AACS Not So Cracked After All - Page 11

Wow,
Those guys work 10x faster than the companines that are doing the content protection. Of course, lawyers will no doubt get involved, but those guys work 1000x slower than anything on the net. I wonder where the ****** website is located? Could someone try and take it down due to DMCA problems? Surely the only purpose of the website is for using it to bypass security measures in place in the software. It must be an overseas site...

Robert

P.S. It never ceases to amaze me how fast these stories evolve.

mod

PLEASE do not post keys or links to keys on AVS

"... The [AACS] proposal was voted one of the technologies most likely to fail by IEEE Spectrum magazine's readers in the January 2005 issue ..."

http://en.wikipedia.org/wiki/AACS

Q.E.D.

Looks like the site that has the keys is located in Texas, Not a smart move by whoever owns it.

For the record, despite my earlier skeptical comments in this thread, it looks like I was wrong here.

I no longer believe it was an hoax.

This exploit appears to be true and its seriousness has yet to be determined.

I think the post of a member in this forum describing how he got the software, bought a Xbox 360 drive, decrypted one of his titles and played it shows how real this is. As to how serious it is - well it's not as universal as the DECSS crack but there is certainly a hole in how AACS was implemented.

Larry

A look at his posting history should give you your answer.

Ha ... all this while we thought HDi was for interactivity

This is exactly what I was going to say! HDi: HD-DVD's answer to BD+!

Dunno if this has been posted but so the BD fans don't feel left out I notice that today Muslix64 announced on doom9 he had also decrypted his first Blu Ray movie.

- Tom

Well, if this is limited to the movies already released, applies to both HD DVD and Blu-ray and only allows for now HDi or BDJ movies and allows only 1 at a time home copies instead of mass piracy, then its not a big deal.

Revoke the player, legit owners need a new firmware to play any new releases and the old exploited player without software patch can only play old releases.

Thats a lot of ifs though.

Hmmm! So it has happened! This thread will be much more friendly now!

According to him/her the movie Lord of War.

But, but... how can this be?
Only HD DVD has been compromised. Blu-ray has BD+!!! And the ROM mark!!


Anybody feel stupid?

rdjam ought to...
There goes his conspiracy theory.

Just wait for BD-J .... even unhacked movies won't play

It's been stated both HD-DVD and BD insiders that BD+ hasn't been used yet. So, it's not surprising that muslix64 could do the same thing to BD.

Wow! Keys for 6 BD titles published and muslix64 released BackupBluRayV001 java decrypter program. Others have used it successfully. Again it was WinDVD being the culprit by having the keys easy to grab.

AACS LA needs to get moving fast!

Of course it isn't surprising. I just found it funny how we've been told so many times that only HD DVD got compromised, and that Blu-ray is safe(r).

Even if they do at some point include BD+ (does anybody even know by now what exactly it is?), it's gonna get cracked in no time.

AACS is probably the best security mechanism there is. Whether there's BD+ or not won't really make a difference.

in Kevin Collins of Microsoft interview

http://www.thedigitalbits.com/articl...07htfchat.html


AACS requires that they have their key renewed every 90 days. In this instance, if the software player was breached, the key will have to be renewed and that would be when the player is corrected.


This is the first I heard of this requirement.

I have not following this that closely, but has this discussed?

Yeah, this has been discussed before (the early threads, last year and before), though it's seldom mentioned anymore. For hardware players, this is not the case, but long ago it was decided that AACS implementations on the PC needed to have (in)frequent updates. Presumably people could disconnect and muck with the system clock or registry settings to avoid this, but if new content comes out which blacklists their player key even this will not help.

90 days sounds wrong. I thought it was 18 months to start off with the ability to go shorter (maybe 90 days is the min?). Go back to around early to mid 2005 and you will find some discussion on the subject . The reason is that SW players don't have individual keys like HW. There is no way to differentiate between one instance of the player or the other. And computers tend to naturally be more hackable

As a provider you want the key to change, but there are consequences
1) growing revocation list (let's say there are 10 keys for SW players that would mean 10*4= 40 keys a year that would need to be added just for maintenance reasons. )
2) annoyed customers (you buy a brand new movie and come home and it won't play until you "upgrade" the player. )

Still need a lot of work for the BackupBluray.

BackupHDDVD however works fine. The movies itself are in two separate files so you have to join them to make one big file. I was able to stream this through my network using Power DVD with no stutters. Some movies with IME are still problematic playing the ripped HD DVD. Decrypted movie file size averages about 25 gb. Soon I can rip my HD DVDs to a hard drive inside my media server(s) where it can stream the file throught my HTPC(s).

But right now I will stick with hardware players. The software players for this are just mediocre.

Hi Kosty - I'm willing to revise my feelings on the matter also if he gets a proper version of Backupbluray working. So far it is a little crippled, but the appearance of more and more Bluray "keys" on the internet will accelerate other people developing the BD code.

If muslix releases a full working Bluray version tomorrow, I'll be the first in line to change my tune (although the timing of the HD version is still rather unfortunate).

Not at all. It's cheap for hackers to get into HD DVD.

The inexpensive entry to HD DVD with add-on is being touted as a key benefit. However, when it works to what you perceive as a disadvantage you suddenly want to ignore this factor?

Gary

Perhaps this will end the speculation?

I can also confirm its good. A little buggy but good.

Any bets on when the software company will announce a mandatory firmware fix and when the new HD DVD and Blu-ray titles will be released with the player blacklisted in their new masterkey list?

Hi Mark - I'm hopeful too. But as I said, the BR version is still incomplete and so is limited. It cannot use the Volume Unique Key at this point. There has been some limited success on certain titles, but it doesnt function like the HD version yet, where you are guaranteed of a full rip with a VUP code.

Rest assured I have pen in hand (well keyboard actually) for when and if this occurs...

"I take back the things I said about Muslix64. I said he was probably a Blu-ray shill, but now I see the light and know that he is a kind-hearted format-neutral hacker who has everyone's best interests in mind."