HDCP Master Key Is Legitimate; Blu-ray Is Cracked

adeelarshad82 writes "Intel has confirmed that the leaked HDCP master key protecting millions of Blu-ray discs and devices that was posted to the Web this week is legitimate. The disclosure means, in effect, that all Blu-ray discs can now be unlocked and copied. HDCP (High Definition Content Protection), which was created by Intel and is administered by Digital Content Protection LLP, is the content encryption scheme that protects data, typically movies, as they pass across a DVI or an HDMI cable. According to an Intel official, the most likely scenario for a hacker would be to create a computer chip with the master key embedded it, that could be used to decode Blu-ray discs."

G'huh?

[DeeKayWon]

What does this specifically have to do with Blu-ray? The discs themselves use AACS for encryption. The link from the player to the display is what uses HDCP.

TFS is confusing

[adolf]

TFS talks about using the HDCP master key to decode Blu-Ray.

But, really, HDCP has nothing to do with Blu-Ray in particular -- it's protection for a transmission format, not a storage format. The availability of this key means nothing with regards to Blu-Ray.

So, I've been wondering for the past few days: What, exactly, can this HDCP master key do for folks? Does it automagically allow us to decode HDCP-protected content on a DVI or HDMI cable? Or does it allow us to merely sign our own HDCP devices given an appropriate amount of hackery?

You mean this one?

[sethstorm]

Unless /. mangles it, it should be the exact same.

HDCP MASTER KEY (MIRROR THIS TEXT!)

This is a forty times forty element matrix of fifty-six bit
hexadecimal numbers.

To generate a source key, take a forty-bit number that (in
binary) consists of twenty ones and twenty zeroes; this is
the source KSV. Add together those twenty rows of the matrix
that correspond to the ones in the KSV (with the lowest bit
in the KSV corresponding to the first row), taking all elements
modulo two to the power of fifty-six; this is the source
private key.

To generate a sink key, do the same, but with the transposed
matrix.

6692d179032205 b4116a96425a7f ecc2ef51af1740 959d3b6d07bce4 fa9f2af29814d9
82592e77a204a8 146a6970e3c4a1 f43a81dc36eff7 568b44f60c79f5 bb606d7fe87dd6
1b91b9b73c68f9 f31c6aeef81de6 9a9cc14469a037 a480bc978970a6 997f729d0a1a39
b3b9accda43860 f9d45a5bf64a1d 180a1013ba5023 42b73df2d33112 851f2c4d21b05e
2901308bbd685c 9fde452d3328f5 4cc518f97414a8 8fca1f7e2a0a14 dc8bdbb12e2378
672f11cedf36c5 f45a2a00da1c1d 5a3e82c124129a 084a707eadd972 cb45c81b64808d
07ebd2779e3e71 9663e2beeee6e5 25078568d83de8 28027d5c0c4e65 ec3f0fc32c7e63
1d6b501ae0f003 f5a8fcecb28092 854349337aa99e 9c669367e08bf1 d9c23474e09f70

3c901d46bada9a 40981ffcfa376f a4b686ca8fb039 63f2ce16b91863 1bade89cc52ca2
4552921af8efd2 fe8ac96a02a6f9 9248b8894b23bd 17535dbff93d56 94bdc32a095df2
cd247c6d30286e d2212f9d8ce80a dc55bdc2a6962c bcabf9b5fcbe6f c2cfc78f5fdafa
80e32223b9feab f1fa23f5b0bf0d ab6bf4b5b698ae d960315753d36f 424701e5a944ed
10f61245ebe788 f57a17fc53a314 00e22e88911d9e 76575e18c7956e c1ef4eee022e38
f5459f177591d9 08748f861098ef 287d2c63bd809e e6a28a6f5d000c 7ae5964a663c1b
0f15f7167f56c6 d6c05b2bbe8800 544a49be026410 d9f3f08602517f 74878dc02827f7
d72ef3ea24b7c8 717c7afc0b55a5 0be2a582516d08 202ded173a5428 9b71e35e45943f

