Slashdot Mirror
HDCP Master Key Is Legitimate; Blu-ray Is Cracked
adeelarshad82 writes "Intel has confirmed that the leaked HDCP master key protecting millions of Blu-ray discs and devices that was posted to the Web this week is legitimate. The disclosure means, in effect, that all Blu-ray discs can now be unlocked and copied. HDCP (High Definition Content Protection), which was created by Intel and is administered by Digital Content Protection LLP, is the content encryption scheme that protects data, typically movies, as they pass across a DVI or an HDMI cable. According to an Intel official, the most likely scenario for a hacker would be to create a computer chip with the master key embedded it, that could be used to decode Blu-ray discs."
It restricts data. It restricts my rights. It does not protect anything.
A slashdotter who didn't build his own computer is like a Jedi who didn't build his own lightsaber.
What does this specifically have to do with Blu-ray? The discs themselves use AACS for encryption. The link from the player to the display is what uses HDCP.
http://www.engadget.com/2010/09/16/confirmed-intel-says-hdcp-master-key-crack-is-real/ /.'d)
(original article
"For someone to use this information to unlock anything, they would have to implement it in silicon -- make a computer chip," Waldrop told Fox News, and that chip would have to live on a dedicated piece of hardware -- something Intel doesn't think is likely to happen in any substantial way.
I think we've got a new challenge here! Props to the first person to post an easy hardware/software system for intercepting and decoding HDTV signals.
Where can I buy the t-shirt?
Intel now approaching release on an even newer, even better DRM system developed with secret AI Heuristics obtained in their recent acquisition of McAfee. A spokesman, who asked not to be identified, said "Trust us! This time we'll defeat those nasty pirates for sure!" The Intel technology is rumored to be based on quantum cryptography, 2Gbit keys, and something which is referred to as a "negative entropy hash".
In response we've asked Tim Jones of The Pirate Bay to comment. "Goodness. Whatever will we do? We'll never be able to decode that. Oh, wait. Those torrents come from unencrypted masters before they went to production. They're not cracked, they're leaked. Never mind. No worries."
Sony, BMG and Viacom are said to be in negotiations to license the technology.
Help stamp out iliturcy.
TFS talks about using the HDCP master key to decode Blu-Ray.
But, really, HDCP has nothing to do with Blu-Ray in particular -- it's protection for a transmission format, not a storage format. The availability of this key means nothing with regards to Blu-Ray.
So, I've been wondering for the past few days: What, exactly, can this HDCP master key do for folks? Does it automagically allow us to decode HDCP-protected content on a DVI or HDMI cable? Or does it allow us to merely sign our own HDCP devices given an appropriate amount of hackery?
Kid-proof tablet..
Did they honestly expect that no one would get a hold of the key, reverse engineer it, or even just brute force it - when will they realize that locks only keep honest and unmotivated people out.
Now I'm finally willing to invest in purchasing Blu-Ray movies. Now that I can archive them to protect from wear and tear.
Unless /. mangles it, it should be the exact same.
HDCP MASTER KEY (MIRROR THIS TEXT!)
This is a forty times forty element matrix of fifty-six bit
hexadecimal numbers.
To generate a source key, take a forty-bit number that (in
binary) consists of twenty ones and twenty zeroes; this is
the source KSV. Add together those twenty rows of the matrix
that correspond to the ones in the KSV (with the lowest bit
in the KSV corresponding to the first row), taking all elements
modulo two to the power of fifty-six; this is the source
private key.
To generate a sink key, do the same, but with the transposed
matrix.
6692d179032205 b4116a96425a7f ecc2ef51af1740 959d3b6d07bce4 fa9f2af29814d9
82592e77a204a8 146a6970e3c4a1 f43a81dc36eff7 568b44f60c79f5 bb606d7fe87dd6
1b91b9b73c68f9 f31c6aeef81de6 9a9cc14469a037 a480bc978970a6 997f729d0a1a39
b3b9accda43860 f9d45a5bf64a1d 180a1013ba5023 42b73df2d33112 851f2c4d21b05e
2901308bbd685c 9fde452d3328f5 4cc518f97414a8 8fca1f7e2a0a14 dc8bdbb12e2378
672f11cedf36c5 f45a2a00da1c1d 5a3e82c124129a 084a707eadd972 cb45c81b64808d
07ebd2779e3e71 9663e2beeee6e5 25078568d83de8 28027d5c0c4e65 ec3f0fc32c7e63
1d6b501ae0f003 f5a8fcecb28092 854349337aa99e 9c669367e08bf1 d9c23474e09f70
3c901d46bada9a 40981ffcfa376f a4b686ca8fb039 63f2ce16b91863 1bade89cc52ca2
4552921af8efd2 fe8ac96a02a6f9 9248b8894b23bd 17535dbff93d56 94bdc32a095df2
cd247c6d30286e d2212f9d8ce80a dc55bdc2a6962c bcabf9b5fcbe6f c2cfc78f5fdafa
80e32223b9feab f1fa23f5b0bf0d ab6bf4b5b698ae d960315753d36f 424701e5a944ed
10f61245ebe788 f57a17fc53a314 00e22e88911d9e 76575e18c7956e c1ef4eee022e38
f5459f177591d9 08748f861098ef 287d2c63bd809e e6a28a6f5d000c 7ae5964a663c1b
0f15f7167f56c6 d6c05b2bbe8800 544a49be026410 d9f3f08602517f 74878dc02827f7
d72ef3ea24b7c8 717c7afc0b55a5 0be2a582516d08 202ded173a5428 9b71e35e45943f
9e7cd2c8789c99 1b590a91f1cffd 903dca7c36d298 52ad58ddcc1861 56dd3acba0d9c5
c76254c1be9ed1 06ecb6ae8ff373 cfcc1afcbc80a4 30eba7ac19308c d6e20ae760c986
c0d1e59db1075f 8933d5d8284b92 9280d9a3faa716 8386984f92bfd6 be56cd7c4bfa59
16593d2aa598a6 d62534326a40ee 0c1f1919936667 acbaf0eefdd395 36dbfdbf9e1439
0bd7c7e683d280 54759e16cfd9ea cac9029104bd51 436d1dca1371d3 ca2f808654cdb2
7d6923e47f97b5 70e256b741910c 7dd466ed5fff2e 26bec4a28e8cc4 5754ea7219d4eb
75270aa4d3cc8d e0ae1d1897b7f4 4fe5663e8cb342 05a80e4a1a950d 66b4eb6ed4c99e
3d7e9d469c6165 81677af04a2e15 ada4be60bc348d dfdfbbad739248 98ad5986f3ca1f
971d02ada31b46 2adab96f7b15da 9855f01b9b7b94 6cef0f65663fbf eb328e8a3c6c5d
e29f0f0b1ef2bf e4a30b29047d31 52250e7ae3a4ac fe3efc3b8c2df1 8c997d15d6078b
49da8b4611ff9f b1e061bc9be995 31fd68c4ad6dc6 fd8974f0c506dd 90421c1cd2b26c
53eec84c91ed17 5159ba3711173b 25e318ddceea6a 98a14125755955 2bb97fd341cea2
3f8404769a0a8e bce5c7a45fb5d4 9608307b43f785 2a98e5856afe75 b4dbead4815cac
d1118af62c964a 3142667a5b0d14 6c6f90933acd3d 6b14a0052e2be4 1b1811fda0f554
12300aa7f10405 1919ca0bff56ea d3e2f3aad5250c 4aeeea5101d2ec 377fc499c07057
6cb1a90cdb7b11 3c839d47a4b814 25c5ac14b5ec28 4ef18646d5b9c2 95a98cc51ebd3b
310e98028e24de 092ffc76b79f44 0740a1ca2d4737 b9f38966257c99 a75afc7454abe4
a6dd815be8ccbf ec2cac2df0c675 41f7636aa4080f 30e87b712520fd d5dfdc6d3266ac
ee28f5479f836f 0bf8ee2112173f 43ae802fa8d52d 4e0dffd36c1eac 3cbda974bb7585
fb60a4700470e3 d9f6b6083ef13d 4a5840f02d0130 6c20ef5e35e2bf dad2f85c745b5b
61c5ddc65d3fc9 7f6ec395d4ae22 2b8906fb3996e2 e4110f59eb92ac 1cb212b44128bb
545afda80a4fd1 b1ffea547eab6b fac3d9166afce8 3fe35fe17586f2 9d082667026a4c
17ffaf1cb50145 24f27b316acfff b6bb758ec4ad60 995e8726359ef7 c44952cb424035
5ec53461dbd248 40a1586f04aee7 49ea3fa4474e52 c13e8f52c51562 30a1a70162cfb8
ccbada27b91c33 33661064d05759 3388bb6315b036 0380a6b43851fb 0228dadb44ad3d
b732565bc37841 993c0d383cfaae 0bea49476758ac accc69dbfcde8b f416ab0474f022
2b7dbcc3002502 20dc4e67289e50 0068424fde9515 64806d59eb0c18 9cf08fb2abc362
8d0ee78a6cace9 b678
Twitter supports and protects racists - by smearing their critics with the "Hate Speech" label.
