PS3 Root Key Found

An anonymous reader writes "The PlayStation 3 'root key' used for code signing has been found by GeoHot. This enables running homebrew without the need for psjailbreak-style USB-devices, and also provides hope for those at firmware version 3.55 that currently cannot be downgraded. The key also cannot be changed without hardware modifications. Oops."

I wonder...

[imamac]

I wonder how many job offers that kid has received.

Re:I wonder...

[EdIII]

Yeah, because GeoHot is wrong in what he is doing?

How should he have released the key to the rest of us? We all have a sacrosanct right to own our property, and I don't give two *$#% if somebody uses it for piracy. I applaud what he has done here, and in fact, it has finally made me consider actually purchasing a PS3.

If Sony does brick all the consoles, don't blame GeoHot. Blame Sony, because they are the ones that have acted in a morally repugnant fashion for years.

Re:I wonder...

The local copy of the software on the hardware that I own is absolutely mine, and I have every right to do whatever I like to it.

Re:I wonder...

[h4rr4r]

Sure it is, the one copy on the device is mine to do whatever I want with.

Just like a book, I have no right to copy it but I can do whatever I like to that copy I own.

Re:I wonder...

[NNKK]

You appear to be laboring under the assumption that the absurd ways US copyright, licensing, and contract law has been twisted apply to the rest of the world.

They do not.

Re:I wonder...

[an+unsound+mind]

GeoHot did something Sony didn't like, and therefore Sony punished you.

Hopefully this teaches you something about buying Sony products.

Re:I wonder...

[The+Moof]

You should read your EULA next time you install software. They're becoming more interesting with the legalese to actually not give you ownership to whatever it is you think you just bought. The best recent example I can think of is StarCraft 2. The EULA explicitly states the local copy isn't your property at all (even if you own a physical DVD copy) and you basically just paid to enter a usage contract with Blizzard.

I absolutely despise the idea, and I fear the day it gets challenged in court. I only fear it because the last thing any of us (as consumers) want to see is these types of EULA's become legally validated.

Re:I wonder...

[node+3]

The word "right" has both moral and legal connotations. You absolutely have the moral right. Whether you have the legal right is up for debate on a case-by-case basis.

Re:I wonder...

[Lumpy]

News flash: clicking AGREE on a EULA does not make it enforceable. I dont care what any weazel lawyer tells you.
until the government falls, and Megacorperations rise and start hiring shadow runners to enforce their EULAS, you need to not treat them as if they are anything but a bunch of bullshit that has no more value than the insane guy on the corner screaming that the end is near.

Re:I wonder...

[h4rr4r]

He did not copy it, he deduced it.

You can't copyright a simple key.

Re:I wonder...

[BatGnat]

The key is not copyrighted, and therefore can be copied.

If anything it would be classed as a trade secret.

Correct me if I am wrong but reverse engineering is allowed when it comes to trade secrets....http://en.wikipedia.org/wiki/Trade_secret#Discovering_trade_secrets

Same private key?

[VGPowerlord]

Is this the same private key that was discovered last week?

Re:Same private key?

No, this is the metldr private key. fail0verflow wasn't able to find that one as it required a metldr exploit

Re:Same private key?

[waffle+zero]

From what I understand it looks like he used the work from fail0verflow to calculate the private key. If anything he's probably the first person to publish the private signing key. The fail0verflow guys appear to be working to push out the documentation and code for others to reproduce and continue their work. I would guess they'll never actually post the keys they found on their own, just to save the hassle of being sued.

Re:Same private key?

[evel+aka+matt]

I prefer people that iron it.

Re:Same private key?

[Mitchell314]

Geohot while he does help out with certain things, likes to take credit when it was really a group effort.

I don't like people that steel credit.

What lead you to that conclusion? :P

Re:Same private key?

[EdIII]

I don't like people that steel credit

No kidding. Plastic credit is good enough for anyone...

Re:Same private key?

If only I had a nickel for every time I zinc of a bad pun...