9e7cd2c8789c99 1b590a91f1cffd 903dca7c36d298 52ad58ddcc1861 56dd3acba0d9c5
c76254c1be9ed1 06ecb6ae8ff373 cfcc1afcbc80a4 30eba7ac19308c d6e20ae760c986
c0d1e59db1075f 8933d5d8284b92 9280d9a3faa716 8386984f92bfd6 be56cd7c4bfa59
16593d2aa598a6 d62534326a40ee 0c1f1919936667 acbaf0eefdd395 36dbfdbf9e1439
0bd7c7e683d280 54759e16cfd9ea cac9029104bd51 436d1dca1371d3 ca2f808654cdb2
7d6923e47f97b5 70e256b741910c 7dd466ed5fff2e 26bec4a28e8cc4 5754ea7219d4eb
75270aa4d3cc8d e0ae1d1897b7f4 4fe5663e8cb342 05a80e4a1a950d 66b4eb6ed4c99e
3d7e9d469c6165 81677af04a2e15 ada4be60bc348d dfdfbbad739248 98ad5986f3ca1f

971d02ada31b46 2adab96f7b15da 9855f01b9b7b94 6cef0f65663fbf eb328e8a3c6c5d
e29f0f0b1ef2bf e4a30b29047d31 52250e7ae3a4ac fe3efc3b8c2df1 8c997d15d6078b
49da8b4611ff9f b1e061bc9be995 31fd68c4ad6dc6 fd8974f0c506dd 90421c1cd2b26c
53eec84c91ed17 5159ba3711173b 25e318ddceea6a 98a14125755955 2bb97fd341cea2
3f8404769a0a8e bce5c7a45fb5d4 9608307b43f785 2a98e5856afe75 b4dbead4815cac
d1118af62c964a 3142667a5b0d14 6c6f90933acd3d 6b14a0052e2be4 1b1811fda0f554
12300aa7f10405 1919ca0bff56ea d3e2f3aad5250c 4aeeea5101d2ec 377fc499c07057
6cb1a90cdb7b11 3c839d47a4b814 25c5ac14b5ec28 4ef18646d5b9c2 95a98cc51ebd3b

310e98028e24de 092ffc76b79f44 0740a1ca2d4737 b9f38966257c99 a75afc7454abe4
a6dd815be8ccbf ec2cac2df0c675 41f7636aa4080f 30e87b712520fd d5dfdc6d3266ac
ee28f5479f836f 0bf8ee2112173f 43ae802fa8d52d 4e0dffd36c1eac 3cbda974bb7585
fb60a4700470e3 d9f6b6083ef13d 4a5840f02d0130 6c20ef5e35e2bf dad2f85c745b5b
61c5ddc65d3fc9 7f6ec395d4ae22 2b8906fb3996e2 e4110f59eb92ac 1cb212b44128bb
545afda80a4fd1 b1ffea547eab6b fac3d9166afce8 3fe35fe17586f2 9d082667026a4c
17ffaf1cb50145 24f27b316acfff b6bb758ec4ad60 995e8726359ef7 c44952cb424035
5ec53461dbd248 40a1586f04aee7 49ea3fa4474e52 c13e8f52c51562 30a1a70162cfb8

ccbada27b91c33 33661064d05759 3388bb6315b036 0380a6b43851fb 0228dadb44ad3d
b732565bc37841 993c0d383cfaae 0bea49476758ac accc69dbfcde8b f416ab0474f022
2b7dbcc3002502 20dc4e67289e50 0068424fde9515 64806d59eb0c18 9cf08fb2abc362
8d0ee78a6cace9 b678

Re:G'huh?

[Jah-Wren Ryel]

So you record the stream from the player to the display. No big difference.

It implies a lossy decode and re-encode rather than a bit-for-bit copy.

However, 99.9% of all bluray pirating seems to be lossy re-encodes anyway - mainly for the size reduction. When done well, those re-encodes are essentially indistinguishable from the originals (It helps that x264, the pirate's encoder of choice, just happens to be the most efficient h264 implementation that is generally available - so the pirated versions have a better picture-quality-to-size ratio than then legitimate releases which are used as source material for the pirated versions).

Re:Honestly, is anyone surprised this has happened

[Sir_Lewk]

reverse engineer it, or even just brute force it

Provided sufficiently large keys (1024 bits or more in the case of RSA), brute force is infeasible. "Reverse engineering" only really applies if the details of the cryptographic primitives are not already publicly known (pretty much never the case).

