digg

Facebook Connect Join Digg About

Latest AACS revision defeated a week before release

arstechnica.com The latest AACS revision has already been cracked a week before its official release. The AACS LA's key revocation system does not appear to be working as well as the group had hoped.

Who dugg this? Made popular May 18, 2007

Digg DudeWhat is Digg?

Digg is a place for people to discover and share content from anywhere on the web. Digg surfaces the best stuff as submitted and voted on by the community. Take the Tour to learn more.

50 Comments

show profanity settings
expand all
  • thenativeraver, on 10/11/2007, -3/+39P4?

    Bad dog. No.
  • dracostimpy, on 10/11/2007, -2/+37Oh, I'm sure they'll get it right *next* time. This is only the 54353452323rd time they've been cracked, and you know the old saying "54353452324th time's a charm!"
  • aichpvee, on 10/11/2007, -15/+45Here's the key, enjoy!

    08 E2 54 80 6A 32 P4 2C C7 85 23 B4 84 23 97 F6
  • soogy, on 10/11/2007, -1/+29I think you mean hackers 10.
  • kamiller, on 10/11/2007, -2/+28AACS 0, consumers 0, hackers 2
  • hambend, on 10/11/2007, -1/+18This is their new tactic. With so many cracked keys floating around the internet, it gets harder and harder to find the latest one.

    Well played AACS, well played.
  • xXShadowstormXx, on 10/11/2007, -1/+18lol, owned. Again.
  • resprung, on 10/11/2007, -0/+17The threads on the Doom9 forum read like a detective novel. It's been a thrill to follow this tour de force.

    In short order, they've pulled together a loose team consisting of...
    - Encryption experts (inside-out understanding of the AACS scheme)
    - Hardware reverse-engineers (USB sniffing, drive firmware analytics)
    - Friendly gofers who write C++ wrappers and executables for the conceptual code

    At several junctions, elements of AACS have been subverted by people not even in possession of a drive or the discs!

    Apparently, Slysoft also broke the new protection without possessing the new discs; beta versions of the ripper were posted on the forum, asking people who possessed the new Matrix pts. 2 and 3 to verify :-)

    To the hacker community, it's a game, an intellectual challenge, and they're - obviously - going to win every time.
  • 11arrows, on 10/11/2007, -3/+20I almost feel bad for these guys. It really seems liek they would just give up and focus their efforts on other things.
  • swavalier711, on 10/11/2007, -1/+15These people don't seem to get it. No matter how hard you work, no matter how much money you spend, no matter how innovative your security is, there is always at least one person out there with way more time on his hands than you to crack it.

    Good work, gentlemen.
  • waxoff, on 10/11/2007, -1/+13Ha, very funny. So seriously, what's the new key? Or am I gonna have to resort to plowing through 1 Billion pages on "new AACS key" in google?
  • TheCash, on 10/11/2007, -4/+15Sorry guys, but I have to say it:

    *Ahem*

    PWNED!!!
  • cosmicdisorder, on 10/11/2007, -1/+11DRM was doomed from the very start.
  • injury0314, on 10/11/2007, -0/+9I also bet it doesn't work.
  • WaterDragon, on 10/11/2007, -1/+10FTA:
    "AACS LA chairman Michael Ayers stated that the organization planned to continue clamping down on key dissemination, despite the fact that attempts to do so only encouraged further dissemination. In a monument to comedic irony, the AACS LA has elected to put out the fire by pouring on more gasoline."

    Acts like these seem to make no sense -- until you realize that they are orchestrated by the LAWYERS, who always make a profit, regardless of the outcome of the actions for their clients, the corporations.
    Then it makes perfect sense -- it's all about how to scam everyone, for a constant income, with the most shoddy of reasons....and then replace them with some new, equally ridiculous approach -- always to generate profit!

    Pigs will be pigs!
  • venom8599, on 10/11/2007, -3/+11@iNoles
    P4 also couldn't be part of the key, because hexadecimal's largest value is F (representing 15 in decimal.)
  • sajacy, on 10/11/2007, -0/+7It's not hard to understand: if you sell the encrypted media, and you sell the equipment to DECODE the encrypted media, someone will find a way to decode that encrypted media without all that expensive junk. It's called technological progress.
  • daborg, on 10/11/2007, -3/+10"I think you mean hackers 10."

    There are 10 kinds of people in the world: Those who understand binary, and those who don't.
  • consonance, on 10/11/2007, -2/+8Ironically, the film version of the AACS LA would be the Three Stooges.
  • thetechaddict, on 10/11/2007, -1/+7Seams like they would realize that their DRM is doomed
  • rebelxtnut, on 10/11/2007, -1/+6honestly, this is hilarious
  • Matri, on 10/11/2007, -1/+6In this case, -10080 minutes. Broken a week BEFORE it was officially released.
  • digmc, on 10/11/2007, -1/+5Damn, and I'm still waiting for my "09 F9 11 02 9D 74 E3 5B D8 41 56 C5 63 56 88 C0" tee-shirt

  • Jowsley, on 10/11/2007, -1/+5Surley this will be resolved with new keys, a hoard of lawyer bots, and some campaign contributions.

    Yes, that will do it! This time they put a stop it once and for all!

    Or maybe not.

    On a side note, I'd love to know how many minutes of protection $10 million worth of DRM will buy you.
  • elpeehs, on 10/11/2007, -1/+5@wasoff & everyone else
    http://digg.com/tech_news/Beat_Them_At_Their_Own_Game
  • daborg, on 10/11/2007, -1/+5"I think you mean hackers 10."