Re:Same private key?

[socsoc]

I'll copper to occasionally taking credit for group efforts...

Re:Same private key?

[Khyber]

the metldr key is based from the exact same broken algorithm.

Uh, duh. How do you think it was found in the first place?

Re:Same private key?

[Fnord666]

OK, I zinc this has gone far enough.

Re:Same private key?

[sexconker]

No, this is the metldr private key. fail0verflow wasn't able to find that one as it required a metldr exploit

No. fail0verflow had no interest in getting that key. Why? Because they're about homebrew, which they can already do, and they're (officially, at least) against piracy, which the metldr key would simplify.

There was a question asked about this at the end of their presentation. They basically said "Yeah, we don't have that key - we don't give a shit about it. Of course you can get it using the same method we just told you about.".

Re:Same private key?

[dmomo]

I don't like people who steel credit either. Or anyone who commits pewter fraud for that matter.

Re:Same private key?

[NeverVotedBush]

Dang - didn't see this one. You get the credit, sir! Mine was almost a carbon copy but you get the gold and I get the silver...

Re:Same private key?

[CrashPoint]

When it comes to puns, less is ore.

Re:Same private key?

That one was pure gold.

Re:Same private key?

[marcansoft]

We (fail0verflow) discovered and released two things:

• An exploit in the revocation list parsing, enabling us to dump a bunch of loaders, and thus their decryption keys
• A humongous screwup by Sony, enabling us to calculate their private signing keys for all of those loaders, and thus sign anything to be loaded by those loaders

We used these techniques to obtain encryption, public, and private keys for lv2ldr, isoldr, the spp verifier, the pkg verifier, and the revocation lists themselves. We could've obtained appldr, (the loader used to load games and apps), but chose not to, since we are not interested in app-level stuff and that just helps piracy. We didn't have lv1ldr, but due to the way lv1 works, we could gain control of it early in the boot process through isoldr, so effectively we also had lv1 control.

With these keys we could decrypt firmware and sign our own firmware. And since the revocation is useless and the lame "anti-downgrade" protection is also easily bypassed, this already enables hardware-based hacks and downgrades forever. Basically, homebrew/Linux on every currently manufactured PS3, through software means now, and through hardware means (flasher/modchip) forever, regardless of what Sony tries to do with future firmwares.

The root of all of the aforementioned loaders is metldr, which remained elusive. Then Geohot announced that he had broken into metldr (with an exploit, analogous to the way we exploited lv2ldr to get its keys) and was thus able to apply our techniques one level higher in the loader chain. He has released the metldr keyset (with the private key calculated using our attack), but not the exploit method that he used.

The metldr key does break the console's security even more (especially with respect to newer, future firmwares - and thus also piracy of newer games), and also makes some things require less workarounds. Geohot clearly did a good job finding an exploit in it, but considering a) he used our key recovery attack verbatim, and b) he found his exploit right after our talk, so he was clearly inspired by something we said when we explained ours, I think we deserve a little more credit than we're getting for this latest bit of news.

There's still bootldr and lv0, which are used at the earliest point during the PS3 boot process. These remain secure, but likely mean little for the PS3 security at this stage.

Re:Same private key?

[marcansoft]

We published our exploits at the talk by explaining exactly how they works, and how anyone could use them. We said we'd release tools through the following month, and we already released two Git repositories containing most of the tools (that's 4 days after the talk). We didn't release keys due to fear of legal repercussions, but we told people exactly how to calculate them, and they did.

Geohot first released a useless signed loader to prove that he had the keys. Then he released the keys. He hasn't released information on how he got the metldr plaintext and apparently doesn't have plans to do so.

Personally, I think explaining things first, then a few days later releasing tools, is better than just dumping keys on the world and keeping how you got them a secret.

Re:Same private key?

[anethema]

Explaining can be good, but geohot is from the iPhone world. There, as soon as you released details on your exploit, Apple would patch it if possible. In one case they spun new hardware mid-cycle to patch a bootrom exploit on the 3GS.

