Welcome to Doom9's Forum, THE in-place to be for everyone interested in DVD conversion. Before you start posting please read the forum rules. By posting to this forum you agree to abide by the rules. |
|
|
Thread Tools | Search this Thread | Display Modes |
|
4th October 2018, 07:16 | #1 | Link |
Registered User
Join Date: Apr 2018
Posts: 21
|
Is it possible to derive AACS host certificates from the USB data stream?
I was curious if anyone had considered using a USB packet sniffer (software or hardware) to try to obtain new valid host certificates and private keys. If you look at the AACS drive authentication procedure in section 4.3 of the AACS common spec, the host sends the host certificate in plain text to the drive. Later, the host sends a data block signed with its host private key comprising a session key point (not sent by USB) and the drive nonce (sent earlier over USB).
The question is whether it is possible to derive the corresponding host private key for the host certificate given these values pulled from the USB stream. |
4th October 2018, 13:26 | #2 | Link |
Software Developer
Join Date: Jun 2005
Location: Last House on Slunk Street
Posts: 13,248
|
A certificate contains the public key, it does not contain the corresponding private key. In fact, a certificate is "public" information and does not contain any "secret" information at all.
Also, it is essential to any asymmetric cryptosystem that the private key can not be derived from the public key*. Otherwise public-key cryptography (asymmetric cryptography) would be rather pointless BTW: Creating a valid digital signature requires to have the private key, but for validation of the signature the public key suffices. You never expose your private key to the "outside world". * and here I mean: The private key can not be derived from the public key in reasonable time. It is not entirely impossible, but even the most performant "supercomputers" available today would require decades. So, it is practically impossible.
__________________
Go to https://standforukraine.com/ to find legitimate Ukrainian Charities 🇺🇦✊ Last edited by LoRd_MuldeR; 4th October 2018 at 13:36. |
5th October 2018, 04:15 | #3 | Link | |
Registered User
Join Date: Apr 2018
Posts: 21
|
Quote:
1. The plain text of a block of data encrypted with the host private key 2. Encrypted versions of the host certificate and private key from the player firmware or executable binary |
|
5th October 2018, 15:46 | #4 | Link | ||
Registered User
Join Date: Jan 2010
Posts: 74
|
Quote:
https://crypto.stackexchange.com/que...key-encryption Quote:
|
||
Thread Tools | Search this Thread |
Display Modes | |
|
|