-
Welcome to rpgcodex.net, a site dedicated to discussing computer based role-playing games in a free and open fashion. We're less strict than other forums, but please refer to the rules.
"This message is awaiting moderator approval": All new users must pass through our moderation queue before they will be able to post normally. Until your account has "passed" your posts will only be visible to yourself (and moderators) until they are approved. Give us a week to get around to approving / deleting / ignoring your mundane opinion on crap before hassling us about it. Once you have passed the moderation period (think of it as a test), you will be able to post normally, just like all the other retards.
PS3 hacked. Again.
- Thread starter KalosKagathos
- Start date
SCO
Arcane
- Joined
- Feb 3, 2009
- Messages
- 16,320
Pretty badly apparently. The private keys were said to be comprised ("leaked" heheh). That means code can be signed to look as if it came from Sony. If they have some kind of mass key revocation mechanism, i think they might try to use it now. Don't connect the thing to the internet for a while.
I read a few years ago that new games would invalidate the "freed" firmware of the console sometimes. Maybe they will try that.
I read a few years ago that new games would invalidate the "freed" firmware of the console sometimes. Maybe they will try that.
AdmiralHugbunny
Educated
- Joined
- Apr 15, 2010
- Messages
- 56
Basically what happened is (like with all cryptography-based security features) that a badly engineered implementation compromised an otherwise impregnable (at the moment, anyway) mathematical model.
Like any asymmetrical crypto system, Elliptic Curve Cryptography uses several parameters and some of those parameters (m and k in this case) must be kept secret for the scheme to work. In this model, m is meant to be a random number (so that an equation containing unknown m and k can't be solved) but Sony fails to actually generate a random number and instead uses a constant number. Now, given two different "signatures", meaning signature equations, they basically have two equations with two unknowns, a system that is easily solvable.
To demonstrate: each signature is done using the same key called k (which is only known to Sony) and a number m, which is supposed to be unique for each different signature. Assuming that the equations defined by the model are the following (they aren't but for simplicity I'll use these):
signature1 = m1 + k * p
signature2 = m2 + k * n
and assuming that one knows signature1, signature2, n and p, one can't obtain k because she doesn't know m1 and m2.
But consider Sony's implementation of this:
signature1 = m + k * p
signature2 = m + k * n
sig1 - sig2 = m + k*p - (m + k*n)
sig1 - sig2 = k(p-n)
sig1 - sig2
------------ = k
(p-n)
This change enables one to find, rather easily, the value of k, which is the cryptographic key that is used to sign code and applications on the PS3, enabling the PS3 to execute them.
Note that the actual model of ECC is more complicated and more steps would be required to extract k, but the principle remains the same.
By the way, the other programming fails they presented there were pretty bad too.
Like any asymmetrical crypto system, Elliptic Curve Cryptography uses several parameters and some of those parameters (m and k in this case) must be kept secret for the scheme to work. In this model, m is meant to be a random number (so that an equation containing unknown m and k can't be solved) but Sony fails to actually generate a random number and instead uses a constant number. Now, given two different "signatures", meaning signature equations, they basically have two equations with two unknowns, a system that is easily solvable.
To demonstrate: each signature is done using the same key called k (which is only known to Sony) and a number m, which is supposed to be unique for each different signature. Assuming that the equations defined by the model are the following (they aren't but for simplicity I'll use these):
signature1 = m1 + k * p
signature2 = m2 + k * n
and assuming that one knows signature1, signature2, n and p, one can't obtain k because she doesn't know m1 and m2.
But consider Sony's implementation of this:
signature1 = m + k * p
signature2 = m + k * n
sig1 - sig2 = m + k*p - (m + k*n)
sig1 - sig2 = k(p-n)
sig1 - sig2
------------ = k
(p-n)
This change enables one to find, rather easily, the value of k, which is the cryptographic key that is used to sign code and applications on the PS3, enabling the PS3 to execute them.
Note that the actual model of ECC is more complicated and more steps would be required to extract k, but the principle remains the same.
By the way, the other programming fails they presented there were pretty bad too.
MetalCraze
Arcane
"Installation of Linux" is the new "not removed from the inventory"
laclongquan
Arcane
Linux? Hwat is that?
What with the decidedly lack of game running on Line-your-anus, I fail to see why we should into this thing.
What with the decidedly lack of game running on Line-your-anus, I fail to see why we should into this thing.
Overweight Manatee
Scholar
- Joined
- Sep 4, 2009
- Messages
- 3,520
If you have the private keys you can produce code that is signed and therefore 100% indistinguishable from Sony's signed code. Sony could in theory fix the bug that let them discover the private key and then change the private key, but doing so would turn every PS3 game into a fancy paperweight since they were signed with the original private key. So this is pretty damn huge. None of the other 'hacked' consoles have been compromised in such a way AFAIK. Their signing mechanisms have only been sidestepped and their private keys remain uncompromised.