Since geohot was able to release the keys (to the kingdom) without tipping his hand in this case, is it really bad?

Would it not be possible that Sony patches whatever exploit you guys used and detailed, added a whitelist for games under the current signature, and began using a new one, possibly nullifyng much of the work you guys have (brilliantly) done?

Is the way geohot did it (using your work again, totally with you guys there for credit) not better for the community in the long run, where now unless Sony finds the vulnerability he got in through he can keep providing these keys no matter what Sony does?

Hell Sony may even reuse hardware/firmware from the PS3 in the PS4 and geohot may again be able to get in and provide keys, or at least have a jumping off point.

Again, no knock on you guys, full disclosure is cool for nerds sake, its great to know all that stuff, but the way we do it in iPhone world is always trying to do whats better for the community/users. Not tipping your hand on the exploit used may be the way to go here.

Re:Same private key?

[fail0verflow]

> How does someone "find" a PS3 root key?

First things first: it's not a "root" key.

How you get it: you do some boring buffer overflow or integer overflow exploit (which you do have to find first of course), and then you do the computations we detailed at the 27c3 talk.

Hardly rocket science. But it was indeed a (non-essential) missing piece.

Re:Same private key?

[rastoboy29]

Dude, I think everyone understands the roll y'all played in this :-)

Next time, release everything of interest yourselves, first, and you won't have to worry about it.  Lawsuits be damned---you guys being the actual hackers, maybe you have the wherewithal to take the Right To Tinker With Shit We Own all the way up to the Supreme Court so we can all have fun again.

I've got a few bucks I would throw your way if you needed it.

Nice job, though.

More Likely...

[TheEyes]

I wonder how long until the lawyers start raining down from the sky.

Re:More Likely...

[spun]

I wonder how long until the lawyers start raining down from the sky.

That sounds... very nice. I mean, assuming they are falling a long enough distance, that is.

Re:More Likely...

[by+(1706743)]

I wonder how long until the lawyers start raining down from the sky.

That sounds... very nice. I mean, assuming they are falling a long enough distance, that is.

*mumbles something about lawyers being full of hot air, thereby reducing terminal velocity to a survivable speed*

Re:More Likely...

[Kjella]

*mumbles something about lawyers being full of hot air, thereby reducing terminal velocity to a survivable speed*

Oh, I'm sure we could arrange something.

Firmware updates

Did you guys hear about the next firmware update that bricks the console? It's fine, they offer free replacements for anyone affected by it.

Re:Firmware updates

[McNihil]

Easier and cheaper to release a PS4 with 4 times the processing power including the "security" fix ;-)

As an added bonus... PSP keys!

Mathieulh Has Found The PSP Master Keys, and now says

I can encrypt/sign anything on psp now.

Re:Peeking under the hood

Neither. Sony botched their PKI implementation and the 'random number' they were using for their seed was anything but random. In fact it was the same every time! That made it trivial to solve for the key. Oops.

This went undetected for years until they ... removed Linux.

No sympathy for Sony

[Ben4jammin]

Since they basically did a "bait and switch" with the PS3.

When I bought it, it had the OtherOS feather AND I could do all the online stuff...not now
When I bought it, it had backwards comparability for almost all PS2 games...not now

So it appears to me that in a sense the "hackers" have returned my property that was stolen from me by the "legitimate corporation"
I doubt that Sony will learn anything from this, and after our family owning a PS2 and 3, the next console I buy will be Xbox...I had no idea a company could be dysfunctional enough to make me regret not buying a MS product.

Re:No sympathy for Sony

[webheaded]

What? When did they take away already existing PS2 backwards compatibility? I don't recall seeing anything about this. My launch 60gb still does it...did they remove the one for the few PS3s that had software BC? o_O

Re:No sympathy for Sony

[greg1104]

One problem is that because the capability has been removed from all current models, if your early model breaks you could easily find yourself in a situation where it's not feasible to replace. Another is that since they dropped the feature, work on adding support for more games stopped too.