No hacker is going to give a crap about this. It's so much easier to just rip the data directly from the disk. Plus, anyone in their right minds is usually going to just get the DVD anyways if they are going rip it. Likely going to downsample it anyways since the full resolution file is obnoxiously large. All this realistically would allow for is for people to make an HDMI to Component conversion box which is one of those DMCA grey zones. The underlying technologies of DVD & Blue Ray encryptions were compromised ages ago.
I call BS. I'd bet a lot of money that this key could be used in an inexpensive FPGA to get at the unencrypted bitstream.
Now we all need to buy new TVs and Blu-Ray players with HDCP2 support. You fuckers should have just caved and got a new 3D TV when they were trying to drive uptake the polite way.
Provided sufficiently large keys (1024 bits or more in the case of RSA), brute force is infeasible. "Reverse engineering" only really applies if the details of the cryptographic primitives are not already publicly known (pretty much never the case).
"linux is just DOS with a UNIX like syntax" -- Galactic Dominator (944134)
If the cracking of DRM tech continues at this pace, we'll soon find ourselves living in a strange world where consumers are granted the privilege of PLAYING the content they PAID hard earned cash for! Ridiculous! This must stop while there's still a shred of decency and fairness left in the world! How will the copyright infringing pirates differentiate their loot if the legit stuff become as flexible, reliable and convenient?! What a mess!
AnyDVD HD from Slysoft has been removing Blu-ray encryption and HDCP for a couple of years now.
Can we get refunds on the cost of all the HDCP crap that's been embedded in all this video hardware? :)
My blog: http://www.seebs.net/log/ --- My iPhone/iPad app: http://www.seebs.net/seebsfrac/
simplicity, really. you unwashed barstardes, we got you now.
randomly push 15,000 volts both ways out of the Secret Encryption Box into source and destination.
then the Master Standard Customer Release Media, 35mm film, is set on fire.
if this is supposed to be a new economy, how come they still want my old fashioned money?
A strongly worded opinion. Well written, with references and links. It's not even a controversial topic, From what I see this is rather a majority opinion on slashdot.
Who the hell modded this flamebait?
j'ai découvert une démonstration vraiment admirable (de ce théorème général) que cette si
You know and I know, this is primarily a tool for piracy.
No, it's primarily a tool. How you use it is up to the user.
Much like a gun is a tool. You can use it for target practice, hunting, home defense - and murder. The tool doesn't get to decide how it is used. The user does. The tool is blameless.
Another point. Most people aren't pirates, and most of the people "content protection" screws with are the paying customers. It absolutely is about rights. You buy it - you own it. That's how it used to be. Now the industry is trying to change that. It is important to let those people know they are selling snake oil. That's how I see this event. It's not about a BluRay player for Linux, it's not about piracy. It's about stopping snake oil salesmen from infringing on our rights with these increasingly bogus copy protection schemes.
That's why I love watching things like this happen. I love it when people who are clearly in the wrong (both philosophically and mathematically) get called on their hubris. It fills me with joy.
Weaselmancer
rediculous.
If you don't like it, don't buy it. That's the only right you have.
Oh god, have you never heard of a captive market? Sometimes I think libertarians live in a bizzaro world where captive markets don't exist. Granted, blu-ray isn't really a captive market, but the media companies will sure try their best to make it so. Doesn't matter to me, I read books.
Like all pain, suffering is a signal that something isn't right
welp, thats the end of that
There is not a chance in hell that I'd buy a blu-ray unless I could store and back-up the contents on a regular media server. I hate all those little plastic boxes, and I also hate the anti-piracy messages and studio branding.
Net result: I've found better things to do with my time.
Like all pain, suffering is a signal that something isn't right
All digital content ultimately ends up as an HDMI stream protected by HDCP.
With HDCP compromised that stream can eventually be captured. All that needs to happens is for a company to make a NON-HDCP compliant capture card which just happens to be easily flashable. Think they might end up selling a lot of those? Think some companies in asia would be willing to make that "mistake".
This goes beyond Bluray. Want to get HD quality capture of your favorite HBO show, or maybe some first -release movie rentals (movies rented while still in theaters)?
Everything ends up as an HDMI stream protected by HDMI
The claim that it would be too much bandwidth or too large is just silly.
1920 x 1080 x 24 bits per pixel x 24 fps = 145MB/sec. Fast but not beyond a RAID.
120 minutes of 1080p 24fps uncompressed is roughly a terrabyte. Large but once again not beyond current disk systems.
1) capture the stream
2) dump it to disc
3) re encode with a good multi pass encoder to any format, size, resolution, and bitrate you want.
While not 1:1 it can be virtually indistinguishable from the original.
Sure hacking the compressed copy makes duplication easier and faster but the media protection is always changing. This is the unversal hack. If it is video it can now be captured *nearly* perfectly.
Before I read the bit I thought it decypted the disc. No joy.
Reading this, I am somehow drawn to the song by Futuristic Sex Robotz called "Fuck the MPAA."
They've already had trouble selling HD technology. Were they to just invalidate everything and declare you had to buy new stuff this would not only lead to lawsuits, but just difficulty on the consumer market. If someone already has their TV and Blu-ray player they aren't going to rush out and buy a new one. The content producres will release for what people have, or they'll get no business, thus they'll keep making older formats.
You might notice that DVDs aren't gone, nor for that matter are CDs. The media industry loved the DVD-Audio idea because they had better protection (CPPM) and of course CDs had none. Problem was they couldn't move DVD-A players. Very few people outside of audiophiles bought them. As such the content kept being produced for CD because it was that or have almost no sales.
As I said, Blu-ray is proving to be somewhat of a hard sell as it is, since all it offers is a better picture (DVD offered a ton of better features). If they just said "Nope, you have to buy all new hardware," it would be a total non-starter. People wouldn't buy the HDCP2 players, since they'd have HDCP1 TVs and they'd want them to work. Thus electronics companies wouldn't be interested in selling HDCP2 players. Since people wouldn't have HDCP2 players, you couldn't make discs require HDCP2 or nobody could play them.