MetalCraze said:
AdmiralHugbunny
Educated
- Joined
- Apr 15, 2010
- Messages
- 56
Overweight Manatee said:
Actually, the guys in the video said that the key they found was the key used to sign certain code sections and not the one used to sign games, so if the vulnerability doesn't apply to the code that is used to verify game signatures, this would not be an issue.
If the key used to sign games is also extractable then yeah, it's a major problem for Sony.
SCO
Arcane
- Joined
- Feb 3, 2009
- Messages
- 16,320
Are the games actually ciphered or just signed?
Because if that key allows for a custom firmware upload it would be rather easy to make a wrapper firmware that the only thing it does is to lie to the original one about what the CD signature actually is.
Dunno if it is so easy.
Because if that key allows for a custom firmware upload it would be rather easy to make a wrapper firmware that the only thing it does is to lie to the original one about what the CD signature actually is.
Dunno if it is so easy.
Overweight Manatee
Scholar
- Joined
- Sep 4, 2009
- Messages
- 3,520
AdmiralHugbunny said:
Ahh, OK. But I'm sure finding a way to do so (or bypass it) would not be hard. Sony has actually been fucked for months, you can run pirated games off your TI-89. This is more of just a public shaming of their security. Most likely these guys don't even care to do the work to beat the game verification system. They just care about getting Linux back, which is a harder problem than running pirated games.
Ermm
Erudite
So, is there any way to hack PS3 games with 100% certainty?
Does PS3 hacking needs modchip?
Does PS3 hacking needs modchip?
DraQ
Arcane
laclongquan said:
laclongquan
Arcane
Feast your eyes on the noble visage of honourable savage. THe colour of tattoo, the fashionable bone nose, the piercing eyes. I am the very vision of majesticness.
Hobo Elf
Arcane
laclongquan said:
Could be an advert for my penis.
AdmiralHugbunny
Educated
- Joined
- Apr 15, 2010
- Messages
- 56
Well, with the current private keys being public, one can basically code, sign and run custom hypervisor software (hypervisor being the supervisor of the supervisor). This HV software can control every part of the machine in a privileged state and since this is the software used to enforce the security of the system, one could write a hypervisor program that doesn't do any security checks at all, thus enabling pirated games to be loaded.
An interesting thing to note is that with the fall of the PS3's security system, it joins the other consoles of this generation in that all three have been hacked using software exploits only. By this I mean that no hardware modifications are required (admittedly I am not so sure about the latest revisions of the 360) to bring a console unit from factory state to a state where the consumer has complete control of it. Since the current approach has failed and the previous approach of using hardware modules for security has failed as well, I suspect that the next generation of consoles will see a requirement to have the console constantly hooked up to an internet connection for monitoring and encrypted, on-the-fly delivery of software will take the place of flash memory and ROMs.
An interesting thing to note is that with the fall of the PS3's security system, it joins the other consoles of this generation in that all three have been hacked using software exploits only. By this I mean that no hardware modifications are required (admittedly I am not so sure about the latest revisions of the 360) to bring a console unit from factory state to a state where the consumer has complete control of it. Since the current approach has failed and the previous approach of using hardware modules for security has failed as well, I suspect that the next generation of consoles will see a requirement to have the console constantly hooked up to an internet connection for monitoring and encrypted, on-the-fly delivery of software will take the place of flash memory and ROMs.
AdmiralHugbunny
Educated
- Joined
- Apr 15, 2010
- Messages
- 56
SCO said:
Not really. This has nothing to do with net neutrality.
AdmiralHugbunny
Educated
- Joined
- Apr 15, 2010
- Messages
- 56
Orgasm said:
I have watched the presentation, thank you.
I was answering Rasputin's question regarding whether games could now be pirated without using modchips and by modchips I assumed he meant any kind of physical hardware device that needs to be bought or made, which includes the USB dongle exploit. I neglected to quote the post I was answering.
So the answer is that while in principle this should be possible, there is still quite a lot of work to be done to achieve this.
SCO said:
Yes, they could, but even without such ISP intervention, distributing the software upon connection of a system is more than feasible, especially considering the rising connection speeds available in homes today and in the near future.
Also, net neutrality is popamole bullshit to appease the masses. If the laws were to be passed (right now it's only at the FCC level, not an actual law), ISPs would simply make more efforts to conceal their priority bias. Even the current FCC neutrality rules have exceptions for "network health" needs and other kinds of bullshit ISPs can use to put a spin on their biased policies.
TripJack
Hedonist
- Joined
- Aug 9, 2008
- Messages
- 5,132
Amusing. It will be interesting to see exactly what other devs will be able to do once the team releases their work.
Regardless, huge fuckup by some jap on the sony software team and a huge win for twiizers. Whether you think consoles are popamole or not, you have to agree these guys are good at what they do.
Regardless, huge fuckup by some jap on the sony software team and a huge win for twiizers. Whether you think consoles are popamole or not, you have to agree these guys are good at what they do.
pocahaunted
Arcane
This could, in theory, make me buy a PS3. Question is, which games are worth playing beyond the 5 minutes mark?
KalosKagathos
Learned
As an Amazon Associate, rpgcodex.net earns from qualifying purchases.