AACS Confirms HD-DVD and Blu-Ray Cracked

hddvd_bluray_hacked.jpg

AACS hack blamed on bad player implementation

A month after the first signs appeared online that AACS—the content protection scheme shared by HD DVD and Blu-ray—had been circumvented, the AACS Licensing Authority has verified the hack. According to a statement from the AACS LA, AACS has not been seriously compromised. Instead, the statement said, the attack is “limited to the compromise of specific implementations” and “indicate[s] an attack on one or more players sold by AACS licensees.”

So what exactly is AACS saying here?

‘It’s not us, it’s those PROGRAMMERS!!!’

Well yea there is that. But interestingly the article mentions that

More From the Ars Technica article:
AACS hack blamed on bad player implementation

“the AACS documentation reviewed by Ars Technica, the AACS specification does not, in fact, account for this attack vector.”

We believe the AACS LA may be able to stop this particular hack. While little is truly known about how effective the key revocation system in AACS is, in theory it should be possible for the AACS LA to identify the players responsible for the breach and prevent later pressings of discs from playing back on those players until they are updated. As such, if the hole can be patched in the players, the leak of volume keys could be limited to essentially what is already on the market. That is, until another hole is found.

Exactly! When are content providers going to realize that they have been buying snakeoil for the last twenty years (longer if you count MacroVision VCR Tapes). Every type of DRM has been consistantly cracked within months, sometimes weeks, and sometimes hours or even minutes after the so-called “Copy-Proof” system is released.

Time after time the media moguls buy into “Copy Protection” and time after time the protection is worthless by the time the product hits the street. Will they ever learn?

UPDATE: Slyck has an Interview with muslix64, Developer of BackupHDDVD

“AACS is totally busted. The only thing I can see for now to prevent the attack I have described is to put different keys on every disc! It will cost a fortune for the manufacturing, so I’m not sure they will go that way…

People say I have not broken AACS, but players. But players are part of this system! And a system is only as strong as his weakest link. Even if players become more secure, key extraction will always be possible.

I know many people of the industry try to cover up this breach, by saying I have only poked a tiny hole in AACS, but it is more serious than that. Only the future will tell.

The AACS security layer is almost the same for both HD-DVD and Blu-ray, so they are both busted for good.

The only extra security layer is for the Blu-ray format, and it’s called BD+. BD+ is not there yet, and I don’t know when it will be. May be my “exploits” will speed up the adoption of BD+, we will see…”

Read the whole interview…

Image Credit: Gizmodo Awsome graphic guys!

Previous:
Blu-Ray DRM Cracked
High Def DVD Alphabet Soup (Dual Formats) Announced
Piracy, the better choice for consumers.
HD-DVD copy protection defeated … for now

Advertisements