Things can be forced on consumers only in certain circumstances. All the encryption on Blu-ray worked because nobody really noticed, it was just a part of the format. Likewise HDCP wasn't something most people encountered problems with only the early adopters got fucked. However you now have a massive installed base of HDCP TVs, and growing every day. Try to screw that over and it just won't work. Your shit won't sell and if it won't sell, companies will stop making it.
Just like digital audio and DVDs, Blu-ray will no longer be a profitable media.
It seems to me that many media companies are in denial about a simple fact--you can't share a secret with a million people and expect them to keep it.
Want to send your account password to your bank? One sender, one trusted recipient, and a world of potential eavesdroppers. That's a problem crypto can solve.
But if the final destination of your precious content is every Joe's TV, iPod, and computer screen, any "encryption" you have between here and there is fundamentally futile. It only takes one of those Joes to start seeding it on BitTorrent, and the more annoying you try make the DRM, the more likely people will be to simply use that as their source instead of paying you.
Besides, after all that work designing and implementing a complex DRM scheme, every single frame of that movie you just sold me is gonna be rendered to my computer's framebuffer. Which gets sent to the display driver. Which is... drumroll... whatever I felt like installing. In theory, I can make my own driver that writes an AVI. So even in theory, DRM is broken.
It's the same kind of denial that leads companies to think streaming video is meaningfully different from just giving me a file to download. If you're sending the bits to my computer, you cannot possibly control what I subsequently do with them.
IMO, the RIAA could make so much more money if they just accepted filesharing as fact and focused on monetizing it. They should look at the bright side--way more people are listening to way more music now than they did back in the day when songs came in plastic cartridges and brick-sized Walkmen roamed the earth. Organize some shows. Sell some merchandise. Sell me a DVD that has awesome-quality 24K soundfiles on it. Get your song on the next Rock Band.
A couple of weeks ago, I went to Lollapalooza 2010. It was awesome, worth every penny of the $180 I paid. How did I decide to go? I found a bunch of the lesser-known artists on Youtube, and liked what I saw. They earned their cash. The record execs, trying to prop an obsolete business model with lawsuits, did not.
The fine folks at Slysoft have had HD/BD ripping capability in their AnyDVD-HD product for quite some time. If the object is simply to be able to rip your Blu-Rays to hard drive, why is this key such a big deal? Or, do some users have other reasons that actually involve the data stream between the player/device and their display? Or, maybe I mis-understand the whole thing.
[...] is the content encryption scheme that protects data, typically movies, as they pass across a DVI or an HDMI cable
Protect the data, typically movies, from the legitimate customer and locks him out of his rights of a backup copy and his right of format shifting.
http://www.mueller-public.de - My site http://www.anr-institute.com/ - Advanced Natural Research Institute
Comment removed based on user account deletion
Who had that date in the betting pool?
rewriting history since 2109
Is intel correct that it could only be used if it was put on a chip/hardware? That doesn't seem right. I don't see why it couldn't be implemented in software.
Chinese player will care, and will be able to CHURN out *CHEAP* Blue ray player and undercu5t the big boy which paid their license. Some country might restrict the import, but you know as well as me that they will fight a losing battle as people will find way to buy those in neighbor lands and import them illegally.
So. Yeah. Putting the code in a chip is what is the immediate danger for the big player, not the oft cited "copyer" which bit torrent stuff.
C. Sagan : A demon haunted world:
http://www.amazon.com/gp/product/0345409469/
visit randi.org
Anyhoo, does anybody actually use Bluray discs? Hasn't discs been made obsolete by a truckload of tubes already?
Excuse me, but please get off my Pennisetum Clandestinum, eh!
"Reverse engineering" only really applies if the details of the cryptographic primitives are not already publicly known (pretty much never the case).
For normal applications of cryptography this would be a valid statement. Kerckhoff's principle tells us that the security of a system should come from the key, not from the secrecy of the algorithm. Hence REing your own device shouldn't help you attack some other party.
DRM is different. By definition every legitimate DRM device has to have the keys built in, otherwise it can't participate in the system. So REing really is a threat. This is why you see obfuscated software, tamper-resistant hardware, etc. in these systems.
This key is the master so its leakage may not have anything to do with RE, unless the key derivation algorithm is really weak. And it could be.
Total noob.
Can you put this in an FPGA to decode?
What I don't understand, and maybe this has been answered already, is why did intel even confirm this? What did they stand to gain? People will confirm this on their own, confirmation by intel only speeds things along to HDCP++ or something doesn't it?
Perhaps they can now stop worrying about plugging the analog hole.
Imposing Libertarian views on everyone online since 1992.
They've got more bullets than we have computer chips...er, brains.
Oh yeah, because so many hackers are also chip manufacturers. That's such a known stereotype.
Google's Super Secret Search Algorithm: SELECT @search_results FROM internet WHERE @search_results = 'good'
This is A VERY GOOD THING. We are fighting for the future of human knowledge. It goes beyond paychecks and copyrights. When information is shared amongst all people it brightens the world. When information is restricted and controlled the world is darkened. Anything that prevents one group of people from controlling others access to information is a heroic act. No matter how petty and small it may seem.
Where would we be if Wheel had hid her round rock in a cave instead of showing everyone how it rolls?
All I want to know is when can I play blu-rays on my PC without having to use PowerDVD or other $100 crapware decoders?
What interests me is the stuff that isn't being discussed:
* Will it allow companies to bring cheaper devices to market by signing their own device keys rather than pay consortium fees?
* Will it allow blu-ray discs to brick an entire home theatre by sending a fake "legitimate" revocation list for genuine manufacturer keys?
Are we about to see an age of "blu-ray warfare" with devices and discs disabling other products? Is HDCP about to see the first wave of hardware "viruses"?
Somewhere, right now, in a corporate office somewhere, the wrong heads are rolling.
bluray burners and media prices going up at 11
I thought he was trying to be the Rights-Maximization Savant. *rimshot*
Do people really not realise that just about all cheap HDMI active splitters strip HDCP?
put the player on the input port.
put a valid DHCP device on output port 1 (perhaps a standard monitor)
put ANY OTHER device on output port 2, it wont see hdcp....
No master key needed, about a $75 investment..
Its been like that years, do people really not know this?.
Sigh.
Even Pelican brand protective cases, backed by the famous Pelican Products Legendary Lifetime Guarantee, are vulnerable to this! The guarantee specifically "does not cover shark bite, bear attack or damage caused by children under five."
watch all of my movies as 720p torrent downloads. not sure if this is 'news for nerds' yall
Content protection ONLY "screws" people who have the content legitimately.
A copyright violator isn't "screwed" by not having access to something they haven't got the right to. The only people who can get screwed are the people who parted with money and may be unable to use the product in a legal, desired way.
Once it gets past the paying customers, the content protection has been removed anyway.
(By the way, I originally wrote "owners" in the title but corrected myself...)
Help! Help! I'm being repressed!
People seem to think that this was done for piracy, or done by extraordinarily clever hackers through a lot of time and pain.
Thats all bunk. The whole reason people hack these master keys is to sell a butt-load of t-shirts.
Yes, but this isn't RSA. It was sufficiently weak that brute forcing it was inevitable.
Had it been RSA, it would have been necessary to either rip a bunch of keys out of devices or somehow steal the signing key. That or hack device firmware to not bother checking authenticity of connected devices.