Another thing on the bait and switch pile is Sony's support for SACD. That was also available in the early models, then cut from the later ones. While it theoretically still works for people who have older units, the firmware isn't very good, and because they dropped the feature they also stopped development on improvements to that. So people who bought their PS3 expecting that to work right as a long-term capability have also been screwed.

Re:No sympathy for Sony

[bucky0]

That's a good explanation except for the fact that there's a minimum OS version required to play online. One USED to be able to run otherOS and play online, and after a certain cutoff date, you had to choose to lose one or the other. That's where (some of) the contention comes from.

Re:No sympathy for Sony

[Mysteray]

Sure, the word "steal" is overloaded. Sony's entertainment industry seems to have a great fascination with the concept of people "stealing", and in that case many disagree with that use of the word.

But what's your point? Are you arguing some point of US law?

Normal people (i.e., non-lawyers) understand that the very fabric of commerce is based on "yours", "mine", "not yours", "not mine", "buying", "selling", "vendor", and "customer", etc.

There's not a lot of subtlety in these terms, because normal people are able to conduct their commerce without concepts like "stealing", "swindling", "crooked dealing", "cheating", or "screwing over your customer" even coming into question 99.9% of the time.

"Bait-and-switch" doesn't fit, neither does "planned obsolescence". Actually, Sony is breaking new ground here. I don't think normal people ever needed to invent a term for a vendor selling something and then intentionally breaking it by remote control years later.

So maybe you think it's significant that Sony presented some EULA on the TV and made the user press the green button before they could play the game they just bought.

But normal people don't. They see it for exactly what it is.

Nothing particularly subtle or complicated about it at all.

Re:No sympathy for Sony

[Dhalka226]

The fact that you can separate the two actions--requiring updates to access the Internet and play new media (and indeed, also to continue using applications that have not been updated themselves such as the Netflix App) and "agreeing" to the upgrade--makes me seriously question your logic. It is a tactic a half step removed from "that's a nice car, it would be a shame if anything happened to it." In fact, it may be worse. At least if I pay the nice man in the trenchcoat his protection money he leaves my car alone. Sony promises to break your PS3. The only choice they give you is whether you want to lose features you've already paid for or lose the ability to play new games or utilize any features of your old games that happen to use the Internet, such as multiplayer or, as in my case, a baseball game that provides roster updates throughout the year.

It's called coercion, and it is grounds to nullify even the most strenuously negotiated contracts much less a click-through EULA that doesn't even specify how they're fucking you, just that they might. They are going to take something from you--your ability to play new games and fully utilize your old purchases--for absolutely no technical reason other than people who probably aren't you are using their machines in a way that Sony disapproves of (homebrew, cheap computing cluster, etc), unless you "agree" to let them take out features you've already paid for. It's nothing but a bargaining chip to force you to do as they tell you to do.

Frankly even that is too generous; bargaining chip implies there is negotiation and intelligent thought before determining which is the best course of action. Turning down these updates and effectively bricking your PS3 from that point in time forward is no more a choice than not paying the man in the trenchcoat. Do you really think it's any consolation to people who got rid of their old PS2s because they have this lovely new PS3 with backward compatibility that they weren't fucked in the ass until they "agreed" to it? Oh but don't worry dear consumer, we'll slowly start to release them as downloads for $9.99 a pop! Everybody wins!

The PS3 was the most locked-down piece of consumer hardware in the history of computing. Do you truly believe this update requirement was done as anything other than a way to force you to do what they want and patch any holes that might arise--the exact behavior we have seen from them? No, it's not about an unspoken agreement to produce content; if they stopped making PS3 games tomorrow I would be upset, but I wouldn't have been fucked. They are actively breaking my hardware, for all intents and purposes, unless I let them have their way. At the bottom of every game I buy--on the disc AND the packaging--is a little "PS3" logo. The idea that one disc might work and another might not in my PS3 based on whether I've let them screw me yet is ludicrous, and so is claiming that it is somehow a choice.

