-for-bit crap keep getting trotted out? You _cannot_ make a true bit-for-bit copy, because the decryption keys are located on a section of the disk that burners cannot write to. To this day you STILL can't copy encrypted DVDs this way, so why would it be possible for HD-DVD and Blu Ray?

Re:It's hard to upgrade hardware

[IamTheRealMike]

AACS contains traitor-tracing algorithms that allow you to locate the device key from a decrypted video, or released title key.

Re:It's hard to upgrade hardware

[Ironsides]

It's simply unlikely. AES' 128 bits is too much, and the algorithm has been shown to be too secure at present. It's a highly critiqued algorithm that has been proven not highly vulerable to known techniques of cryptanalysis. AES has a highly mathematic structure (being based on operations on GF(8)) that makes it both easy to test theoretical attacks on as well as provide credibility to its claims of strength.

I'm not attacking the AES algorithm, I'm attacking the AACS implementation, there is a difference.

Similar to DeCSS, there are two keys involved. One is the player key, the other is the disk key. There are multiple player keys that are used to decrypt the disk key and the movie is encrypted with the disk key. It is the disk key encryption I am attacked. There are multiple keys that exist to unlock these disks, so it is effectively less than the actual bit encoding. For example, if there are two keys on a 128 bit encryption, it is effectively 127 bits, 4 keys, 126 bits, 1024 keys, 118 bits and so on.

Second, in DeCSS, there was a pattern to the keys that could be used to unlock the DVDs. For example, some guys were able to guess more keys after seeing a few of them due to the patterns. Looking at some of the information about what various pieces of information goes int these keys, it is possible that this will hold true here.

Re:It's hard to upgrade hardware

[grmoc]

You make a copy the same way you make the original.

Using Blu-Ray-Rs would be more expensive than simply pressing a new master and making new disks, for large quantities.
Why bother? The large-scale pirates wold make a new master, and have at.

The Zero-day race is on

[jms]

Does anyone seriously doubt that there will be a day-zero crack of the new keys?

First AACS Blu-Ray/HD-DVD Key Revoked

[denmarkw00t]

...and certainly not the last. Beware, HD-DVD/Blu-Ray consumers, you're in for a bumby road of software patches and exploits that move twice as fast!

Re:First AACS Blu-Ray/HD-DVD Key Revoked

[that+this+is+not+und]

The same people at work who I hear carrying on about their HD-DVD/Blu-Ray video gear are also the ones carrying on about having the latest, biggest SUV with all the power options and the biggest engine.

It's okay being in the background, a few cubicles down, hearing them carry on. I try not to gloat secretly inside at the train-wrecks they find themselves, and their credit card balance, trapped in. It's more righteous to quietly pity them.

They ain't nerds, that is for sure. They're the nemesis of us. Marketing folks love 'em though, and will always try to maintain the myth that they are 'the techno-elite.'

Re:.. but what if a hardware player is compromised

[denmarkw00t]

(firmware updates to my bluRay player? and what kinda new 'security' hole is that?!?)

You may gawk at the idea, and though you are correct that it would probably present a security hole for hardware and networks aren't well protected, with more and more of the home becoming wired/wireless (TVs, toasters, media centers, stereo systems, the Wii/360/PS3) it won't be long before your cutting edge Blu-Ray players are also on-line 24/7, getting firmware updates while you sleep.

Re:Awesome Monopoly Powers, Activate!

[Migraineman]

Thank you for using the word "customers" instead of "consumers." Consumers are force-fed; customers have a choice.

But therein lies the problem with this situation. The **AA cartels have purchased the necessary legislation to reinforce their monopolies. When they revoke a DRM key that effectively bricks your hardware player for future media releases, what are you going to do? They've cost-shifted the upgrade burden onto you, and since they own the entire distribution chain, you can't take your business elsewhere. I'm quite surprised that the media cartels haven't tried to mandate use of Scrip to purchase a lease for their items-that-shall-not-be-owned-by-the-customer. Long live the Company Store!

This is a perfect example of why monopolies are bad. This will resonate all the way down to Joe Sixpack in a form that he'll understand - "Damned 'new' movies don't play in my DVD player." He may not understand the ins and outs of DRM legislation, but he sure as hell knows what getting screwed by the establishment means.

Ahh, certainty

[Moridineas]

"confirms that it's AACS key has been possibly revoked"

Well, I'm glad that's been confirmed...

New use for PS3 Linux

[supabeast!]

If anyone really wants to piss off Sony, start a PS3 Linux project to build a PS3-based supercomputer that can be used to crack all of the Blu-Ray keys.

Re:New use for PS3 Linux

[bluefoxlucid]

From what we know, cracking the keys is impossible. We just rip them out of memory. Read O'Reilly's 'Security Warrior' and 'Network Security Assessment' books cover to cover; as well as 'Reversing: Secrets of Reverse Engineering'.

Re:Awesome Monopoly Powers, Activate!

[Anonymous+Cowpat]

and if people just refuse to buy the product, they'll but legislation that gives them a hefty subsidy to 'protect a core intellectual property industry'. Meaning we all pay, but now don't get a product either. Ah corruption - can't beat it (literally).

Yes, but... if it was hacked once....

[Fallen+Kell]

If the player was already hacked once, the probability only goes up that it would be hacked again. Especially if a hardware level flaw was uncovered (i.e. a physical attack which was able to intercept the key as it is being read/used would make any new key given the device just as exposed as the last key).

The power of the dollar

[HycoWhit]

The industry will never listen/read a bunch of slashdot posts and change. Now if every /. reader went out and bought a few Blu-Ray/HD-DVD's then returned them as unplayable and asked for money back--now that might start to get the industry's attention.

Re:The power of the dollar

[AndrewNeo]

You want us to slashdot the market?

Re:Analog hole, thanks Thailand flea-markets

[deejaymaxx]

Well I would call the rattling of candybags, popcorn boxes and snickering of all those thai kids in the audience protection enough. Because that's what you get when you buy a crappy camcorded dvd on the black market. (okay so telesync removes distracting audience noises but please, the video quality..)

