Full water is a ways off since it requires a large area to be simulated (well, you can simulate puddles, but not anything you can swim through). However real smoke animates are on their way since you can easily confine smoke to a reasonably small area. Nvidia's smokebox demo was created to show off the 8800's processing power with realistic smoke rendering, and the results of that demo are already being integrated into games. Movies more information are on the creator's website: http://graphics.cs.uiuc.edu/svn/kcrane/web/project _fluid.html http://www.gametrailers.com/player.php?id=15381&ty pe=mov&pl=game
I can't find it right now, but somewhere in Microsoft's Windows Genuine Crap stuff they have a tool that'll let you use any windows serial with any version of windows. I used it to upgrade my desktop with a Volume License Key install (and a pirate key) to an OEM key from my laptop (laptop is linux only).
No idea if it's kosher with the licensing, but you could just use a pirated key on install and then use the tool to force the original serial back onto the machine.
A quickly glanced at the java sources. They are crap. No use of NIO, using Hashtable instead of HashMap and all sorts of strange quirks. I predict, a proper version will be *much* faster in decrypting the content. Please, someone with time on their hands: Improve this code
Why would those things matter at all? 99% of your time will be spent in the java-provided AES decription routines. Optimizing a single hash lookup will make about 0 difference.
Lookup premature optimization is and learn from others mistakes.
Who said the source was 320p? The source for most movies is a 35mm film print. The current digital cinema spec calls for resolutions that are essentially 1080p and 2160p.
If you look through the spec there are actually 2 revocation lists: player and content. Player revocation is so they can blacklist this version of PowerDVD so that it can't be to crack any future movies. Content revocation is so they can blacklist all the current movies so they can't be used in a known plaintext attack against future version of PowerDVD.
That is assuming anything ever actually gets blacklisted (hello class action lawyers).
program's key (it would be in memory a short time probably if well implemented, but ultimately probably gettable, if the program can read it's own key, anyone can).
True, but they can make it extremely difficult to the point of absurdity. Only ever store parts of the key in memory. Load those parts from memory into registers and generate the key programatically entirely within a register. Once you're done with the key (a few 100 instructions) blow away that register.
In order to aquire the key you'd have to control the scheduler from within the kernel, schedule a context switch to occure exactly within the vulnerable window, and figure out which register actually contains the value you want. Certainly possible, but once you've gotten to that level of detail you've already reverse engineered the entire player so you can just calculate out the key ourself.
Just a clarification because BoingBoing is confused. The zip file from doom9 does NOT contain any keys. All it contains is lines like:
CE6339246F34087AB355681DEB656D23DCD5BD86=Full Metal Jacket | 1-00000000000000000000000000000000
That's the sha1 hash of the file F:\aacs\VTKF000.AACS, a human readable name, and where the title keys should be. Notice the title key is all 0's, which is obviously wrong.
Also the fact that BoingBoing ran the program and it slightly changed the file is meaningless. Trying to decode a file with the key "0" will obviously not do what you want.
As best as I've been able to gather from what I've read today, the very clever fellow just implemented that publicly available decryption routine, and also discovered an (as of yet unreleased) method for obtaining decryption keys. It seems very likely from everything I've read that he is pulling the keys from the PowerDVD program - perhaps they're left unencrypted similar to the original DeCSS obtained a key from the Xing player?
Exactly. I've read the source code he released and it's less than 500 lines of Java. All it does is open each file on an HD-DVD and call the built-in Java AES decryption functions on each "pack" of HD data. There's a slight bit of handling for the pack format and all, but it's straight from the AACS spec.
Now the interesting thing I found from the "pre-recorded video book" spec were these two quotes (page 18):
A licensed product shall treat its Device Keys as highly confidential, as defined in the license agreement.
and
Except where otherwise provided for in these specifications, the values used to enable playback of AACS content (e.g. Title Keys and Volume ID) shall be discarded upon removal of the instance of media from which they were retrieved. Any derived or intermediate cryptographic values shall also be discarded.
So it seems that PowerDVD (or whatever player was used) was fully within the spec to no protect the Title Keys that are assumed to have be swipped by this prog.
That picture is awesome. Reminds me of Elite II. I just hope they didn't forget to buy atmospheric shielding.
I was thinking the same thing. If you're claiming you're going to revolutionize the industry, at least have a product mockup that looks like it's from this century. As much as we all hate marketing, it makes a huge difference.
Microsoft has learned the lesson. They own all of the IP in the Xbox360. IBM and ATI created the chips for them and then sold them the *design* - Microsoft entirely owns the resulting design. They send them out to be fabbed where they want, they can do anything they want with it. This includes at a next generation being able to use the previous chips, just like the EE+GS (PS2 chips) in the PS3
Notice this is completely different from the original Xbox where Intel and Nvidia created the chips for them and then sold them the *chips*. There was a lawsuit because Nvidia was able to shrink the original design to the point that it cost them next to nothing to manufacture anymore, but Microsoft was stuck paying the same price because of contracts. Intel and Nvidia owning all the internals for the original Xbox is backwards compatability on the 360 is so much harder than on the PS3.
