 |
WiiLi.org
a new revolution
|
| View previous topic :: View next topic |
| Author |
Message |
cboomf
Joined: 14 Jun 2007
Posts: 3
Digg It |
 Posted: Sat Dec 29, 2007 11:06 am Post subject: |
|
|
| but if the encryption key is hardware encoded then it wouldn't be possible for ninty to update it and there for the homebrew can continue |
|
| Back to top |
|
 |
harpo
Joined: 30 Dec 2007
Posts: 1
Digg It |
| Posted: Sun Dec 30, 2007 11:49 am Post subject: |
|
|
The encryption key can't possibly be managed ONLY by hardware, because then it wouldn't be necessary to store it into the console's memory (and therefore it wouldn't have been possible to get a hold of it with a memory dump).
The good part is, nintendo can't possibly drop the leaked keys out of the console with an update, because all games encoded with this key (meaning all games already sold) would become unusable. Anyway, just as a precaution, it would be a good idea not to upgrade the wii's firmware until we know more about how the exploit works and what nintendo may be doing to prevent it from being used.
Anyway, any homebrew software created with these keys would still need a modchipped console in order to boot the cd.
Nintendo's bet would probably be in offuscating and isolating some parts of the hardware, so as to make it harder to place a modchip in newer consoles (just as they've been doing for now, just harder).
On second thought, they could patch the exploit, issue new encryption keys and make a list of the games which have been officialy released until now, and mark them as the only titles that can use the old encryption. Then use another method (p.e. md5 of a certain region of the disc, maybe regions of code) to identify the game as one of the old ones. This way, only games passing the code check would be allowed to use the currenly leaked keys.
By the way, the exploitability of the console, if the community writes proper software and turns the console into a full-blown computer, will only make the console all the more popular. Taking aside the legal consequences of their console being exploitable, which could bring trouble with nintendo's business customers, having a console which, aside from gaming, can be used for so many things would boost nintendo's sales.
They wiin, we wiin, and (almost) everyone has something to celebrate for new year. |
|
| Back to top |
|
|
Tysoe_J
Joined: 30 Dec 2007
Posts: 1
Digg It |
| Posted: Sun Dec 30, 2007 1:41 pm Post subject: |
|
|
Wii users;
here's the deal as far as I know:
In pressed Wii games, there are two values that are put together to make the on-the-fly decryption key with which the Wii can actually execute the game.
One in on the security ring of the manufactured disc, and one is stored by every Wii to decrypt data (the static key). What's happened here is they've got the "Lego Star Wars" game key simply from the disc, and they've got the FULL ("master") key used to decrypt ONLY Lego Star Wars game through dumping Wii memory (this was done by disabling some of the ATi bridge that locks out the RAM during Gamecube mode).
Now, this resulted in the "master" key for Lego Star Wars, and the "disc auth" key for it too. Reverse engineering this resulted in the generic Wii data key, thus allowing them to burn their own data under the disguise of LSW. Then, of course, a drive modchip was needed cos they can't press their own discs...
STILL, that's what's going on... Nintendo wouldn't be able to patch this with a firmware update. They'd have to change hardware keys and most DEFINITELY fix up the ATi lockout bridge too.
Treat this as speculation for now, but this is everything I've gathered from the horse's horses' mouths  |
|
| Back to top |
|
|
HolyGrail
Joined: 31 Dec 2007
Posts: 1
Digg It |
| Posted: Mon Dec 31, 2007 11:01 am Post subject: |
|
|
| Did anybody of you guys watch the lightning talk of bushing and friends @ 24c3? |
|
| Back to top |
|
|
tuxido
Site Admin
Joined: 05 Nov 2006
Posts: 150
Digg It |
| Posted: Mon Dec 31, 2007 6:28 pm Post subject: |
|
|
| Tysoe_J wrote: | Wii users;
here's the deal as far as I know:
In pressed Wii games, there are two values that are put together to make the on-the-fly decryption key with which the Wii can actually execute the game.
One in on the security ring of the manufactured disc, and one is stored by every Wii to decrypt data (the static key). What's happened here is they've got the "Lego Star Wars" game key simply from the disc, and they've got the FULL ("master") key used to decrypt ONLY Lego Star Wars game through dumping Wii memory (this was done by disabling some of the ATi bridge that locks out the RAM during Gamecube mode).
Now, this resulted in the "master" key for Lego Star Wars, and the "disc auth" key for it too. Reverse engineering this resulted in the generic Wii data key, thus allowing them to burn their own data under the disguise of LSW. Then, of course, a drive modchip was needed cos they can't press their own discs...
STILL, that's what's going on... Nintendo wouldn't be able to patch this with a firmware update. They'd have to change hardware keys and most DEFINITELY fix up the ATi lockout bridge too.
Treat this as speculation for now, but this is everything I've gathered from the horse's horses' mouths |
Sounds a lot like a public/private key combination, how long are the keys? |
|
| Back to top |
|
|
fortunzfavor
Joined: 13 Jun 2007
Posts: 95
Digg It |
| Posted: Tue Jan 01, 2008 1:41 am Post subject: |
|
|
teksheen
| Quote: | Talk about timing! No wonder you were so excited! Now that you've been able to run code in Wii mode what are your plans?
> Heh, yeah, I was surprised to see so many comments about that on the YouTube posting. I was pretty excited and pretty nervous, sure, and not entirely positive it would actually work. I had hoped to get a little more polish on the demo -- like putting in some greets, etc -- but I ran out of DVDs at the last minute and had to run across the street to get some more. [...]
> The solution we found is still not very clean -- we intend to release a good solution, but it's going to take some time to do it right. I mostly wanted to show a proof of concept, that it could be done, and hopefully give people some ideas that they could pursue on their own.
> The immediate next goal is getting something like SDLoad working so that I can stop killing plastic trees -- after that, it'd be neat to have, say, a Linux Channel. 
Yeah, Linux would be a great addition to the Wii. You mentioned giving people ideas they could pursue on their own? Do you mean people in your circle or do you plan on releasing the information to the public?
> No, I meant the public as a whole. I talked about the address line hack that we'd done -- well, really, tmbinc is the one who finally pulled it off correctly -- in the hopes that others would take that and run with that. I'm not sure it's a super-hot idea for me to go around giving away all sorts of keys -- and besides, I'm hoping others will come up with easier / better ideas. I wanna learn, too!
So do you plan on releasing the information used to create the demo or wait until you have a more viable solution like you mentioned?
> Unfortunately, we're going to have to wait for a more viable solution. It's pretty hacky right now -- really, we barely pulled it off. There's so much to learn about this system (the Wii in general), since it's been one big black encrypted box until recently. |
| Quote: |
I'm not sure it's a super-hot idea for me to go around giving away all sorts of keys -- and besides, I'm hoping others will come up with easier / better ideas. I wanna learn, too! |
Looks like someone is going to have to be able to duplicate their work from what they've said so far.
_________________
WiiHD |
|
| Back to top |
|
|
thethirdmoose
Joined: 28 May 2007
Posts: 5
Digg It |
| Posted: Tue Jan 01, 2008 6:55 pm Post subject: |
|
|
| why didn't he use DVD-RW? |
|
| Back to top |
|
|
|
|
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
|
Powered by phpBB © 2001, 2005 phpBB Group
|
FAQ
Search
Memberlist
Usergroups
Register
Profile
Log in to check your private messages
Log in