It goes well beyond shady. The fact that it hasn't been absolutely clobbered in civil suits yet is stunning. The idea that any court in the world would see it as anything less than illegal coercion boggles the mind.

And not that it should matter, but lest you think my outrage is personally motivated: I did buy my machine with the expectation of using OtherOS, but after a while I realized I simply wasn't going to go through the hassle and the update didn't affect me on a personal level. Likewise, I paid $600 at PS3 launch so my PS3 has hardware backward-compatibility and I am not personally affected by their removal of the software backward-compatibility in later updates. That doesn't make either of those decisions any less of an outrage.

Re:No sympathy for Sony

[jx100]

Correct on all points. I have a copy of Gran Turismo 5 Prologue which is now completely unplayable. I (stupidly) bought the game online and downloaded it. The game requires the user to sign on before playing, which is impossible with un-updated firmware.

Re:No sympathy for Sony

[Mysteray]

As I have heard it, "bait-and-switch" has meant to advertise one thing and then when you go to buy it, you're told that that thing isn't available but you could buy something else that's supposedly a great deal. The key factor here is that all of that takes place before any sale has even occurred.

Actually buying something and not getting what you paid for is a much more general concept.

But "bait-and-switch" is a legal term with a reasonably precise definition. Look it up. I don't think it really applies here.

Re:No sympathy for Sony

[mug+funky]

how about "fitness for purpose"?

you can't sell a machine that does everything to people who want a single machine that does everything and then slowly remove features (under threat of several other features being removed if you don't agree to remove said features).

just because something is "by computer", or "online", or "in space" does not change what has happened.

******WARNING - CAR ANALOGY*******

if you sent your car in for a scheduled service (as required to keep warranty) and when you got it back the stereo was gone, you'd absolutely have legal recourse.

Dear Sony....

[Lumpy]

Still think revoking the "Other OS" function was a good idea?

Re:Dear Sony....

[afidel]

The security stood up for 40 months after launch before OtherOS was remove and was cracked in 8 months after OtherOS was removed, you can reach whatever conclusion you want but I would say removing OtherOS significantly decreased the overall security of the system by causing those with significantly more skills to have a reason to attack the core security to get OtherOS functionality back.

Re:Dear Sony....

[PhunkySchtuff]

From memory, what happened is that with the OtherOS, Geohot was able to outline a proof of concept to run arbitrary code on the PS3.
He didn't release much, and nothing he released would have directly facilitated piracy - there were no keys exposed for instance.

Sony, in a knee-jerk reaction, promptly issued a software update that removed OtherOS support altogether - even though Geohot's work was just a proof of concept.

This is when the real work then started to get back what was once there - and in the process through discovering these keys, this has now opened the doors to piracy on the system.

If Sony had have kept OtherOS in there and instead done something like fixed the flaw in the hypervisor that allowed Geohot's exploit to work, or just ignored it and moved on, it's arguable that no one would have bothered to put in the effort they have recently to discover the crypto keys.

Re:private key on the machine?

[Zerth]

Despite all the people claiming this is a dupe, it isn't. This is getting the PSP private key from inside the PS3.

They put the PSP private key on the PS3, presumably so you could buy games for your PSP through the PS3 and have the PS3 do all the heavy crypto work instead of encrypting it on the store end.

Presumably, they figured "hey, the PS3 is unhackable, it is OK to embed the super secret key to PSP software in it". But then the PS3 got hacked.

Re:PS2?

[tuffy]

No. PS2 backwards compatibility required additional chips that aren't in the newer PS3s.

Laywers raining down from the sky

[wowbagger]

"Laywers raining down from the sky"

<voice actor="Lloyd Bridges">Looks like I picked the wrong week to give up skeet shooting....</voice>

Re:Peeking under the hood

The random number could still be random. That's the thing with randomness... you can never tell. http://search.dilbert.com/comic/Random%20Nine

Re:PS2?