    Hackers celebrate Christmas on October 31st. (Unless they're European in which case they celebrate Christmas on October 30th.)
  • stoops, on 10/11/2007, -0/+4Yes, sadly they don't get that they are breaking the fundamental laws of cryptography and they are still spending thousands of dollars to continue to do so.
  • inactive, on 10/11/2007, -2/+5Your assuming its in hex though, it could be in another base number system that includes P, ie base >= 26 although it would be the wrong number of bits.

    I would also be suspicious of "0F-21-60-D7-55-E0-C1-B3-05-45-64-A2-80-D4-7A-83" which is linked in the other post, I have seen no indication that it is a legitimate key, it might be fake.
  • inactive, on 10/11/2007, -3/+6AACS LA 0, consumers 2
  • CeeJayDK, on 10/11/2007, -1/+4If at first you don't succeed , try and try again ..
    THEN give up ! - No use being a damn fool about it.
  • maninalift, on 10/11/2007, -0/+3It's pointless. You cannot distribute a file containing information that the user can read and make it impossible to copy. If you can't do anything else you can always automate playing and re-encoding the file, besides which they always can be cracked. The only thing that might work is the much-touted "watermarking" but even now that that effort might not last long under the eyes of creative hackers.
  • venom8599, on 10/11/2007, -0/+2@EbilPhish

    I'm assuming it's hex because the last key was hex, and every other AACS key I've seen is in hex format. It's pretty much the standard format when discussing AACS keys... To assume some crazy base >=26 number system is completely wrong as well. If it were such a numbering system, this "key" would be way too long to be the 128-bit AACS key.
  • WorldGroove, on 10/11/2007, -1/+2Well... all I know is that I want another DiggTheCode MP3 to add to my iPod. And another MusicVid.
  • stealthrocket, on 10/11/2007, -0/+1When will these guys learn that this is like trying to squeeze water in your hand?
  • ArielMT, on 10/11/2007, -2/+3Edit:
  • Cristan, on 10/11/2007, -0/+1Well, the new Matrix trilogy was sold two weeks before they were supposed to, and is hacked one week before release, so those millions of dollars delayed it a week.
  • xspinkickx, on 10/11/2007, -0/+1drm just does not hinder piracy, just ordinary users.
  • longboarder543, on 10/11/2007, -0/+1The whole DRM concept is lunacy brought on by the hands of an out-of-touch, out-of-their-mind industry group. I would have really liked to be at that first board meeting where they decided that suing the group of users most passionate about their movies and music was a *good* idea. It's unthinkable, you just don't do it, but alas, this is where we are. When an industry completely abandons the concept of creating quality product, marketing it effectively, and turning a profit, and instead allows a sense of entitlement to guide them down this road of, "We're going to turn out *****, lock it down and cripple it, shove it down your throat by removing all alternatives, and sue anyone who doesn't buy in to the model" , congrats!, you've arrived at the RIAA and MPAA and their cronies like the AACS.
  • venom8599, on 10/11/2007, -2/+2oops
  • Miflip, on 10/11/2007, -0/+0Go see on JINX dot COM for "09 F9 11 02 9D 74 E3 5B D8 41 56 C5 63 56 88 C0" tee-shirt :)
    I bought mine today mouhahaha :p
  • pauleric, on 10/11/2007, -2/+1"AACS LA's attempts to stifle dissemination of AACS keys and prevent hackers from compromising new keys are obviously meeting with extremely limited success."

    I like how they describe abject failure as "extremely limited success".
  • chess007, on 10/11/2007, -2/+1 They need mental help. I've heard the definition of insanity is doing the same thing over and over again and expecting different results. :)

    "To the hacker community, it's a game, an intellectual challenge, and they're - obviously - going to win every time."

    Until everyone gets a computer with built in trusted computing... :(
  • Tenoq, on 10/11/2007, -5/+2How come no-one has chimed in with:

    "***** the RIAA & MPAA!"

    :-P
  • waxoff, on 10/11/2007, -4/+1@elpeehs Thankyou my friend....
  • CanadianGuy, on 10/11/2007, -5/+1What exactly am I going to do with that!!!!
  • Skeithy, on 10/11/2007, -4/+0It has always amazed that no matter how many experts are hired to secure something, there are always hackers that are one better. The only reason why open source doesn't get this is the hackers are working for them.
  • WaterDragon, on 10/11/2007, -10/+6ZOMG it's a new key!

    "08 E2 54 80 6A 32 P4 2C C7 85 23 B4 84 23 97 F6"

    I bet this one doesn't get elevated to celebrity status like the last one did. I bet it doesn't get it's own song and tee-shirts.
    Poor, sad little key!

  • Nitroadict, on 10/11/2007, -7/+2lawl of the year award: a string of numbers & letters. welcome to the 21st century.
  • silverfire, on 10/11/2007, -9/+2No - the reason why FOSS projects don't get these kinds of things happening is the same reason why there are so few Mac OS virii out in the wild:

    No. Market. Share.

    At least, not enough to warrant the effort.
  • iNoles, on 10/11/2007, -13/+3P4 is another words for Intel Pentium 4? that serve them rights.

  • Add a Comment

    Login or register to comment!
    Or, sign-in super fast with your Facebook account ...


© Digg Inc. 2009 — Content created and posted by Digg users is dedicated to the public domain | Terms of Use Updated | Privacy Policy
DIGG, DIGG IT, DUGG, DIGG THIS, Digg graphics, logos, designs, page headers, button icons, scripts, and other service names are the trademarks of Digg Inc.