It's not so much a question of "how soon it will be available on the net and/or thai market", rather than "how soon it will be available on the net/and or thai market in a format that you can actually watch without having your eyes and ears bleed."

Oh and a simple point: a hardware drive was already hacked, it was actually the first method used to retrieve the hd/bluray-keys (check older news for the doom9 link). It doesn't matter how many updates the companies push out, the old hacked drive can still be used to retrieve keys from the new discs.

Re:.. but what if a hardware player is compromised

[Soul-Burn666]

I don't know if it's done, but if they give each individual hardware player its own key, then there should not be any problem. The only system won't be able to play vids anymore is the one that was used to hack the key.

You'd be surprised, but AACS uses a pretty clever system for key revocation which can revoke a single key without having to change anything in players with a different set of keys.

The keys are nodes of a binary tree where the leaves are the individual keys per player. Each player has the keys from itself to the root node.
The movie itself is encrypted with a symmetric key which is then encrypted as follows:
Initially, it is encrypted using the root key. Every player can play it because it they all have the root node in their "key path".
When a player is to be revoked, the symmetric key is then encrypted log(n) times with the keys just not the revoked key's path.
It includes the key neighboring the revoked key so it doesn't get hurt, it includes the key neighboring the revoked key's parent so keys on that side don't get hurt and so on.

Re:Network jack??

[badfish99]

So when the key of your Samsung BD-P1000 is revoked, your player will no longer play any new disks that you buy. You will have to go out and buy a new player.

Anybody remember...

[NoseBag]

...VideoCipher II?
As quick as the satellite broadcasters changed keys, the hackers would crack and distribute them.

Re:Network jack??

This entire thread is complete bullshit. Keys are not revoked via a network jack. Keys are revoked by the simple act of releasing new discs that don't support them.

Re:.. but what if a hardware player is compromised

[Firehed]

At least we'd be getting free movies out of the deal, and thereby completely defeating the point of the copy protection. I doubt spammers would be nearly as successful as they are if you had to pay thirty bucks a message.

What happens when V9 is available?

[AmiMoJo]

What happens when they release a new version of the software that you have to pay for? Say someone then cracks V8 again, will they release a free update or will everyone be expected to pay for V9 in order to watch new movies?

Incorruptible projectionists?

[mangu]

I would call the rattling of candybags, popcorn boxes and snickering of all those thai kids in the audience protection enough

Even if it's not part of their job description to "install a camcorder where it can film the screen from above the heads of patrons and use a Y-cable to patch the sound directly to the camcorder", I can't imagine how anyone can pretend it's impossible for someone to arrange a special screening with the projectionist at one of the tens of thousands of movie theaters available worldwide.

Re:Network jack??

[Dogtanian]

This entire thread is complete bullshit. Keys are not revoked via a network jack. Keys are revoked by the simple act of releasing new discs that don't support them. Well, yes; I believe that was the point. WinDVD is able to be updated over the Internet, but this option isn't available for the Samsung DVD player (etc). If that were the only way of updating the firmware, then the industry would be faced with a choice of revoking the keys (i.e. having future releases no longer support that player) or not revoking them, thus leaving the crack open for exploit.

Of course, this is not the case; there are likely other ways of updating firmware on "real" HD-DVD players, but they're likely to be less transparent to consumers.

thingamabob = logic analyzer

[DeadCatX2]

Unfortunately, you're assuming that the memory holding the key is in a separate chip from the processor which will use it. These days, it's common for chips to have internal non-volatile storage (Flash). I bet (note: speculation) one of the design goals for AACS was to ensure that the key was never in-flight on a PCB trace. You can't probe a signal if it's routed internally in the silicon, never leaving the chip.

Re:thingamabob = logic analyzer

[Cassini2]

You can't probe a signal if it's routed internally in the silicon, never leaving the chip.

Keeping a signal "locked" in the silicon is more difficult than one would like to think. Most of the chips with built in non-volatile memory have built-in interfaces to program that memory. These interfaces can be abused, and people have done it. Microchip's secure chips were breached. I am not sure where the hackers are at with the latest 32-bit and 64-bit hardware. It is hard to make something that "no one can copy". It is really hard when no physical security is present. People can remove the chips from the players and expose them to out-of-spec signals and voltage levels to find out what happens next.

Re:Network jack??

[JWW]

Oh, thats #$%#$% great, I can just see it now.

Instructions for continuing to be able to use your (friken expensive) player.

1) Use your computer to download the latest firmware.
2) Burn a CD/DVD (you sure as hell had better not need to burn a blu-ray or hd dvd disk!!)
3) Insert in you player and power cycle and hope the upgrade works and doesn't leave you with a brick.
4) Continue to pay a premium for content for your player knowing that you'll probably have to do this firmware shuffle at least twice a year.

or

Don't by a blu-ray or hd dvd player ... ever. Honestly, I really don't want one of these things at all. With the cracking of CSS I have total rights to use the content I own on DVD. I won't quickly give that up for a few more lines of resolution and their draconian changable key system. Screw em'.

I think the recording industry is going to be shocked, SHOCKED! at how well DRM free music it going to do on iTunes. Its the beginning of the end for DRM...

Re:.. but what if a hardware player is compromised

[Joe+The+Dragon]

But what about the people who can't get high speed internet and only have dial up?

Re:Network jack??

[313373_bot]

Or update some firmware, perhaps by disc? In any case, while updating a software player is trivial, therefore low cost, I'm really curious about how the manufacturers will deal with the logistical nightmare of updating thousands of hardware players.

Microsoft might object to that!

[debest]

Or will they end up revoking all software player keys and forcing you to buy and use the hardware players? I'm betting on the latter.

I know that Microsoft has the Xbox 360 with the HD-DVD add-on drive, but surely they might have a bit of incentive to be in the "media centre" market where Vista is the focus of an HD home theatre? If there are only "hardware" solutions, they would be shut out. Could Microsoft afford that?

right of first sale?