Re:TFS is confusing

[Anonymous Coward]

it means that while bd discs still cannot be cracked, the digital data that is being transferred to the device can be tapped and perfect digital copies can be made.

Re:Hear that MPAA?

[Anonymous Coward]

no, that would be the master AACS key, if one exists.. HDCP is the component interconnect encryption.. from player to receiver to display..

Re:not protects

[Anonymous Coward]

If I *buy* it, that copy is mine, and I can watch it, archive it, and resell it, and if some bullshit is in the way keeping me from personally using the copy that I paid for, it's crap and needs to be eliminated.

Re:TFS is confusing

[je ne sais quoi]

What, exactly, can this HDCP master key do for folks?

It will allow me to watch my legally purchased blu-ray discs using my legally purchased blu-ray drive on my old, non-HDCP compliant monitor. I am forced to break the law just because my monitor is too old: In the past, I couldn't use a program like powerDVD to watch my blu-ray discs at full resolution because it would notice my monitor wasn't compliant. That meant obtaining an AACS key for the blu-ray disc and using a program like dumphd, anydvd or dvdfab to make a copy of the data on the disc to my hard drive which didn't had HDCP. Now, I could conceivably still have to violate the DMCA, but by faking my monitor's HDCP compliance so powerDVD or another program can watch the video.*

* I'd just like to point out that I'll still break the DRM because there is not a blu-ray reader for linux that works reliably.

Re:TFS is confusing

[earthforce_1]

Any DRM system is only as good as the weakest link in the chain. BD+ doesn't have to be broken, only one link in the chain and the whole thing falls apart. You just need a little HDCP stripper box between the legal blue ray player, and whatever you are using to copy. And there is now no physical way to invalidate the keys in the HDCP stripper box. They box could identify itself with an infinite number of working keys generated each time it is powered up. As mentioned in an earlier thread, the unencrypted raw stream can then be recompressed/encoded into any desired format. (Including BD+ and AACS free Bluray) As mentioned earlier, any good HW engineering student armed with the specs and an FGPA could make one.

The only way to stop this would be to start over with a new master key, which would brick every existing HDCP encumbered piece of hardware out there.

Re:not protects

[Anonymous Coward]

Yeah, when you BUY something, it is YOURS, you have the RIGHT to use it how you see fit. That is under US and Japanese Law, and most other countries as well. If they stop you from doing something that would would otherwise have the right do with your property... they are restricting your rights... seems simple to me.

Anyway besides that, I have this to say: ha ha ha ha ha ha hah suckers! like the key wouldn't be leaked eventually some day :P It was just a matter of time.

Dark Helmet: "So Lonestar, Maybe now you see that evil will always triumph, because good is dumb."

This is the universal hack.

[anUnhandledException]

All digital content ultimately ends up as an HDMI stream protected by HDCP.

With HDCP compromised that stream can eventually be captured. All that needs to happens is for a company to make a NON-HDCP compliant capture card which just happens to be easily flashable. Think they might end up selling a lot of those? Think some companies in asia would be willing to make that "mistake".

This goes beyond Bluray. Want to get HD quality capture of your favorite HBO show, or maybe some first -release movie rentals (movies rented while still in theaters)?

Everything ends up as an HDMI stream protected by HDMI

The claim that it would be too much bandwidth or too large is just silly.

1920 x 1080 x 24 bits per pixel x 24 fps = 145MB/sec. Fast but not beyond a RAID.
120 minutes of 1080p 24fps uncompressed is roughly a terrabyte. Large but once again not beyond current disk systems.

1) capture the stream
2) dump it to disc
3) re encode with a good multi pass encoder to any format, size, resolution, and bitrate you want.

While not 1:1 it can be virtually indistinguishable from the original.

Sure hacking the compressed copy makes duplication easier and faster but the media protection is always changing. This is the unversal hack. If it is video it can now be captured *nearly* perfectly.

Re:not protects

[Anonymous Coward]

> Not everybody who uses DeCSS is a pirate....some of us just want to watch our legally obtained DVD's from our linux laptops.

If you do indeed want to watch legally obtained DVD's on a linux laptop, you won't be using DeCSS. DeCSS is illegal software according to the US courts.

Your Linux laptop will need to have the libdvdcss library installed if you want to watch legally obtained DVD's. Even though libdvdcss is not a copy of any other software, and it was written in a perfectly legal fashion, and it has never been challenged in court, most Linux distributions which distribute CDs in the US do not include it by default. You will have to download it after installation.