[tuffy]

It wasn't full software emulation. As I recall, the original PS3s had both a PS2 CPU and PS2 video chip. A later revision performed CPU emulation in software but kept the video chip. Finally, Sony removed both chips and all backwards compatibility entirely.

Re:PS2?

[jonabbey]

The second generation PS3s had the PS2 graphics chip in them, but took out the Emotion Engine CPU which was run in emulation.

Later PS3s have neither the PS2 graphics chip nor the Emotion Engine CPU, and are not able to run PS2 games in emulation at all, regardless of what the firmware says.

Re:Don't dare give us Linux and try to take it awa

[VGPowerlord]

Let the corporate world beware, don't tread on Linux. Big mistake to allow it and then take it away.

I think they only allowed it in the first place to try to get tax breaks in the European Union. So, after the EU decided that it wasn't really a personal computer, Sony pulled it from their newer models (the PS3 Slim never had Other OS).

However, it was tampering around with the Hypervisor that caused Sony to remove it from older models in a firmware update.

Re:private key on the machine?

[nedlohs]

http://www.youtube.com/watch?feature=player_detailpage&v=hcbaeKA2moE#t=2147s

Jump to 37:20 for the money shot.

Re:GeoHot did NOT find the root signing key.

On his website he credits those respontible. http://geohot.com/ Don't blame the other middle men. Geohot gives credit where credit is due.

Missing key

Since the lame submission doesn't bother to link to the /very/ source that the article is about, I'll paste it here.

erk: C0 CE FE 84 C2 27 F7 5B D0 7A 7E B8 46 50 9F 93 B2 38 E7 70 DA CB 9F F4 A3 88 F8 12 48 2B E2 1B
riv: 47 EE 74 54 E4 77 4C C9 B8 96 0C 7B 59 F4 C1 4D
pub: C2 D4 AA F3 19 35 50 19 AF 99 D4 4E 2B 58 CA 29 25 2C 89 12 3D 11 D6 21 8F 40 B1 38 CA B2 9B 71 01 F3 AE B7 2A 97 50 19
    R: 80 6E 07 8F A1 52 97 90 CE 1A AE 02 BA DD 6F AA A6 AF 74 17
    n: E1 3A 7E BC 3A CC EB 1C B5 6C C8 60 FC AB DB 6A 04 8C 55 E1
    K: BA 90 55 91 68 61 B9 77 ED CB ED 92 00 50 92 F6 6C 7A 3D 8D
  Da: C5 B2 BF A1 A4 13 DD 16 F2 6D 31 C0 F2 ED 47 20 DC FB 06 70

~geohot

props to fail0verflow for the asymmetric half
no donate link, just use this info wisely
i do not condone piracy

if you want your next console to be secure, get in touch with me. any of you 3.
it'd be fun to be on the other side. ...and this is a real self, hello world
although it's not NPDRM, so it won't run off the hard drive
shouts to the guys who did PSL1GHT
without you, I couldn't release this

Hey

[SnarfQuest]

Hey, that's the same combination that I have on my luggage!

Exactly

[Weaselmancer]

From the geohot site:

props to fail0verflow for the asymmetric half

Geohot isn't taking credit for anyone's work here.

Re:Exactly

[marcansoft]

For the record, that wasn't there initially. We had to complain to him to get him to add that.

Re:Don't dare give us Linux and try to take it awa

[h4rr4r]

No, it was their choice to do that. In no way did someone messing with the hypervisor cause the removal of the feature. To say that is like saying because my dinner was cold I had to beat my wife.

Re:no, it's still there and it still works

[greg1104]

To quote someone who said one correct thing today, "you really should consider making posts based upon facts". Read What difference does the firmware version make for CD and SA-CD? for an intro to the firmware issues I was speaking of. I know people who purchased the PS3 when firmware V2.00 added optical output for the format, only to find that capability taken away in the next revision. Since firmware upgrades are not optional if you want to stay on PSN, that's a clear bait and switch move. And if you read through the whole FAQ you can see some of the other limitations that come from Sony giving up on development here before the feature ever really worked perfectly.