[mrcubehead]

I was wondering, what if you bought a commercial disk and made a copy without protection (via copy circumvention in a country where fair use isn't demolished by the dmca, like in sweden), and then destroyed the original, and resold it as a "drm-free" version? No one can argue the content has changed... so doesn't this then fall under the right of first sale, which was upheld by the supreme court some time ago?

Re:right of first sale?

[ThePhilips]

Since you are selling not original - but copy - no way it would classify as "first sale". IOW, private copies are reserved for private use - sale/rent/etc aren't private uses.

P.S. IANAL

Whoa

[HomelessInLaJolla]

Imagine a Beowulf cluster of PS3 driven botnets.

All HD DVD players have a network port

[benwaggoner]

Having a network port is a mandatory feature for all HD DVD players, so updated keys and other updates can be easily delivered. It's mainly there for downloadable content (like adding subtitles in a new langauge for an existing disc).

Blu-ray, however, has networking optional, and most Blu-ray players don't have a port.

Yet another way in which the baseline functionality in HD DVD is much higher than Blu-ray.

Re:All HD DVD players have a network port

[DDLKermit007]

Right, you honestly think a studio will give you ned content for your movie like subtitles that they didn't have yet? They have your money, and they won't do one extra thing thats not physically encoded on the disk unless it's to lock you our, or make more money (count on commercials getting delivered this way).

Re:All HD DVD players have a network port

[benwaggoner]

There will be a number of HD DVD titles released this year with extra downloadable content of user interest.

Re:All HD DVD players have a network port

[newt0311]

oh boy. Thats another massive attack vector right there. Just swipe the keys off the network jack with a man in the middle attack. AACS is screwed.

Re:All HD DVD players have a network port

[FateStayNight]

such as..... ?

Re:All HD DVD players have a network port

[theJML]

So why is requiring me to run a network cable to my DVD Player a bonus? Can't I play a movie without having to worry about the current state of my network connection? Does my player really have to ask someone outside the house if it's ok to show me a movie? And honestly, I'll have to say when the network goes down, that's a perfect time to watch a movie... 'cause ya sure can't read slashdot. I remember the days when you all you needed was one utility company involved in movie viewing (power). What about all the people who are video/audiophiles who aren't net nerds? I think I'll stick with the Progressive Scan DVD hooked to my 32" HD Screen thank you.

Re:All HD DVD players have a network port

[h4rm0ny]

It would be far more efficient, and have far better long-term security, if this "additional" content were on the disc in the first place. I mean, Blu-Ray and HDDVD have a bit more capacity than DVDs, don't they? ;) And even if you really have packed the whole thing out, surely the it would cost just pence to put two discs in the same box. The only reasons that makes sense for the additional content to be downloadable are (a) to tie you to a partial download so that you don't fully own what you have purchased and (b) to charge you again for the extras that you once expected on your DVD as standard.

Re:All HD DVD players have a network port

[shutdown+-p+now]

Why would I want a network port on a fricking video player? It's only meant to play discs.

Oh right, DRM. That sure passes for "baseline functionality" these days...

Re:All HD DVD players have a network port

[benwaggoner]

Well, the big point behind the downloadable content is stuff that either wasn't available when the disc was mastered, like extra languages, subtitles, or creator interviews, or stuff that didn't fit on the disc and wasn't of interest to a big enough audeince to make it worth reencoding any other assets to make room for.

Re:All HD DVD players have a network port

[benwaggoner]

You're not required to connect the player to the network - the player is just required to provide a network port if you want to.

All the movies work just fine as discs even if the player has never been plugged in. You just don't get the option of downloading any content (which isn't yet supported on discs yet).

Lots of people have unconnected players that they just plug in when there's a firmware update.

Re:All HD DVD players have a network port

[benwaggoner]

The network port doesn't really apply to DRM. Discs don't phone home or anything during normal operation.

Re:All HD DVD players have a network port

Yup, because everyone knows it's impossible to provide end-to-end security and encryption between two trusted devices.

Re:All HD DVD players have a network port

[shutdown+-p+now]

Is it used for some sort of automatic update feature, though, conveniently turned on by default? And could that possibly be used to revoke keys?

At any rate, the capability is certainly there now, so it's only a matter of time...

Re:All HD DVD players have a network port

[benwaggoner]

All players require a user opt-in for a firmware upate.

Keys aren't revoked in a player anyway - it's that the keys in a compromised player are revoked for future titles. No hardware players have been compromised AFAIK, so that's theoretical at this point.

Re:All HD DVD players have a network port

[shutdown+-p+now]

All players require a user opt-in for a firmware upate.

It's good news, and thank you for cool-headed replies to my baits. ;)

DRM is a serious issue regardless, though... theoretical tends to become practical at some point, in this case I believe sooner rather than later. It will be interesting to watch and compare how the issue is handled by HD-DVD camp vis-a-vis BluRay. For now, I shy away from both, and will continue to do so until there's a player - software or otherwise, and I don't care about legality - which is guaranteed to play any disc now and in the future, regardless of someone deciding to pull the plug on it. How fast this happens largely depends on how lax the companies will be with compromised keys.

Re:All HD DVD players have a network port

[benwaggoner]

It's hard to prove a negative - how can you prove a player will ever not work?

Clearly both the Toshiba player and our Xbox 360 accessory are strategic products for us, and so we'd be extremely focused on making sure those are products that will work well for many years to come.

Re:All HD DVD players have a network port

[shutdown+-p+now]

Oh, I've no doubt that MS is not particularly interested in such disruptive behaviour. The content for those players comes from elsewhere, though, and its producers are well known to seek any possibility to tighten control over their IP. Availability of a network connection is the most obvious feature to be exploited from this direction - we have seen that happen in PC world, beginning with activation in WinXP, and it proved so popular that today there are some titles (mostly games so far) that require a live connection every time they run. NWN premium modules, for example, require online authentication every time a saved game is loaded. If I were told that in 2000, I'd consider the prospective unrealistic and outright insane... yet here we are, today. I think it won't take nearly that long for HD-DVD players to be abused in a similar way.