Comment removed based on user account deletion
"brute force is infeasible."
Not if you intelligently and systematically create sections for individual cracking efforts, and distribute it.
Hello, BOINC project.
Still waiting on Serviscope_minor to wake up to fucking reality and realize that Jessica Price isn't going to fuck him.
This isn't about Blu-Ray. That's already copyable. It's about cable, satellite, and Internet pay TV. What this really does is allow building a DVR that will record anything you can get out on an HDCP port.
It's also an issue in that manufacturers who are not paying fees under the HDCP contract could now make HDCP devices. Displays, for example. We're going to see a big boom in cut-rate grey market displays.
I participated in the BOINC effort that cracked all the (512 bit RSA) signing keys for TI graphing calculators, I'm well aware of the current factoring scene. Each of those took a few days, and were done with purely donated computer time from a handful of hobbyists. (The first was done by a single individual acting alone, and took a few months). Provided a few million dollars of funding, 768 bit numbers can be (have been) factored. At the current pace of development, I expect we'll see 1024 bit keys being factored by well funded efforts within 5 or so years, and maybe 5 years after that they'll be within reach of hobbyists too.
Thing is, people are already starting to recognize this and are using large and larger keys. 2048-bit keys are quite common and 4096-bit keys are definitely not unheard of. Don't expect to see either of those factored any time soon, even with millions of dollars worth of computing time. The difficulty of this stuff doesn't increase linearly by any stretch of the imagination. GNFS's are faster than incrementally trying each number, but don't let that fool you.
"linux is just DOS with a UNIX like syntax" -- Galactic Dominator (944134)
I can't think of a much sleazier business practice.
Selling drugs to kids? Taking taxpayer money and not giving them a new set of intertelephony tubes? Killing brown people and taking their oil? Frivolously suing people just to scare them and extract money from them? Oh, wait...
Let's have a little poll. Who believes the above was written by a parent?
Confucius say, "Find worm in apple - bad. Find half a worm - worse."
After we all get through the "huzzahs"..anyone here think maybe, just maybe, this could be an inside job? As in, let the key loose and with the new business model of allowing lawfirms share in the John Doe suits lately it would seem to merely be a new revenue stream that would be enhanced by this release. Let the geeks have the key, let them share the files, and take the percentage from the lawfirms willing to file the suits in bulk a la Hurt Locker.
http://yro.slashdot.org/story/10/09/03/1330220/Hurt-Locker-File-Sharing-Subpoenas-Begin
http://yro.slashdot.org/story/10/05/28/2147239/The-Hurt-Locker-Producers-Sue-First-5000-File-Sharers
Followed by..
http://yro.slashdot.org/story/10/09/11/1357254/Judge-Allows-Subpoenas-For-Internet-Users
Maybe just the conspiracy theorist in me.. off to finish my Faraday Cage..
Afghanistan is not about oil. If it's about a mineral, it's about lithium.
Provided sufficiently large keys (1024 bits or more in the case of RSA), brute force is infeasible. "Reverse engineering" only really applies if the details of the cryptographic primitives are not already publicly known (pretty much never the case).
1024 bit RSA is generally considered too small for anything of high value nowadays. Microsoft and Mozilla have both announced they are migrating away from 1024 bit for the CA certificates they ship. NIST recommended moving away by the end of this year.
HDCP has specific weaknesses in its design that made recreating the master key only a matter of time.
All DRM systems rely on the consumers' hardware/software being able to decrypt the content - i.e. the cryptographic primitives are at least publicly distributed.
Apart from that, you post is accurate.
Much like a gun is a tool. You can use it for target practice, hunting, home defense - and murder.
Oh shit, here we go again. Sneaking in the guns aren't really bad at all argument when on the subject of DRM.
Go on and brain wash us by relentlessly reiterating the point that guns by themselves aren't bad. Sure, hunting is a legitimate use of guns and the captured animal will most likely taste exquisitely. But I take only a very small percentage of firearms circulating the USA will ever be used for killing deer.
If you're so keen on hunting in order to provide for your family -which I'm not quite sure you are- than, by all means, go out on a limb and knit your own sweaters. You certainly could use practising with the good old traditional knitting needles. Yeah, use them tools buddy.
And don't start the constitution bit either. I respect the USA constitution but agreeing with it on the guns bit is for NRA fanboys. (Much like supporting Apple's restrictions on the iPhone by Mac fanboys.) That law was written in a completely different era and I bet the authors would turn in their graves if they'd know how much sorrow the guns passage amounted to.
Now piss of and go about knitting. (You poofter!)
I hadn't the slightest objection to his spending his time planning massacres for the bourgeoisie... (P.G. Wodehouse)
It seems these guys don't know what HDCP actually does.
With the HDCP master key, one can build hardware that decrypts HDCP encrypted signals (that is the easy and well documented part) and is accepted by the HDCP encoder on the other side (that is the hard part). You still need rather sophisticated hardware. Not that easily built by your average software hacker.
That in turn allows you to record the signal coming out of your video card or Bluray player. That's about 200 MB per second. I don't have any hardware lying around that can record the output of a DVI card for two hours and neither does your average slashdot poster.
So this doesn't allow _you_ to backup your Blu ray discs. It will allow some rather sophisticated pirate organisation to pirate Blu ray discs, and they will produce Blu ray discs that again you cannot copy. So you as the end user won't gain anything from this.
Right, now all I need is for someone to build a complete HDCP stripper, emulate/strip BD+ completely, supply cheap BD-R/RW drives and media, give me a few cheap HDMI cables, a new "HD-ready" TV, and a free voucher for the BluRay version of every movie that I already "own" on DVD and I'm ready to join the HD era.
Hell, I still can't see the extra pixels at my comfortable viewing distance (so I "must be blind"), but I have to get with technology apparently. Apparently my 1440x900x32-bit display, fed via a VGA cable, or SCART, or composite, is "obsolete" and not as good quality as me having a digital cable, despite decades of viewing to the contrary. Apparently being able to watch *anything*, not having to worry about where I bought the disk, not having to fight with new cabling that does a lesser job of simply putting some images on my screen, and being able to backup all my movies is "old-hat". Oh, and I have to pay an extra X amount per month, plus new decoder hardware, in order for them to send me a slightly higher quality signal down my aerial/satellite dish/cable. In the case of FreeView, that means second-generation hardware too. Not wanting that apparently makes me "cheap".
I don't own Blu-ray hardware, don't own "HD ready" kit, and I don't miss it. My normal computer monitors have been "HD" for decades, you just want to add fancy definitions and restrictions so that it's "Movie Industry HD" instead of "HD". When you solve these problems, you'll see the boom in HD adoption that you are desperately hoping for.
Movie companies: The deal in the past was always "I give you about £20, you let me watch that movie wherever I take the disc/tape, on whatever hardware I want, and I promise not to copy it". That sufficed for about 40 years. If you're not willing to keep up your end of the bargain any more, then I won't keep up mine. My morals and job require me not to break the last promise, so I just won't give you the £20 (which is creeping closer to £40 now) OR watch your movie. Deal? Last time I went to the cinema was over a year ago, and that was because I was passing, was bored, was with someone and we needed to fill a few hours until the restaurant opened. The movie we saw was a heap of crap but wasted a few hours. I can't even *name* any movies that come out in 2010. I don't feel I've missed out, though.
...long live DRM.
Put the coating on the child. Much more reliable.
First child: Wipe their bottom with the softest fabric and smoothest lotion.
Second child: fire hose.
MMO Quests are like orgasms:
You may solo them, I prefer them in a group.