If you look at the pictures there are 4 chips. Cell (the main CPU), RSX (the GPU), EE/GS (the PS2), and an unmarked I/O chip.
They plan on doing software emulation at some point in the future, and when they do they'll drop the PS2 chip and RAMs from the board. Untill then there's a full hardware PS2 in every PS3.
Umm, of course. The point of G80 and R600 (ATI's next) are that they're the DX10 generation chips. However how well it does DX10 is somewhat of a pointless question. As you point out Vista won't be out for "a few months", and no games using DX10 will be out untill a bit after that. By the time that DX10 performance actually matters an incremental spin of the 8800 (psychic, I'm guessing it'll be called the 8850) will be out.
I'm sorry, but does your post have a point? You ramble between Nvidia, ATI, and AMD randomly.
Also check your basic facts. It's not dual core. What on earth is a dual 384-bit bus? 75nm production doesn't exist except for one DRAM (90, 80, 60, and 45 are the current and future logic steps).
I may not like some (a lot) of PayPall's policies, and I might wish paypall to go out of business. That said why do the 20-odd hackers that were in the building at the time deserve to be bombed?
Nitpick, the probability is: 1 * 19/399 ~= 1/20. The simple explenation is you pick any song, and then there are 19 songs from the same CD out of the remaining 399 songs.
Rahul Sood (the president of Voodoo PC) has been keeping a blog for quite a while, and it's an extremely interesting read. Anyway, he announced the merger on his blog with a long writeup: [URL]http://voodoopc.blogspot.com/2006/09/project- vampire-is-about-to-fly_28.html[/URL}
It's not often you have such a long, frank explenation from a president about the future of their company. Very cool.
It's not really exploitable. There are a huge number of CS servers. In order to statistically affect anything you'd either have to a) have your server be churning out orders of magnitude more purchases than other servers or b) run a huge number of unique servers. If valve does any sort of basic spam-blocking A is completely out of the question and B would have to be from lots of different IPs with realistic but slightly skewed purchasing rations. So unless someone really feels like setting up a zombie network of fake CS servers, I don't see there being much of a problem.
Well, the first link has absolutely nothing to do with ATMs. The second two are along the lines of what has previously been reported. However this latest breach would be as if someone could walk up, use a $5 key to open the ATM, and walk out with all the money in the system. ATMs, even diebold's, are at least built with descent physical security, unlike these voting machines.
The largest group I've seen is "Students against Facebook News Feed (Official Petition to Facebook)." It had 30,000 members 2 hours ago. It's now almost 70,000. Fairly clear that a huge portion of facebook thinks this is a terrible idea.
Oh, and the creator of this is a CMU grad, and I happen to have a mutual friend with her. She's actually logged into her AIM SN, but I don't feel like messaging her.
Slashdot Mirror
Full water is a ways off since it requires a large area to be simulated (well, you can simulate puddles, but not anything you can swim through). However real smoke animates are on their way since you can easily confine smoke to a reasonably small area. Nvidia's smokebox demo was created to show off the 8800's processing power with realistic smoke rendering, and the results of that demo are already being integrated into games. Movies more information are on the creator's website:t _fluid.htmly pe=mov&pl=game
http://graphics.cs.uiuc.edu/svn/kcrane/web/projec
http://www.gametrailers.com/player.php?id=15381&t
http://hardware.slashdot.org/article.pl?sid=07/01/ 24/2320248
I can't find it right now, but somewhere in Microsoft's Windows Genuine Crap stuff they have a tool that'll let you use any windows serial with any version of windows. I used it to upgrade my desktop with a Volume License Key install (and a pirate key) to an OEM key from my laptop (laptop is linux only).
No idea if it's kosher with the licensing, but you could just use a pirated key on install and then use the tool to force the original serial back onto the machine.
Why would those things matter at all? 99% of your time will be spent in the java-provided AES decription routines. Optimizing a single hash lookup will make about 0 difference.
Lookup premature optimization is and learn from others mistakes.
Who said the source was 320p? The source for most movies is a 35mm film print. The current digital cinema spec calls for resolutions that are essentially 1080p and 2160p.
If you look through the spec there are actually 2 revocation lists: player and content. Player revocation is so they can blacklist this version of PowerDVD so that it can't be to crack any future movies. Content revocation is so they can blacklist all the current movies so they can't be used in a known plaintext attack against future version of PowerDVD.
That is assuming anything ever actually gets blacklisted (hello class action lawyers).
True, but they can make it extremely difficult to the point of absurdity. Only ever store parts of the key in memory. Load those parts from memory into registers and generate the key programatically entirely within a register. Once you're done with the key (a few 100 instructions) blow away that register.