You just made my day. I learned something new

[DeadCatX2]

I mean, it makes sense. And while doing it many times, it probably helps to do it to many different chips, so you have differences to compare.

I can imagine this being very difficult, especially if the crypto engine is a small part of a much larger chip (like, an FPGA or something).

And even more amazing

[Sycraft-fu]

It still isn't a problem if you choose to run Vista. Turns out that the DRM in Vista isn't composed of little DRM gremlins that go and encrypt your media when you sleep. If you don't get media that is DRM'd, you aren't aware of it at all. Monitors without HDCP work just fine, HD video works just fine, MP3 encoding works just fine, etc. I'm sure that there might be issues if I decided to get media protected by the new DRM, but I'm also sure that it is my option not to. I can continue to use what I always have.

I really think that people on Slashdot don't understand what DRM actually is. To them, it is just a bad word. DRM=bad, and that's all there is they know about it. I certainly agree that DRM isn't useful, but it doesn't matter to me if people want to go and release DRM'd shit. I am free to not buy it. Thus far, I haven't seen an OS that forces DRM on all media, so it is a non-issue.

Re:And even more amazing

[BFaucet]

Wait until your parents or a friend of yours asks you to help them get their HD-DVD to play on their system. Most folks are going to be completely oblivious until after they've dropped a lot of money on stuff that just won't work. At that point they've already invested a lot and will probably just take it up the ass and buy some more so the stuff they already purchased will be of some use.

Re:And even more amazing

[radl33t]

It is you who seems to misunderstand the problem. People here are capable of making decisions to avoid DRM. However, this is a minority and future markets are unlikely to develop based on what a small educated group of people think. One can easily imagine a scenario in the future where DRMless options have been all but removed from the market, at least to the extent as to effect your 'choice.'

Re:And even more amazing

[WozNZ]

rotf. The fact that ATI and NVidia are unable to get fully working hardware and software out for DX10 shows what effect the DRM in Vista is having. The DRM requirements on them are so bad they can't make their products work. And lets face it, Vista has been in the works for 5 years, it's not like they didn't know what is coming and what will be required of them But who wants their expensive GPU to actually work, the joy is in owning it not using it for what it is intented for :)

Re:And even more amazing

[brandond1976]

Thank you! I'm so tired of hearing how bad DRM is. If you don't like it don't use it. If you want to use it then do. Who am I (or anyone else here) to tell other people not to use it?

The studios think they will make more money if they use it. They think that piracy will be a bigger problem without it, and that this differential is enough to offset the users who won't purchase because of DRM. Are they right? I don't know and I don't care.

I enjoy my HD-DVDs and I don't feel that any "freedom" has been taken away from me by AACS.

Re:Network jack??

[Thomas+Charron]

A few more lines of resolution?

720x480 interlaced video.
1920x1080 progressive video.

A few more lines?

Suppose it'd be even easier for you just to go cower into a small hole and ONLY support pre Macrovision VHS.

Re:As far as I know...

[makomk]

Yeah - for some reason, the security through obscurity on BSkyB's encryption seems to have mostly worked. I think there may be a softcam to allow people to use their valid cards and subscriptions on non-Sky hardware now, but it certainly seemed to take a long time to do...

Re:.. but what if a hardware player is compromised

[ecki]

Remember that players have individual keys. If a hardware player is revoked, it is only one specific physical player which is affected.

New compromised key from WinDVD in

[El_Muerte_TDS]

five
four
three ...

what? already? I didn't even finish the countdown.

Re:Funny how similar this is to WEP

[Thomas+Charron]

Umm, they do NOT have to update every user. It simply means that players, worst case, cannot play any NEWLY manufactured movies. They 'mark' that key as bad, and remove its ability to decrypt newer content.

Missed a step

[HTH+NE1]

Instructions for continuing to be able to use your (friken expensive) player.

0) Go to the website for your player (assuming they still support it and not deny its existence) click the "buy updated firmware" link, and enter your credit card information.

1) Use your computer to download the latest firmware.
2) Burn a CD/DVD (you sure as hell had better not need to burn a blu-ray or hd dvd disk!!)
3) Insert in you player and power cycle and hope the upgrade works and doesn't leave you with a brick.
4) Continue to pay a premium for content for your player knowing that you'll probably have to do this firmware shuffle at least twice a year.

If youse wants to keep watchin' the latest releases, youse gotsa give us da money to, ya know, recoup the costs of piracy necessitating da development of dis here new firmware. No money, no firmware, no movies.

Re:As far as I know...

[NoseBag]

AFAIK you are right. The VC II wasn't decryption-algorithm-hacked - the hackers simply found a flaw in the decryption processor architecture (a TMS7500 series, I think) that allowed the secret keys to be "tricked" out of memory. Something to do with a command to "check old key block segment against proposed new one" boo-boo. If you are allowed to ask all the questions you like about a secret number - one byte at a time -it doesn't take long to deduce it.

Old war stories....gotta love 'em.

Re:Funny how similar this is to WEP

[anubi]

Does this mean anybody who was unfortunate enough to have purchased a unit where someone else compromised a key now has a crippled unit? If it takes me a day to take the unit back to the store, will they reimburse me for my time, mileage, and expenses I incur to regain the functionality I paid for?

Or am I, like a Circuit City DIVX disk owner, just dropped, while the smiling business face smugly tells me to open my wallet again and buy another?

I need to know this kind of stuff BEFORE I open my wallet at the cash register. If its finicky technology, I had just as soon spend my hard-earned cash on something else.

I would rather spend my money on a day fishing rather than buying some piece of crap that gives me problems.

Life is just too short to have to deal with all these synthetically manufactured problems, deliberately designed into a product from the get-go.

When I actually spend my hard-earned money to buy thorns in my side, I consider myself even more idiotic than the folks who design and market such crappy stuff.

Re:Network jack??

Yep, just a few more lines. The original poster was correct. It's not a big deal like VHS->DVD was (random access, media doesn't degrade with repeated viewings, far better sound, menus and special features, no rewinding...). If you don't have a big screen TV, HD is absolutely worthless. My 27" TV is just fine with regular DVD and I don't need a theatre-sized screen in my living room.