People are confusing this master key that breaks HDCP, saying it can help decrypt Blu-Ray discs. That's not the case: Blu-Ray is encrypted with AACS, which has a similar concept of device keys derived by a master key. AACS has a mechanism of revoking compromised device keys. Getting the AACS master key would bypass that mechanism, and would be great news.
This key isn't the AACS master key This is an HDCP key, which would allow one to create a "unauthorized" device that can connect to HDCP-encrypted HDMI and succesfully decrypt the HD stream.
HDCP has been known to be nearly broken since 2001, in that obtaining the device keys of 40-50 devices is enough to calculate the master key.
Misleading titles? Inflammatory blurbs? Keep in mind that Slashdot is a tabloid.
If the companies wanted to limit sale of dvd's to regions, then it should be limited to only sell the dvd in the region where the medium was physically manufactured.
Fair deal.
Why can't I use my lovely wide screen monitor, much better than the average telly, to watch HD content from my Virgin STB?
I can't because there's HDCP on the cable and not in the monitor. My HDMI to DVI cable was pointless... I thought HDMI was forwards compatible with DVI... ah well... Even "low def" content doesn't work...
Sooo...
How does this benefit me in any way at all?
You should have addressed MPAA with that.
Yes there is. And that government action required to enforce your "rights" on this copy show you that you are no libertarian if you want copyrights.
Your home can be protected. Your work in your control can be protected. But your work in someone else's hands, given validly cannot.
Unless government get involved in what you do with your stuff in your home in private.
Which is an anathema to a libertarian.
Intel is manning up and admitting that something terrible just happened. It is the smart thing to do. If they had hemmed and hawed and delayed admitting the key was genuine then all their customers who had bought in on this DRM scheme would have gotten pissed off and felt jerked around.
Look at the metric shitload of bad press BP got when they tried to lie and evade regarding their recent oil leak. I believe the people responsible for that are no longer with the company.
It is interesting that someone would question why on Earth Intel would step up and do the right thing that will be best for the company in the coming weeks and months. I think this is because we have come to expect large corporations to act with all the integrity and intelligence of a retarded dinosaur after it has had its brains knocked out by a piece of asteroid shrapnel. Apparently real engineers continue to work at Intel and for some unknown reason, at least one of was placed in a position of authority.
We don't see the world as it is, we see it as we are.
-- Anais Nin
Blu-Ray is cracked? The masterkey is available to all? There is no technical restriction on doing what I want with the contents of a blu-ray disk now? Great!
*NOW* I will buy a Blu-Ray drive and blu-ray content. Because those very restrictions that were supposed to protect the content-producers investment were the same things that were keeping me from cracking open my wallet and handing them my money.
When will companies learn: DRM doesn't work and it annoys your real customers. It costs you more money than it can possibly save. Treat us like criminals and we will either act to your expectations or avoid your products entirely.
Of course, now comes the hard part: trying to find any blu-ray content *worth* buying.
Cool, maybe I can get that screenshot from the BBC Blue Planet blu ray collection?
It's been pissing me off for ages as there are some lovely HD wallpapers, but becasue it's protected I can't see anything but 1920 x 1080 of pur blackness! I was almost at the point where I would have to use a HD cam to take a picture of my TV (playing the Blue Planet blu ray).
It's a shame that the protection means such usgage is currently locked out... I paid £50, can watch the movies so why not allow screenshots for the PC dekstop... IM NOT PLANNING ON SELLING the pics, just for my own desktop!
What does it mean in practice? Well that someone can rip a clean HD image & audio from the video output at the back of the device. Great, but hardly groundshaking since most devices have component outputs anyway. With regard to Blu Rays no one is going to bother with ripping the HDMI when solutions like AnyDVD HD already offer the ability to rip the raw data straight from the disk. I think it is probably streaming devices that need worry more.
I also expect that many devices watermark the content as it is output. So if you were to rip the content you may well find it has your unique id plastered all over it.
HDCP was never about DRM. It's obvious from the get go, protecting the signal over the cable is asinine.
It is about licensing fees for the HDCP IP. Every TV, Blueray player, or any other HD producer or consumer of HDCP content *must pay royalties* to use the technology to correctly implement the spec. A "hacker creating chips" means that now, you too can implement the spec, without necessarily paying the licensing fees.
This is a way to capture some of the money back from the (outsourced) manufacturing market. Basically a global tax on producing HD-capable devices, which is then passed on to the consumer, and enforced by international (US) IP treaties. In the end, we all get screwed though.
>But your work in someone else's hands, given validly cannot.
>Unless government get involved in what you do with your stuff in your home in private.
In your fantasy world, if I lend my buddy a lawnmower and he never gives it back, I should have no legal recourse.
It's always a long day... 86400 doesn't fit into a short.
Yes there is.
No, there isn't. Have you tried looking at the dictionary?
And that government action required to enforce your "rights" on this copy show you that you are no libertarian if you want copyrights.
When did I ever say anything about Libertarianism or copyrights? I was simply talking about the definition of the word "property."
... and then they built the supercollider.
"the most likely scenario for a hacker would be to create a computer chip with the master key embedded it..."
Yeah, I'll get right on that. Who wants to bet that it isn't a "hacker" but a Chinese chip maker that realizes this scenario first? Oh the irony - a Chinese company striking a blow for information freedom!
I think you put quotation marks around the wrong word. They're definitely an industry; whats debatable is whether they are entertaining.
Support Right To Repair Legislation.
Once we start talking about parallel imports, we have a problem. Intellectual property is only as valuable as the customer is willing to pay. But at the same time, it has base costs. If we talk about academic textbooks, the customer in India, Kenya or Peru is not willing or capable of paying as much as the customer in the US or the UK. So we cut the price in their region so that they can afford it, and this gives them access to education. If import protections didn't exist, the publishers would have a straight choice between losing their developed-world profits by selling at developing-world rates, or losing their developing-world profits by selling at developed-world rates. The big money's in the developed word, so if we were to ban import protection on IP works, education in the developing world would suffer.
Of course, the opposite is true in the case of Hollywood cr*p -- if that wasn't available, education would improve, but you've got to take the rough with the smooth.
HAL.
Got them moderator blues I blieve I walk out the do', With these mod-points I been gettin', I 'most never post no mo'
The only way to stop this would be to start over with a new master key, which would brick every existing HDCP encumbered piece of hardware out there.
Which shouldn't bother the industry one bit, considering they've been obsoleting consumer's hardware already, like non-HDCP gear.
Comment removed based on user account deletion
Over here we pay a 'tax' on all media, including hard disks, if it can be used for piracy. The money goes to the media companies.
They steal our cake and eat it, yet somehow we're the 'pirates'.
I've never voted in my life but next time around I'm getting off my ass and voting Pirate Party.
No sig today...
You would be hard pressed to not even find a PERSON who hasn't put in an attempt to change the law in his/her favour - as that's what elections are about.
Citizens' "attempts" are far less successful than those of entertainment industry trade groups at meaningfully changing United States copyright law.
At least I for one when I have the chance to vote will vote for a person/party that wants laws to work in the same way I want it to.
Do you want the copyright expansionist with an R after her name, or would you rather have the copyright expansionist with a D after his name? That's the choice that U.S. citizens end up with in November.
How many let you choose the sample rate?
If no MP3 stores do, this in turn is because no CD stores do. Compact Disc Digital Audio is itself fixed at 44100 Hz.