Re:not protects

[Anonymous Coward]

There's no need to pay 20 or 30 thousands to fill a terabyte, even with DVDs.

Just ask your family, friends, neighbors... I bet there's more than you expect that are going to have 180+ DVDs. Even at $10 per DVD, that's only $1800, spanning 15 years if they bought one DVD per month. Most people pay three, four, five times that amount just for cable or satellite. It's not far-fetched at all.

It's even cheaper to fill a terabyte if we talk about TV shows, since you get more minutes of media for your money.

Re:Captive market.

[Darkness404]

He isn't a Libertarian, real libertarians either believe in A) Incredibly limited copyright or B) No copyright. For example, see the Ludwig Von Mises article (http://mises.org/daily/4575) because property by nature is scarce and not unlimited.

Re:not protects

[TheLink]

That's funny coz the "pirates" in my country don't need this key to copy stuff.

They just copy the entire disks as is, and any player that can play the original can play the copy.

It's like making a photocopy of a book in a language you don't understand. It doesn't matter if you can't understand it, all that matters is the end-user (player) can.

Re:Am I missing something?

[Darkness404]

Because I think it simply used leaked keys that would then be revoked, rather than this key which is permanent and can't be changed.

Comment removed

[account_deleted]

Comment removed based on user account deletion

Re:Hear that MPAA?

[bakdor]

Ah, just like CDs that last forever. Good to know.

Re:not protects

[mysidia]

Just because you call it a "fact" does not mean it is a fact.

Fact (n) a concept whose truth can be proved; "scientific hypotheses are not facts"

Therefore, I challenge you to prove that there are no more than five people alive today that legitimately want to back up a piece of blu-ray media.

If you cannot prove it, then it is not a fact at all.

Re:This is the universal hack.

[Jiro]

Used to be that the shady Chinese knockoffs were the less useful hardware, because they wouldn't go to the extra effort to make them work right. Now, it's easy to conceive a scenario in which the cheap stuff is the most functional, because they won't go to the extra effort to properly break them.

This has long since been true for DVDs just because of region coding. Cheap Chinese manufacturers think nothing of hiding a secret menu or option which lets you make your player region-free.

Re:TFS is confusing

[Khyber]

"Since HDMI can transfer up to 10.2 gigabits per second of data, I don't think these "perfect digital copies" are going to be made any time soon. 1920x1080x60 + 8 channels of uncompressed audio == lots of bandwidth"

25-50GB of space used no matter what doing a fully perfect Blu-Ray rip right from the cable.

Re:TFS is confusing

[KeithIrwin]

DHCP is used to protect the digital signal which flows over HDMI between the Blu-Ray player and the TV or other monitor. The Blu-Ray disc is encrypted with AACS and optionally BD+. Blu-Ray players decrypt the AACS and BD+ and then decompress the video and, if necessary, scale it to match the display resolution of the TV. Then that unencrypted, decompressed, scaled signal is reencrypted using DHCP and sent to the TV. The TV then decrypts it and displays it.

This is done for two purposes. The first is so that a pirate can't record the stream between the Blu-Ray player and the TV. This signal would be uncompressed, and therefore huge, but pirates could recompress it before sharing it over the internet, so it would still be valuable to them. The second is so that you can't build a TiVo like device to pretend to be the television and just record everything rather than display it. All device manufacturers have to guarantee that they won't do that before they are given the keys needed to authenticate themselves to the players and decrypt the signal. This break means that the second point is now entirely null and void. You can now build any device you want and using the provided information make it so that your device will authenticate to the Blu-Ray player as being a valid, approved device.

Because the specification allows for repeaters and splitters which have their own keys and actually do a decryption/reencryption step, it also means that the first point is pretty well null and void because you can build a device which looks like and authenticates as a repeater and then records the signal as a side effect while also displaying to the television.

Now, this crack doesn't mean that tomorrow you'll be able to buy that sort of device. There's still a lot of engineering which would be needed to make such a device practical, especially if it's going to compress things on the fly at HD-level resolutions. However, it means that there is now no information barrier to building such a device. Intel isn't worried because they don't think that pirates will be able to build chips to do this. But if they don't think that pirates can build the chips, why have the encryption to begin with?