In order to aquire the key you'd have to control the scheduler from within the kernel, schedule a context switch to occure exactly within the vulnerable window, and figure out which register actually contains the value you want. Certainly possible, but once you've gotten to that level of detail you've already reverse engineered the entire player so you can just calculate out the key ourself.
Also the fact that BoingBoing ran the program and it slightly changed the file is meaningless. Trying to decode a file with the key "0" will obviously not do what you want.
Exactly. I've read the source code he released and it's less than 500 lines of Java. All it does is open each file on an HD-DVD and call the built-in Java AES decryption functions on each "pack" of HD data. There's a slight bit of handling for the pack format and all, but it's straight from the AACS spec.
Now the interesting thing I found from the "pre-recorded video book" spec were these two quotes (page 18):
and
So it seems that PowerDVD (or whatever player was used) was fully within the spec to no protect the Title Keys that are assumed to have be swipped by this prog.
I was thinking the same thing. If you're claiming you're going to revolutionize the industry, at least have a product mockup that looks like it's from this century. As much as we all hate marketing, it makes a huge difference.
The price of gasoline and the price of oil it comes from are related, but not directly. A huge percentage of what you pay at the pump goes to taxes.
A better comparison would be to crude prices (as some posters above have done), and it's still competative.
Ok, then go get the Firefox Extension that does it for you.
What state has a wide yellow license plate with no graphics? And what's the circular road sign with a red border?
Microsoft has learned the lesson. They own all of the IP in the Xbox360. IBM and ATI created the chips for them and then sold them the *design* - Microsoft entirely owns the resulting design. They send them out to be fabbed where they want, they can do anything they want with it. This includes at a next generation being able to use the previous chips, just like the EE+GS (PS2 chips) in the PS3
Notice this is completely different from the original Xbox where Intel and Nvidia created the chips for them and then sold them the *chips*. There was a lawsuit because Nvidia was able to shrink the original design to the point that it cost them next to nothing to manufacture anymore, but Microsoft was stuck paying the same price because of contracts. Intel and Nvidia owning all the internals for the original Xbox is backwards compatability on the 360 is so much harder than on the PS3.
Wrong.
If you look at the pictures there are 4 chips. Cell (the main CPU), RSX (the GPU), EE/GS (the PS2), and an unmarked I/O chip.
They plan on doing software emulation at some point in the future, and when they do they'll drop the PS2 chip and RAMs from the board. Untill then there's a full hardware PS2 in every PS3.
You have made 2 posts with this account.
Both posts have the title "More In-depth Analysis Here At HotHardware.com".
Fuck off, spammer.
Umm, of course. The point of G80 and R600 (ATI's next) are that they're the DX10 generation chips. However how well it does DX10 is somewhat of a pointless question. As you point out Vista won't be out for "a few months", and no games using DX10 will be out untill a bit after that. By the time that DX10 performance actually matters an incremental spin of the 8800 (psychic, I'm guessing it'll be called the 8850) will be out.
I'm sorry, but does your post have a point? You ramble between Nvidia, ATI, and AMD randomly.
Also check your basic facts. It's not dual core. What on earth is a dual 384-bit bus? 75nm production doesn't exist except for one DRAM (90, 80, 60, and 45 are the current and future logic steps).
I may not like some (a lot) of PayPall's policies, and I might wish paypall to go out of business. That said why do the 20-odd hackers that were in the building at the time deserve to be bombed?
Nitpick, the probability is: 1 * 19/399 ~= 1/20. The simple explenation is you pick any song, and then there are 19 songs from the same CD out of the remaining 399 songs.
Rahul Sood (the president of Voodoo PC) has been keeping a blog for quite a while, and it's an extremely interesting read. Anyway, he announced the merger on his blog with a long writeup:- vampire-is-about-to-fly_28.html[/URL}
[URL]http://voodoopc.blogspot.com/2006/09/project
It's not often you have such a long, frank explenation from a president about the future of their company. Very cool.
It's not really exploitable. There are a huge number of CS servers. In order to statistically affect anything you'd either have to a) have your server be churning out orders of magnitude more purchases than other servers or b) run a huge number of unique servers. If valve does any sort of basic spam-blocking A is completely out of the question and B would have to be from lots of different IPs with realistic but slightly skewed purchasing rations. So unless someone really feels like setting up a zombie network of fake CS servers, I don't see there being much of a problem.
Well, the first link has absolutely nothing to do with ATMs. The second two are along the lines of what has previously been reported. However this latest breach would be as if someone could walk up, use a $5 key to open the ATM, and walk out with all the money in the system. ATMs, even diebold's, are at least built with descent physical security, unlike these voting machines.
The largest group I've seen is "Students against Facebook News Feed (Official Petition to Facebook)." It had 30,000 members 2 hours ago. It's now almost 70,000. Fairly clear that a huge portion of facebook thinks this is a terrible idea.
Oh, and the creator of this is a CMU grad, and I happen to have a mutual friend with her. She's actually logged into her AIM SN, but I don't feel like messaging her.
Never heard of this before, but seems resonable. Any sources?