But in many other traditional sales the content will be taken back - books and games are certainly in this class
Since when are tabletop games or video games returnable? United States copyright law restricts rental of PC games, and GameStop won't take them back due to publishers' limits on Internet activation.
The analogue to someone pirating music is not that person saying: "hey, I like Lady GaGa's new song. Let's also rent a studio, arrange the musicians, record it and mix it".
You'd be surprised. Here are a couple U.S. plagiarism cases for you to Google: Bright Tunes Music v. Harrisongs Music and Three Boys Music v. Michael Bolton . In both of these cases, a singer-songwriter was found liable for copyright infringement despite that he didn't even know he was copying a song that he had heard several years ago on the radio until he got sued.
HDCP is used by cable operator everywhere to "protect" their precious content without a moment's thought to compatibility with older TVs or projectors that don't support it. And they had so much faith on HDCP that on many boxes HDMI is the only output, no analog loophole to ease the job of the malevolent pirates.
You're a paying customer and got caught in the crossfire' Bad luck, my friend, just buy a new TV, loser!
I understand for some, this might be cool, however, a 25gb blue ray that has all that info, might be harder to copy, and keep (unless to another blu ray and they are expensive)....seriously, i could not imagine being able to copy this movie and then leave it on my hdd, taking up 25gb per movie...i do that with regular movies, and even then i convert them to avi at some point....this would just be a waste,
I hope they always keep the regular dvds as well...
I don't have a blue-ray player yet, so this is just about DVDs for me.
I rip the DVDs I own because so many of the DVDs are filled with tons of crap that frequently you are not allowed to skip through or over. Commercials. FBI warnings. And frequently, many of the main menus are actually a little animated "movie" before it "solidifies" into the actual menu, and you have to wait for it to finish doing its song and dance before you can hit play.
It's easier to rip the content to a hard drive, and then when I sit down to watch a movie it goes straight to the movie.
Another thing that's great about ripping movies, especially children movies, is I can set up a play list on the computer and let it go all day long for the kids, without having to stop what I'm doing to change out discs.
Before people freak out about the "all day long" we only let our kids watch TV on the weekends, and seldom do they actually watch the TV all day long.
A work that expires before its copyright never enters the public domain and thus enjoys eternal copyright protection.
If R is for rights, then M is for mangle, as the balance of rights is mangled by the time the copy gets to the viewer.
If you don't like it, don't buy it.
How do you propose that shoppers at a grocery store "don't buy" the performance of non-free music over the speaker system?
>Arguing why you can't put your DVD or Blu-Ray collection on a hard drive is about as pointless as arguing
>why there is no football dispenser in your new car. Point being, it was never designed to.. Not by the
>manufacturer of the HDTV. Not by the manufacturer of the Blu-Ray disc. Not by the manufacturer of the
>Blu-Ray player. All arguments regarding "fair use" aside for a moment, I fail to see why this continues
>to be a valid argument for people who own both the movie and the player. Load the disc already
>and just watch the damn movie. Not every product in this world is designed to work around you.
>If you don't like the way certain technology works, then don't fucking buy it.
This is a completely incorrect suggestion.
If I have bought and paid for an item, then if I want to modify the way it works that is entirely up to me!
If I want to make it so that when I load the DVD the lights dim and strippers descend from the ceiling on velvet ropes to the sound of trumpets, that is my prerogative, regardless of how the content creators wished I would view it!
I rip my legitimately-owned DVDs so that when I sit down to play a movie I push one button and I am watching my movie. I don't have to fumble with the remote trying to bypass fifteen minutes of commercials and FBI warnings, half of which are locked out so you can't bypass them.
A work that expires before its copyright never enters the public domain and thus enjoys eternal copyright protection.
If only the kids would spend less time using it to watch Eric Herman and Dora the Explorer... d^_^b
You're the parent. Parent.
Hand-held hefty metal objects impacting impacting certain parts of the skull with sufficient force kill people.
No bullets required.
Knowledge is how to play a game, intelligence is how to win, wisdom is knowing what game to play.
They probably have a warehouse of 10 year old "frisbees" you can have.
Knowledge is how to play a game, intelligence is how to win, wisdom is knowing what game to play.
With each generation of "new" features there will be a new copy protection measure, and "old" hardware will be limited to, well, the "official standard" features of the "old" hardware.
Consumers won't mind, since they will be trained to expect it.
To put it another way:
Just as blue-ray played through non-compliant hardware is "downgraded" something less than the best it can play but better than an analog TV, most consumers won't mind if the next-gen hardware plays "only" Blue-Ray-quality when connected to older hardware or to newer hardware that's not compliant with the next-gen spec.
Knowledge is how to play a game, intelligence is how to win, wisdom is knowing what game to play.
And "If you sell me this media, I won't violate these 'copyrights'" is just as reasonable a contract to offer or accept as any other NDA.
But the libertarian argument against copyright violations by third parties is shakier. Say I copy data that you bought under contract onto media that I own; I'm supporting your commission of a tort, which might carry some liability... but what about the guy who gets a copy from me? And the guy who gets a copy from him?
Correction: locks only keep honest and unmotivated paying customers annoyed and inconvenienced.
The equivalent (do people really need analogies to understand piracy?)
The general public needs analogies to understand copyright infringement, and Slashdot users need analogies that they can repeat to the general public or to congresscritters when explaining the issue.
is someone renting a recording studio, providing artists, mixing expertise et al. to re-record Lady GaGa's album.
That's a "cover version", for which the United States provides a "mechanical license" program with royalty amounts tied to the Consumer Price Index. In fact, there are tribute bands that specialize in covering one particular artist's songs.
It allows you to create a device that connects the outgoing HDMI port on your Blu-ray player or computer that is going to your TV.
This doesn't allow anybody to copy a blu-ray disk at all. It allows you to make an HDMI device without a license.
A device to copy a stream is likely not to be cheap, the resultant output stream TONS bigger than the original Blu-ray, and will have to be re-ripped into somekind of hi def format and stored. All of this to take HOURS and some sophistication to pull off.
This isn't "unlocked" blu-ray like DeCss does to DVD's.
It is very unlikely that any device created will make it to market without being sued out of existence. It is very unlikely that you will get better results than the 144 dollar HDMI/VGA dongle would allow you to create.
It is interesting as a hack. As a practical thing, this isn't de-CSS. Not even close.
Will you please polish that post up and publish it somewhere?
Enjoy life! This is not a dress rehearsal.
If any story would be worth the haha tag, it would be this one...
This isn't going to affect piracy at all. Pirates haven't needed this to rip Blu-Ray or HDDVD ever since aacs was cracked. Even beyond that, they haven't needed it since most source material is leaked from the studio.
What this REALLY means, is that for those of us who have first gen HDMI equipment with flaky handshakes should be able to buy a box that fixes all this. Instead of having to reboot your media center/tv/receiver all in the exact same order. Right now, if my media center pc reboots for an auto update, the rest of my family who doesn't understand why there is no display on the tv when they turn the computer on, has to reboot everything in the right order just to able to see the media center desktop.
According to an Intel official, the most likely scenario for a hacker would be to create a computer chip with the master key embedded it, that could be used to decode Blu-ray discs."
That seems unlikely to me. Am I missing something? Isn't the most likely scenario that someone will use the key to make free/OSS blu-ray playback software? And transcoding tools? I imagine that some Chinese manufacturers could use the key to make a cheap blu-ray player without paying the MPAA's ransom to get a player key. But it seems more likely that software would come first.
Dan Ankroid from the "Making of the Blues Brothers (the quote is from memory and may not be entirely accurate): "When I was in college I studied criminology, criminal law, and criminal psychology, so I went into show business."