In the long run, they'll probably wind up replacing the whole HDCP encryption with some new scheme which will be added to the HDMI standard and making players no longer accept HDCP as a valid output encryption scheme. But they'll have to do it really, really slowly, otherwise there will be a massive consumer backlash. I should note, of course, that the encryption schemes used will need to be implemented in hardware, not software, so a firmware update isn't going to cut it. So, realistically, it's most likely that they'll try to make the change if and when the next consumer video format with studio support comes out, which will likely be a decade, at least. They could try replacing all the keys for all devices as a stopgap, but that's pretty problematic and could well just lead to the same leak happening again.

Clueless about what HDCP does

[gnasher719]

It seems these guys don't know what HDCP actually does.

With the HDCP master key, one can build hardware that decrypts HDCP encrypted signals (that is the easy and well documented part) and is accepted by the HDCP encoder on the other side (that is the hard part). You still need rather sophisticated hardware. Not that easily built by your average software hacker.

That in turn allows you to record the signal coming out of your video card or Bluray player. That's about 200 MB per second. I don't have any hardware lying around that can record the output of a DVI card for two hours and neither does your average slashdot poster.

So this doesn't allow _you_ to backup your Blu ray discs. It will allow some rather sophisticated pirate organisation to pirate Blu ray discs, and they will produce Blu ray discs that again you cannot copy. So you as the end user won't gain anything from this.

Re:not protects

[RzUpAnmsCwrds]

The disk drives are also controlled. The disk drive don't let you just get the bits out - they will only give you data if you have a key, etc. I don't know the specifics but this is a *well* thought out system. They have serious control over this shit.

That's not actually true. You can absolutely get almost all of the data off of a Blu-ray disc without breaking AACS. What you can't get (without a hacked drive or an un-revoked player certificate) is the volume ID, which you need to decrypt or duplicate the disc.

Note that Blu-ray drives have basically been irrevocably broken at this point, so this is sort of moot.

Re:Summary left out one important detail

[Jugalator]

Here:
http://www.cafepress.co.uk/HDCP [cafepress.co.uk]

Based on this:
http://jedsmith.org/hdcp/ [jedsmith.org] (see the bottom for info on how it should be interpreted)

Re:not protects

[profplump]

AACS has been cracked in a way that's practical enough for non-technical users. Check out MakeMKV . It's two-click simple to rip a Blu-Ray to MKV files without losing any A/V streams or recoding. You can even stream live to HTTP if you'd like to do from-disk playback in a system that accepts web streams but doesn't yet have AACS decryption.

You can also rip complete disk images, if you prefer to keep the original stream wrappers and whatnot.

The only part that's really missing is a Blu-Ray menu playback system, which isn't surprising because there's actually a good deal of software necessary to run Blu-Ray menus.

Re:not protects

[Mikkeles]

From the preface to the 1703 (corrected edition) of 'The True-Born Englishman':

I should have been concerned at its being printed again and again by pirates, as they call them, and paragraph-men; but would that they do it justice and print it true according to the copy, they are welcome to sell it for a penny if they please. [Emphasis mine]

Note that he was much more sanguine about the piracy after three years (the poem was originally printed for sale in 1701) in that it provided a vast audience for his work who, otherwise, would not have been able to afford it. This helped lead to his becoming celebrated during his lifetime.

Re:not protects

[Lord Byron II]

The key is probably not copyrighted. US law usually restricts copyrighted material to original works of authorship. However, the key is most likely the output of some algorithm. In this case, since an algorithm "wrote" the "work", it's probably not covered. It's also highly unlikely that their bitstream is unique. But more importantly, facts are never copyrightable. For example, a phonebook may be copyrighted; you can't take the pages, copy them, and sell them legally. However, the phone numbers (the facts) are not copyrightable; you may copy all of the phone numbers into your own phonebook and sell that. In this case, the fact is the particular digits of the master key. It doesn't represent a work of authorship, but a fact generated by a computer.

Re:not protects

[brix]

Are you speaking of a moral right or a legal one? A moral right can be debated either way. However, in the United States at least, the legal right doesn't exist. That, as you probably know, was removed by the DMCA.

Comment removed

[account_deleted]

Comment removed based on user account deletion