I purchased about 20 new SACDs in 2010, from companies like Mobile Fidelity and via the SHM-SACD remasters. That gives me about 80 of them total. Since some of these are the highest quality recordings available, they get an inordinate amount of playtime here relative to the rest of my music collection.

See activity on SA-CD.net to see that many people are still actively using the format, and how many titles are available. Yes, there are probably only a few hundred people in the world impacted by Sony's SACD on PS3 decisions. That doesn't mean those people were not misled about Sony's commitment to supporting the format well in the PS3. I never claimed there were a "mountain" of such people, merely that the mechanics of how they were treated is similar to the situation with both backward compatibility and the Other OS features. This is a regularly recurring behavior from Sony.

Re:The ridiculous problem is...

[Cornelius+the+Great]

In a utopian future, people would pay the actual cost of manufacturing the console - plus a reasonable profit margin. Anyone could write games - and the cost of them would be reduced because they wouldn't have to pay the "Sony Tax" on each one. For people who'll own very few games over the life of the console, this is not so attractive - but for people who buy more than the average number of games, it's a huge win. But at least we're honest about it.

I already live in that future. I have a console hooked to my TV that runs code that doesn't have to be signed by Sony, Microsoft, Nintendo, et al. I can also run multiple OSes on it without having to jailbreak it. And I have hundreds* of legally-purchased games to play on it that probably cost me less than what 20 new PS3/360 games would (at $60).

It's called an HTPC. It pretty much does everything a PS3/360 does better (including blu-ray playback). Not to mention backwards-compatibility with at least a dozen of older consoles via emulators. I still have my PS3, but primarily for GT5 and not much else.

*My Steam account alone has 300+ titles. Mostly bought through holiday sale packs at a huge discount. I've probably played less than half so far, but I'm still discovering games that I bought more than a year ago.

Re:private key on the machine?

[mu22le]

They put the PSP private key on the PS3, presumably so you could buy games for your PSP through the PS3 and have the PS3 do all the heavy crypto work instead of encrypting it on the store end.

they did not put any private key anywhere outside the Sony headquarters. They just did something stupid with the encryption algorithm (always use the same seed) so that if you have several objects encrypted with the same key you can reconstruct the original key.

I'm sick of these sorts of comments

[definate]

I'm sick of these sorts of comments. This is Slashdot people, news for nerds. Don't make these kinds of comments!

We will not know whether or not lawyers are full of hot air enough to reduce terminal velocity to a survivable speed, until we have taken a significantly large random sample, and dropped them from planes.

I suggest we take some aspiring lawyers, and use them as our control, as I couldn't bear the thought of accidentally killing someone who isn't a lawyer.

Scientific rigour, people. Use it!

Re:Not 100% correct -- key can be changed and patc

[daid303]

Did you view the 27C3 talk about the PS3? The first keys ARE in hardware, fixed. It's the first keys used to check anything, and they are set in stone so no hacker can touch them, but also no update can touch them. Also changing them would break everything out there. You might be able to get around those with huge whitelists. But that's not practical in the end at all.

Re:GeoHot did NOT find the root signing key.

[Anubis+IV]

His website was changed. Only after he was asked, as was pointed out in other comments here by folks from fail0verflow, did he give credit where it was due.

Re:The ridiculous problem is...

[L4t3r4lu5]

Steam is a rental, not a purchase. If Valve folded tomorrow and Steam went to liquidators, their "We promise to release DRM on the games" statement is worth less than the electrons fired along the wire to your monitor allowing you to read it.

Don't get me wrong, I love Steam and like you made many, many purchases over the holiday period. I'm under no illusion, however, that I am absolutely guaranteed ownership of those games if Valve turns off the servers.