Re:Funny how similar this is to WEP

[Thomas+Charron]

Depends on the player, I'd suppose. Any that can have their firmware updated will more then likely, be able to be 'hot fixed' with a new key. However, a 99$ walmart special, could very well leave you with a DiVX player. But generally, I doubt a company would let it happen.

Basically, they punish the company who made the player be able to be compromised.

Is the CRT completely dead?

[anubi]

As long as I can get onto the cathodes of a CRT, and clip my magnetic current clips onto the deflection yoke, I can recreate RGB analog video as pretty as you please!

Re:Is the CRT completely dead?

[evilviper]

Is the CRT completely dead?

CRT is not dead, but the writing is on the wall. Its best days are behind it, and nobody looking towards the future sees CRTs. I wouldn't be surprised if, 10 years down the road, CRTs are depreciated, and new DRM standards come out that specifically exclude any use of CRTs.

Still, it's immensely impressive how much staying power it has had, despite the age-old death of all other forms of tubes in modern electronics.

And even with CRTs, they could at least include some simpler methods of signal obfustication (akin to Macrovision), if they chose to.

Re:Network jack??

[Rakarra]

2) Burn a CD/DVD (you sure as hell had better not need to burn a blu-ray or hd dvd disk!!)

Actually, why not? A key revocation doesn't render your player unable to play blue-ray or hd-dvd discs, and any of the disks that were made before the key revocation should continue to work. Unencrypted discs will be able to play indefinitely.

Re:Network jack??

[jonnythan]

All current standalone HD DVD and Blu-Ray players are firmware updateable via CD.

You download the firmware update, burn it to a CD, and go. Or they mail you one, like Toshiba did with the numerous updates they've released.

Re:Network jack??

[Oktober+Sunset]

Buh? I think the gp was alluding to the fact that no one except a few uber geeks have bluray or hddvd burners on their computers, and thus no one but aforementioned uber geeks would be able to burn a bluray or hddvd, and thus would be royaly fucked.

Just A Thought

[milsoRgen]

Now if this statement is correct "An AACS licensed drive shall retain in non-volatile storage, the most recent Host Revocation List (HRL) data which it encounters and has verified."
So obviously there is an set ammount of memory for this, anyone know just how much this is on common consumer drives?
Basically my marijuana induced thought is... How long before that memory gets full?
And then what happens?

Re:Network jack??

[Skreems]

You do realize, I hope, that only the 0.1% of consumers who are technically savvy actually care about the actual resolution. Hell, I understand it, but I also know that DVDs look great on my 32" widescreen, and that's through a PS2. Progressive scan and a more natural aspect ratio do wonders, but I'll be damned if I'm going to pay more money for slightly higher res and a content protection scheme so strict I'll be lucky to be allowed to play the discs I buy on any hardware I own. The extra resolution really isn't worth it. If the started doing HDMI or something, then maybe.

Re:Network jack??

[terjeber]

Continue to pay a premium for content for your player knowing that you'll probably have to do this firmware shuffle at least twice a year.

Why do you think that the use will have to do this "twice a year"? Do you really think that the people will hack a particular version of a particular BR/HDDVD player twice a year? Hacking WinDVD isn't that hard, it is probably harder today than it was before it was patched, but it is still probably possible given time and patience. How do you expect "the community" hack the Samsung DVD players? Twice a year?

I won't quickly give that up for a few more lines of resolution

Well, perhaps we are just seeing your ignorance here...

If only people would wake up

[Toby_Tyke]

This is a perfect example of why monopolies are bad. This will resonate all the way down to Joe Sixpack in a form that he'll understand - "Damned 'new' movies don't play in my DVD player." He may not understand the ins and outs of DRM legislation, but he sure as hell knows what getting screwed by the establishment means.

And the establishment will respond thus:

Yeah, that copy protection sure is painful, huh? Goddamn those freedom hating movie pirates for making us put it on there. You know those guys fund terrorists? It's true. The 911 hijackers paid for their flight training with funds made hawking pirate copies of the Phantom Menace. You want to help fight terrorists, don't you Joe? So you don't mind this anti-piracy/anti-terror stuff, do you? Great. Here's a flag. Go back to sleep. [/channeling inner hicks]

Re:Network jack??

[Thomas+Charron]

Ok, I'm assuming most people who would care would have HDMI on a HDTV, since HDMI is pretty much required to play it. I could understand why you wouldn't purchase a higher def capable media, if your stuck with a non HD capable TV. Instead, considering spending the money on a TV which has a higher resolution then, say, a pre VGA monitor.

Re:Network jack??

[mgv]

So when the key of your Samsung BD-P1000 is revoked, your player will no longer play any new disks that you buy. You will have to go out and buy a new player.

This entire thread is complete bullshit. Keys are not revoked via a network jack. Keys are revoked by the simple act of releasing new discs that don't support them.


So this bit is pretty well established

1. Player gets compromised (keys extracted somehow)
2. All new content no longer has a key for the compromised player.
      a. Your player cannot play these new disks
      b. The new content cannot be decrypted by hackers either.
      c. Anything currently released will still play fine.

Now the interesting bit is how to update the players. The key system on Blu-Ray is very clever, and allows enough keys that they will never run out, at least in practice. It was designed to allow revocation of multiple compromised players, hundreds of times over.

The real issue is that you don't want a legitimate player to stop working. A software player can easily be updated on the internet. But a hardware player cannot assume an internet connection. And consumers are going to get angry if their player stops working because someone somewhere managed to figure out its keys.

However, there is no reason why a firmware update for the hardware player cannot be included on all new titles released. There is plenty of space on a Blu-Ray disk to hold thousands of firmware patches, for every compromised hardware player. So the end users will get updated.

Which doesn't mean that a real hacker couldn't "upgrade" their program too, but its a world of difference between figuring out a single key and emulating the system through an upgrade.

However, the biggest reason for this system is that of forcing a delay.