I thought that was a humorously good way of saying "I work for psychotic crooks."
Free Martian Whores!
It sounds like you spent too much time on researching the ripping and not enough researching the media center softwares. I found MS's Media Center to be boorish at best, often forcing me to use third party media managers for pulling movie and TV show information.
If you're sticking with Windows, MediaPortal has a great community (especially for skins) and installing both ffdshow and haali media splitter will cover all codecs needed. MediaPortal also has great support for DVR functions and works with most DVB cards (even my old ATI All-In-Wonder Pro from '97). When I was running it, I found the tv-over-ethernet stuff very useful when I used the DVB cards (one computer with tv tuners that shares to all media centers), and would definitely use it again if we decide to get cable or satellite.
These days I'm using XBMC due to the lack of interest for DVR functionality. main room running Linux Mint and the bedrooms running XP. I particularly enjoy the built-in media manager and extreme ease of setup. If you have media on different machines, you can add them all to one folder similarly to how Win7 uses the libraries feature (But better. Much, much better). There's also a quality iPhone app that you can use to browse media, use as a remote, etc. I use that in addition to the webpage and IR remotes so I never have to be too far away from the remote. This is a key feature when dealing with children under the age of 5.
I did try Boxee for a stint, but it seemed to be too internet-focused and took an unacceptable amount of time to display local files through the Movies or TV show displays. I thought it did a great job of displaying and playing the online content, but when the primary source is local media and all pertinent bug reports get set to "will not fix", I'll pass. The $199 boxee box is tempting, but only if I can run XBMC on it instead.
If you don't have kids, I recommend the Gyration media center remotes. They do all that a universal remote does in addition to being used as a mouse/keyboard/media remote for the computer. If you do have kids, go with an older Phillips MCE remote. The older IR receivers work with XP, Vista, Win7, and Linux, whereas the newer ones only do Vista, Win7, and Linux. Not a huge deal if you have new equipment, but if you want to use older equipment that can make a difference.
So, your chief complaints seem to be that kids are breaking your media. Okay, fine, I get that. But, why would you put 'thousands' in discs on display knowing that you have young kids running around? You wouldn't leave a Ming vase on a pedestal in the living room if you had a toddler, would you?
Don't get me wrong, I believe the practice of re-buying the 'right' to listen to media every time you fumble a jewel case is ridiculous, but you guys need to come up with more compelling examples if you're going to begin to argue anywhere besides a place full of sympathetic co-geeks. America's economy has shifted from production to IP; our exports these days are theoretical, technological, and entertainment-related. Mega-corporate, trade, and government are going to be in sync here in unprecedented ways. We can only expect the rush of IP protection technologies, litigation, and thereby atrocities to continue, and as the benevolent overlords of tech, we are saddled with the burden of beating back such assaults on our lifestyle.
Put your thinking caps on, what would John Q. Idiot become concerned about were you to bring it to his attention tomorrow?
Comment removed based on user account deletion
Comment removed based on user account deletion
Now that this has been cracked, I am now more apt to buy their products because I can play it on what I want. I am now considering it, while before it was a flat "no"
When you've got a General Electric M134 minigun you don't need no fucking legal recourse.
To have a right to do a thing is not at all the same as to be right in doing it
I understand what you're saying, and I suppose its good that intel is admitting its broken, but at the same time, in this case, intel didn't really do anything wrong and I'm not sure I understand why they don't just mail their licensees directly- public confirmation seems unnecessary is my point i guess, but certainly some disclosure in the right channels is called for.
MakeMKV can include the subtitles as tracks in the MKV. (That's not to say your playback software will know how to read them, mind)
I am trolling
While brute force is not particularly practical with large encryption keys, it doesn't mean that is it is impossible. One never knows, the key itself could be in the early portion of algorithm the attack. Just like if someone had their briefcase set at 0-0-1 it wouldn't take that long for sequential attack to break. [Obligatory Spaceballs reference: 1-2-3-4-5? That's the same combination I have on my luggage]
Someone once told me, "Never underestimate the motivation of an ingenious idiot. To them, even the probability of impossibility is not a limiting factor."
In other words, brute force, RE, leaked key, etc., why are we even surprised at this? Or perhaps the better question is, why are "they" surprised?
Cheers,
Xyst
I'm not surprised it was leaked, but I would have been shocked if it had been discovered by brute force.
Apostrophe abuse...
If you are CHURN-ing out Blu-ray players, the cost of HDCP keys is marginal. After a $15K annual fee, 1-million HDCP cost $5K. That works out to $20K/1Mkeys or about 2cents/each. I don't think HDCP being broken is going to make for a substantially cheaper CHURN-ed out Blu-ray players...
Have you ever tried setting up the CCCP? Go to the CCCP website to get it. I used that to set up my media center and it has all the stuff you need. I recently found that the built DXVA (an option you can select when you install or go to the configuration) actually works quite well with my nVidia card and this pack basically seems to have all the codecs you need to play like 99% of the videos around. If you're not aware, that's used for video acceleration to keep your CPU from eating itself playing back compressed 1080p video. Basically everything you need to play MOST stuff back is there. You use Media Player classic to play it.
"Those who would sacrifice essential liberties for a little temporary safety deserve neither liberty nor safety." - BenF
Interesting points. I hadn't thought of a private announcement to their licensees. ISTM the end users will be affected by this too. People who want to create devices that break HDCP encryption won't be slowed down or sped up by the announcement. They were going to go ahead at full speed to see if this master key was valid. I still think the public announcement was the only right thing for Intel to do at this point. IIUC, the stock market hates uncertainty so creating a haze of uncertainty by delaying the public announcement had no up-side for Intel.
We disagree about whether Intel did something wrong. Perhaps they had an exchange program between marketing and engineering because as much as I admire their recent admission of defeat, I find their HDCP implementation technically deplorable**. They really should have known that it was going to be trivial to crack. As I've mentioned elsewhere, one of the main reasons they chose such a weak system was to keep hardware implementations cheap and easy. Their HDCP algorithm requires only 20 56-bit additions to create the private shared key. In contrast, 1024-bit RSA key exchange requires 512 1024-bit multiplications.
** I also find it morally deplorable so I'm glad it's been broken. I wonder if during the internal Intel debate on the technical merits, the people who knew how weak it was, didn't have the belly for a drawn out fight with marketing because they too had qualms about the morality of DRM. Engineers are are always striving to make their creations robust, it goes against the grain to make something that is "broken by design".
We don't see the world as it is, we see it as we are.
-- Anais Nin
I hate HDCP as much as the next guy, and DRM is by nature, broken since it has to be decodable/viewable somewhere.
I hadn't thought it out much originally and my initial thought was that it was just trying to get the ball rolling for HDCP-SuperPlusGood or something.
I suppose canopus or someone will make a box sooner or later? I'm still looking forward to a master AACS key discovery, however Slysoft has been good to me, so I'm reasonably happy.
> Ever had a lot of "shiny bicycles" that aren't so shiny after your wife and/or small kids get their hands on them?
A few differences. Even with less than careful children a bike will last months, if not a year or two. And a kids bike is pretty cheap at Wallyworld. Priced Disney DVDs lately? And the little ones can thrash one in under a month.
So oh hell yes they get DVD-R copies. And if I have to copy them it doesn't take too much more effort to nuke FastPlay.