If you stop keys being released for a few months you capture most of the sales market

Sure, you may lose the long tail of marketing, but if you can just keep the decryption keys out of circulation for a few months plenty enough people will buy the disks anyway.

And they can play this cat and mouse game for a long time to come....

My 2c worth,

Michael

Updates for hardware players unnecessary

[swillden]

Well, yes; I believe that was the point. WinDVD is able to be updated over the Internet, but this option isn't available for the Samsung DVD player (etc). If that were the only way of updating the firmware, then the industry would be faced with a choice of revoking the keys (i.e. having future releases no longer support that player) or not revoking them, thus leaving the crack open for exploit.

None of that matters for hardware players, because each individual player can be revoked independently, without affecting the one that came off the line immediately before it, or the one that came right after it. They don't bother issuing unique keyset to each copy of a software player, for obvious reasons, but hardware players all have unique key sets so if the keys in one of them are compromised, and known to be compromised, then that specific player can be revoked so that future disks won't play on it. No updates to other players are required.

What makes this magic possible is a very clever and sophisticated key derivation scheme. Basically, there is an enormous tree of trees of possible keys, and each player is given a carefully-chosen subset of them, which allows that player to derive a large part of the possible keys, but not all of them. To revoke a key essentially just means choosing to encrypt future disks with a key that particular player cannot derive with keys.

The number of key blocks that must be placed on each disk to make this scheme work is linear in the number of revoked players. In fact, it can be shown mathematically that if r players have been revoked, then at most 2r+1 key blocks are required on each disk. Simulations show that assuming a random distribution of revocations, on average only 1.28r blocks are required. Each key block is 16 bytes in length, so they can revoke millions of players without significantly affecting the space available on the disk.

Re:Updates for hardware players unnecessary

[cheater512]

You seem to have gotten confused. Each hardware DVD player doesnt have a unique key. Each model of DVD player does.

Re:Updates for hardware players unnecessary

[swillden]

You seem to have gotten confused. Each hardware DVD player doesnt have a unique key. Each model of DVD player does.

No, I'm not confused at all, we're talking about HD-DVD and Blu-Ray, not DVD, and each individual player has a unique set of approximately 1000 keys. Many of those keys are shared across players, but no two hardware players have exactly the same set. To be precise, the scheme allows for a maximum of 2^31 players, so each player has 31^2 keys, the number required by the subset-difference tree algorithm which the AACS key revocation scheme is built on so that r individual players can be revoked with no more than 2r+1 key blocks per disk. For more details see the original subset-difference key revocation paper or for a more accessible overview of how it works try this one.

Re:Network jack??

[Skreems]

Uh huh. I'm saying I have a 32" LCD HD television, and normal DVD resolution is just fine for me. Yeah, if you pause it and try to count freckles on some guy in the background, HD-DVD is gonna work a lot better, but when you're watching a film from 10-15 feet back and people are moving around on screen, it really doesn't make a difference. The average consumer does not care. Don't get me wrong, HD sets have some advantages. For one, you can use progressive scan to get a brighter image and drop that annoying flicker along line edges. That's a huge improvement. But paying extra for extra resolution that you're not really going to notice, and the privilege of working with a broken protection scheme? Nuh huh.

Here's a couple neat facts for you: 1) many sets currently on the market have a broken implementation of HDMI that causes the authentication to fail. 2) There are literally NO computers which can currently play HD media in full quality. 3) No movies or TV shows are shot in 1080. Many are not shot in 720. The image that you get on an "HD" disc is most likely upscaled during the mastering process, to some degree.

And what's that got to do with anything?

[Sycraft-fu]

HD-DVD is DRM'd, that's just the way it is. Doesn't matter the OS you try to play it on, the disc itself is encrypted. It's not like it'll work, no problems, on Linux but not on Vista.

That's the point here. People seem to have this "DRM in Vista is controlling your system!" attitude. No, it's not. You can choose to play the game or not, but it doesn't force anything on you. You can still use unprotected media just fine. Hell, you can still rip protected media to an unprotected format, if there's software to do so. Vista doesn't care. However if there is something that requires the DRM, well then you can play it if you so choose.

I am not at all supporting the DRMing of HD-DVD, I'm just saying that this trying to act like Vista's DRM gremlins are taking away your computer form you is extremely ignorant at best and outright lying at worst. That's just not the case.

Re:Funny how similar this is to WEP

[JohnstonDJ]

So your saying that people should just accept that their new HD drive will only play the very small selection of movies out now? Of course the majority of users will have to upgrade. The only reason I see for not upgrading would be if you just use your BluRay/HD-DVD drive just as data disks, but then you likely wouldn't have WinDVD installed.

The devil is in the details

[HumanEmulator]

The real genius of this move is that all Blu-Ray and HD-DVD players require a network connection. That way the first time you BUY A NEW MOVIE and it zaps your player, you can go out on the Internet and look for another source of movies.

Did anyone else notice...

[TheVelvetFlamebait]

... that the only capital letter in the parent's entire post was in the middle of "BluRay"?

Re:Network jack??

[pizpot]

2) Burn a CD/DVD...

Won't the Sony RootKit prevent that?

Offtopic, my friend landed his helicopter on a lighthouse in England, and burned us a DVD of the video. He sent us it, and my stupid Sony DVD player refused to play it here in Canada. Not due to PAL, but it said Region Error. I thought we were a colony?

What happens in future?

[IchBinEinPenguin]

WinDVD 8 is still actively supported, and it's a software player so it's relatively easy to upgrade the key.

What happens when, in a few years, a HW player is compromised and the manufacturer can't/won't distribute a new key?
(forgot how, can't be bothered, out of business, can't find receipt to prove you're entitled to the key, more interested in selling you a new player ....)
Also, the WinDVD replacement key is free (as in beer). What about a replacement key for a hardware player? Will it be a free ISO to download to flash your player, or will it be a 'free' (plus $39.95 for postage and handling) CD mailout?
I have an 8 year old TV and VCR and a 4 year old DVD player. I doubt I'm going to get ANY support for any of them from the manufacturer.
I doubt I'll get any support for any HW player I buy today in a few years time, and that includes replacement keys.


If I buy a hardware HW player today, and in 3 years someone compromises the key, I'll probably be left with a warm brick!

An even better idea

[rbarreira]

Even better idea: they crack a player key, and then keep using it to derive all the media keys of present, past and future movie releases. Everyone can watch every movie using its media key, and the DRM losers can't revoke any player key since they don't know which player was cracked.

DOWNSIDES:

1- Less convenient; software to view/rip the media has to either lookup the media keys on an online database or ask the user for the key (who will presumably get it from some forum, torrent, irc channel or whatever).
2- The big boys can sue the group/individual who is giving out the media keys (if they don't hide enough, which they can. Alternatively, they can sue the media keys online database, if it exists.

Free market

[rbarreira]

If I buy a hardware HW player today, and in 3 years someone compromises the key, I'll probably be left with a warm brick!

That's the beauty of the free market; people who buy players from hardware makers who can't protect their keys adequately will suffer economical and psychological losses, thus contributing to the evolution of the human species as a whole, in a quasi-intelligent-designed manner. Their next buy will, with a higher probability, be a more "quality" product.

[/sarcasm]

Re:Free market

[IchBinEinPenguin]

That's the beauty of the free market;

Which 'free' market would that be exactly?

The one that gave us region coded DVDs?
Or the one that has 90+% of desktops running malware-magnet software?
Or the one that gave us DRM?
Or the one that .....

Monopoly != Free Market. We have a monopoly on the desktop and a cartel controlling content distribution. Until that changes we're gonna be stuck with this stuff.


Oh... I just notices the [/sarcasm] tag.......

Re:Free market

[SharpFang]

More likely, download a "pirate key" off the net and get your player to play all the torrent releases, without ever worrying about your key getting revoked, and never bothering with originals (which won't play in your player anymore anyway).

As the standard gets more common - expected key lifetime: 1 week. Constant key revoke-upgrade cycles pissing off legal equipment owners to no end will kill the legal side of the system. The illegal side will flourish. Until the whole standard gets replaced with something that makes more sense.

Re:Network jack??

[Dogtanian]

Offtopic, my friend landed his helicopter on a lighthouse in England, and burned us a DVD of the video. He sent us it, and my stupid Sony DVD player refused to play it here in Canada. Not due to PAL, but it said Region Error. I thought we were a colony? Doesn't matter, Canada is part of region 1, along with the US; Europe is region 2. That having been said, I don't understand why a self-burned DVD would need to be region-coded by your friend's software.

That having been said, isn't there a region-setting hack available for your DVD player?

Re:Funny how similar this is to WEP

[Thomas+Charron]

Not at all. I'm saying that the likelyhood that a company will abandon a player anytime soon is exceptionally low. All players are upgradable, if not over a network, then via a CD-ROM.

Also, if you are using a Microsoft HD-DVD drive, you have to upgrade its driver and firmware anyway, as they idiots didn't properly implement bus level encryption like the standard said they should.

Re:Network jack??

[Thomas+Charron]

You have absolutely no idea what you're talking about. There are no computers that can play HD media in full quality is BS. I watch them all the time. And as far as movies and shows, you're high. The movies released in 1080 are based on the masters. When you go to the movies, you dont SERIOUSLY think that the huge video on the screen is at a 480i resolution, do you? And most newly released shows are indeed being broadcast in 1080i at least, and no they are not being upscaled.

Your post smells of FUD.

Re:Network jack??

[yabos]

Play that DVD on a new 52" HDTV and it'll look pretty bad. True not everyone will have one that big for a few years but they are coming down in price and soon more people will be buying them. HD-DVD and Blue-Ray problems will still be the same at that time assuming they don't scrap it and go with something else.

Minor Inconvenience, at best

[Wrath0fb0b]

Ok, I'm not a huge supporter of DRM but this sort of FUD about key revocation for hardware devices is foolish at best (at worst, it a distraction from more material concerns regarding DRM). Supposing, arguendo, that a hardware key is indeed compromised - an event I think is not very likely considering that crackers will prefer to attack software based system first. A simple (if somewhat multi-pronged) plan will more than satisfy the majority of consumers:

(1) Network enabled players will automatically update - built in WiFi with WPA/WEP support would cover the vast majority of people technically inclined enough to buy a next-gen player. This is the ideal solution but need to be enforced at the player level.

(2) Downloadable ISOs for those without network-enabled players that want it NOW. While they are downloading, offer them to sign up for (3)

(3) A web form and phone number that will (a) send out an upgrade disk to your home and (b) ask if you would like to automatically receive all updates in the future as soon as they are available. Of course, everyone that registered their product for warranty will get the update mailed as well.

(4) Ask/Require retail places that sell players/movies to keep a stock of these disks handy. All these places have sophisticated POS computers that can make sure that anyone buying a disk with a revoked key gets flagged and is given the opportunity to get an update disk.

Now, are there going to be fuckups? Of course but with this plan a vast majority of people would experience failure exactly once, after which they will sign themselves up for the automatic mailings (which will, of course, be timed to arrive before the retail release of the new disks). To make things a little sweeter, put some content on the update disks - an old movie would do very nicely and give the consumer a reason not to think that this is a chore (yes, it is a chore, but, due to the expense and technical difficulty, I can't imagine that hardware keys will be compromised all that often).

Re:Network jack??

[Skreems]

http://www.cs.auckland.ac.nz/~pgut001/pubs/vista_c ost.html

Re:Network jack??

[Skreems]

We've watched a bunch of DVDs on a friend's 52" DLP, and no, they still look pretty damn good to me. He's playing it through a 360, so it may be upscaling to 720, I'm not sure. Now, I'm not saying I wouldn't grab some HD media if it was JUST higher resolution. But when HDCP is so amazingly broken that a VP of Westinghouse recommends buying an HDCP stripper to bypass protection so you can play your HD media on hardware that is sold as end-to-end compliant, you know something's messed up. I won't pay someone MORE money for LESS rights to the things I buy, no matter how shiny it is. The fact that the improvement doesn't even really matter when you get down to it... well, that's just another reason not to care.