Democrat delenda est
I'm using MakeMKV to stream blurays on Linux. No ripping to disk needed. MakeMKV is proprietary and costs $50 but the beta is free. It makes viewing blurays really easy. If I buy it, it will be the first proprietary program I've bought in many years. It is a trade-off. For me, convenient breaking of DRM is worth supporting this particular proprietary effort. Also the dev seems like a nice guy and the program is not all obnoxious about being proprietary. I actually had to do some digging to find out how to buy it and how much it costs.
I have no doubt HDCP-SuperPlusGood is already in the works but I have a feeling the pooch has been screwed and will remain screwed for a number of years. Dropping support for the current HDCP would be extremely stupid because it would really piss off end users and it would force them to buy an HDCP cracker box to use their current equipment with an upgraded component. IMO high def (including bluray) was the lure to get people to start using HDCP crippled devices. What the heck are they going to use to lure people into using HDCP-SuperPlusGood? What is going to be the next technical leap that will make the current high def obsolete?
It is going to be interesting to see if the DMCA comes into play now that people will be able to buy a little device that cracks HDCP. It's not clear those little cracker boxes would be illegal under the DMCA because they can certainly be used for purposes that would otherwise be legal (e.g. legally viewing bluray movies on a non-HDCP display). It could be a lose-lose for the media companies.
We don't see the world as it is, we see it as we are.
-- Anais Nin
I'll raise your HTPC a popcorn hour. I originally intended to do a serious HTPC and did some research. Glad I did.
to protect content, a hypothetical working syystem needs to be perfectly working. in every single use all-over the planet. for each of its basic step. forever.
to break it, all it takes is one single mistake somewhere. and the zero-cost-to-copy of the media will work its magic on the internet.
in such an assymetric fight, there is just no way DRM could possibly hope winning
"Sufficiently advanced satire is indistinguishable from reality." - [Tips: 1DrYakQDKCQ6y52z6QbnkxHXAocMZJE61o ]
u17 (1730558) shares my opinion exactly!
In practice, I don't think there are any conditions under which you can circumvent and be sure that the court will accept the interoperability exemption. It might be written into the law, but if the courts took it seriously, then the DeCSS case (software which extracts the plaintext of a DVD so that you can play it without paying extra for DVDCCA-certed equipment) would have gone differently.
In fact, you can always look at just about any sort of circumvention as always having interoperability as its purpose. If the exemption were applied, then the circumvention prohibition would be completely neutered.
BTW, one of the interesting things about DRM schemes for movies and music, which doesn't always apply (though it can) to software, is that the DRM creator is a different party than the work's copyright holder. If you distribute an HDCP crack (or CSS crack or a Fairplay crack), no particular copyright holder can say it's for their content, and no one can even say for sure that a user using that crack will necessarily not have authorization to use it. (There are various conquences to that second part, but I'll blow that off for now).
So what happens when you defeat a video DRM scheme, is that a third party who likely doesn't have any works actually protected by that DRM, is the one who sues you. That's why you have situations where DVDCCA went after Jon Johansen, why Adobe goes after people who try to be interoperable with RTMP, Apple goes after people who try to write iPod syncers, and so on. If you think about it, these parties shouldn't ever have any standing in a DMCA case. But the courts allow them to prevent the interoperability anyway, because these third parties argue that they are somehow harmed.
What that means, is that your interoperability exemption is worthless, because regardless of whether or not you're allowed to do that, Intel can claim that by circumventing, you are costing them HDCP license fees (as you can see, we're far off the topic of copyright; that is how fucked up DMCA is), or something like that. It's actually pretty weird and senseless, but the upshot is that the interoperability exemption effectively doesn't exist. If it did, the defendants would always win.
Just buy a cheap player sold in India for all those cheap DVDs and BluRays you buy in India. Done!
now we need to go OSS in diesel cars
You're not describing a situation where the DRM is "broken," You're still having to use a Bluray player instead of a mere Bluray drive. You're still locked into doing business with a single monopoly chokepoint. The movie publisher still controlled what electronics appliances that you bought.
BD+ still needs to get broken before Bluray disks become practical to buy. Until then, you have to either buy one of their players to watch a Bluray movie, or pirate it (in which case none of the DRM is an issue anyway). HDCP's defeat doesn't help you watch movies on your unapproved computer, at all. And unapproved players have always been way more of an issue than unapproved monitors.
I have to wonder why the key ever existed in human-accessable form in the first place. Controlled access key storage hardware devices, dating back to the venerable SafeKeyer and before, are well understood technology. In fact, Intel makes such devices. Why weren't they keeping this master key in one?
Incompetence on top of incompetence.
OK, BP's mistake was an utter disaster for the environment.
Intel's technology's failure, on the other hand, is a great thing for everyone except the movie studios... and who knows, in the long run it might even benefit them too.
So I'm not really seeing how they're the same thing. Which doesn't mean I'm unsurprised they came out and announced it.
You are not alone. This is not normal. None of this is normal.
This is absolutely great news, if this will finally enable me to buy a dongle that will remove the "protection" from HDMI signal! Here's a real life scenario that happened to me last spring:
I bought a Sony (yes, should have known better) surround sound system to my home. I already had a HD-cable box and a HD-projector. They worked great together! Only my sound was from old stereo (no surround) system. So, I wanted to have a sound system that would not only play the sound from my cable box, but computer and DVD player. I also wanted the picture to be selected with the sound, as now I had to use two remotes (projector & stereo) when changing source.
So, I got to connect my stuff. HDMI from cable box to the new stereo. HDMI from computer to stereo. Component from DVD player/game console to stereo. And single HDMI from stereo to projector. All this supported (according to the manual) by the Sony sound system (the "stereo").
Computer worked, as well as component from DVD/console. 1st downside was though that the Sony couldn't handle optical sound when video was coming through HDMI. Only stereo or HDMI. BUMMER!
But what really blew me off, was when I tried to watch TV. Instead I only got a blue screen with warning that "for my protection" the video was not working because of copyright violation!!!
I mean, am I violating a copyright by watching a show on cable? - Of course not. The stupid Sony was just incompatible with the cable box's HDMI signal! - Call to Sony just confirmed that they don't give a shit about their customers. The best solution they offered me was to use component video for from my cable box instead of HDMI. Why on earth would I convert a digital broadcast to analog just to transfer it to a digital projector? Just because Sony decided to "protect" me from copyright violations!
Well, I decided to protect myself from Sony. - Took the system back to their store and went to competitor to buy a system that worked...
So, yes. This is indeed good news if it will finally brake the "protection" from HDMI signal!
If all else fails, pull the plug and get out...
The Life is out there...
If you found a codec pack that works, that's half the battle. I just install those two immediately when building and I've never had an issue playing anything. And I agree about the music part of XBMC lacking. I found boxee and MediaPortal were much better, but we hardly use ours for music. Our stuff is mostly ripped TV shows and Movies, and use the iPhone app for remotes as well.
I don't get the part about the glass- my IR receiver is about the size of a 3.5mm jack, and the Gyration remote is RF, so there is nothing showing for that in front of the TV.
And all three are much better at picking up the metadata (actors, DVD covers, synopsis, etc.) than WMC, IMO. I'm currently helping a friend move his stuff to XBMC because of all the xml files and thumbs he has to keep for the metadata to show up in his WMC install. Maybe they've improved it for Win7, but I've found the XP and Vista ones just horrible for any large movie and TV show collection.
Because C's runtime library has a BIG TIMEKEEPING PROBLEM coming up in 2038 and again even later, with C's components and applications that may also encounter field-length-related date problems at year 10000. By the way, you're a "big fan" of C, aren't you, clone53421?