Re:Network jack??

[Andy+Dodd]

One error: DVD supports progressive video.

So 720x480 progressive vs. 1920x1080 progressive.

While that sounds like a huge difference, in reality for most users, it is not. While I can tell the difference between progressive DVDs and HD content, it's rare that the DVD isn't "good enough", and the difference is not that obvious. (For example, the DVD of "Dust to Glory" is very hard to distinguish from the HD version.)

Re:Network jack??

[Andy+Dodd]

I'm not even sure if it is possible to region-lock a burned DVD.

Most likely there was something SERIOUSLY wrong with the way the DVD was burned, and the player got so confused that "Region Error" was the best error it could come up with (even though it was the wrong error.)

Most players just crash or hang in such situations. Some require a powercycle after trying to read a misformatted disc.

Re:Network jack??

[LuYu]

However, there is no reason why a firmware update for the hardware player cannot be included on all new titles released. There is plenty of space on a Blu-Ray disk to hold thousands of firmware patches, for every compromised hardware player. So the end users will get updated.

This sounds like a wonderful idea. So, let me get this straight, you want to allow disc manufacturers to be able to rewrite the firmware at any time. This means that anybody that prints a disc can rewrite the firmware to make the player do anything.

"Do you know where that disc has been?"

Even if malicious crackers are not taken into account, what about bugware companies similar to Microsoft? What if there are bugs in the patch due to time pressures at the given disc's manufacturer's office? What if an error in the firmware update causes the machine to behave erratically? Or the update turns the player into a brick? Or the update uses the motors to damage the drive mechanism or even your disc?

What if a permanent commercial was inserted in the firmware and would not go away until the next update?

This corporate remote control crap is the same metality that gave rise to DRM. It is pure stupidity, and it is wrong. Nobody should be replacing anyone's firmware, software, or hardware without the owner's explicit permission (no, copyright holders are NOT software or data "owners"; the person on whose hardware the software or data resides is the owner).

Let us all hope that such firmware updates never come into existence. No one wants to experience another round of Microsoft's now legendary security vulnerabilities.

Re:Network jack??

[Stephen+Samuel]

However, there is no reason why a firmware update for the hardware player cannot be included on all new titles released. There is plenty of space on a Blu-Ray disk to hold thousands of firmware patches, for every compromised hardware player. So the end users will get updated. This assumes that:

1. the firmware includes the ability to get the patch off of new DVDs
2. there is enough space to update all compromised machines
3. this can be done without using the compromised keys
   (otherwise hackers who have the compromised key could get the updates).

Re:Network jack??

[Pope]

Geez, you should read your own signature. 2 & 3 are dead wrong. Any number of movies these days are shot on 1080p24 cameras, http://movies.yahoo.com/mv/dvd/reviews/df/20040204 /107590320000.html?id=1807816319 Once Upon A Time In Mexico, dumbass.

Keys

[DrYak]

CSS/AACS :
- the content of the disc (BD / HD DVD) is encrypted.
- the password of that encryption is stored on the disc BUT not as-is.
- the password to decrypt the disc (Title KEY) is also encrypted.
- in fact it is stored several time, each time encrypted using a different password (Player Key).
- those password for password (player key) aren't on the disc, they're secret.
- each playing program, either the firmware on a standalone driver, or the software running on your box, has its own player key, with which it'll be able to decipher at least one of the copies of the Title key on the disc : that copy that was encrypted and stored using the exact key corresponding to the programm running on the player.
- once the player find a crypted Title key it can decipher with it's player key, the player has the password needed to start decrypting and reading the movie (in fact additional stages occurs, but you got the basic idea).

Revocation :
- company stops producing discs that use the corresponding player keys. The new disc is encrypted with some random title key. This title key is encrypted and stored several time, each time with 1 player key corresponding to all players *EXCEPT* the key corresponding to the blocked player.
- all other 'legitimated' users can still view newer movies, because their player can find an entry crypted with its own key and thus can get the password needed to play the movie.
- the blocked player can't : it only has 1 player key. The entry that it used to decrypt the password it needs is gone. And the player's key won't work with any other copy of the password stored on the disc, because all other copies are crypted with other Player Keys that the player doesn't have.
- legitimate users of the blocked player have to either flash a newer firmware or upgrade to a newer version of the software, that will come with a newer Player Key that will be able to extract the password for the movie (from a different entry, that wasn't stopped on newer disc).

What the CSS/AACS creators hoped :
- To decrypt movies people need a password.
- We can't keep the movie decrypting key a secret, because once it gets stolen, there won't be a way to make newer movies that won't operate with such pirate players.
- So instead each movie has its own key, and each player has its own mean to find this key.
- If players steal key from player X, we will revoke its keys and force the company that made the player to make a more secure version with a newer key.

Problems with open-source software :
- Software needs to know a valid Player Key to play movie.
- Opensource software writers don't have one.
- Disc-makers won't provide one because they fear that, because the software is open source, anyone could get the key and use it for pirating purpose.

What happened with CSS (on DVD discs) :
- The crypting algorithm chosen for the whole procedure is just marginally less stupid than a rot13 from a mathematical point of view. Cleverly written brute force algorithm can guess the password to open the movie, without going through the whole key decyphering process.
- libdecss is a library that automates the process : now any opensource software can read DVD's without needing a key.

What happened with AACS (HD DVD and BD) :
- muslix64 realised that, once you know the Title key that is used to decrypt a movie is known, you don't need to repeat any effort : just decrypt the movie each time with the known title key.
- muslix64 realised that the title key can be found in the memory used by player software WinDVD.
- muslix64 wrote a program that is able to decrypt a HD DVD disc if you can provide the corresponding Title Key.
- community starts a growing list of such keys.

Revoking key of WinDVD8 won't work because the Player Key isn't what was compromised. This is the procedure :
- Choose some random software that can play the disc you want to decrypt.
- Install software inside a virtual machine OR along with a debugger OR along w