[hellsing9]

Kill3r seems to suffer f... [Read More]

[tulla2010]

wow, nice to see people still working on things like this, great news

[winch03200]

Thanks Hellsing9

Interview with Killer and some update of this post:

Winch03200 : Can you tell me more about this PoC, what is its function ? Kill3r : This PoC serves to demonstrate that my PS3 Keys Finder project is viable. Indeed, it determines whether the couples of <key> and <iv> passed as parameters, will be allowed or not to decrypt a given EBOOT.BIN. This is the first part - the client side - of my PS3 Keys Finder project. This PoC allows a brute force attack on the last 5 characters of the key so it will test exactly 1048576 key in a few seconds. Winch03200 : You said that this PoC is only the first part (the client part), what is the second part and can you tell me more ? Kill3r : The second part - the server side - will host the intelligence of my program. Rather than resorting to a brute force attack that will testing stupidly all possible keys, I prefer generate certain probable keys that will answer more than two dozen different criteria ! Currently I work in parallel on a standalone version - and that will include client & server - and that will be more intended for very large configurations and other super-calculator ! I do not rule out the likely use of cloud computing even though financially I could not take this expense at my charge ( I already paid about 300 € to make sure that i can access a supercomputer for the month of August). If patrons or donors wish to donate to me (although it is only 2 €) thank you to contact me by MP - again I do not force anyone ! Winch03200 : We know that in the past you have been criticised a lot... So why you release your POC now ? Any particular reason ? Kill3r : For more than a year, my idea for that project was a lot present in my mind without doing nothing. By this time, I never had the support expected ! I keep it for me and then what? But I prefer to show the direction and try to breathe new life to the scene... (PS3). Some people criticized me for my project even before I've had time to explain how it works, others have told me that I was not a true dev: this PoC is also a response to their criticism. Winch03200 : Can you find all the 3.60 + keys with the second part ? If so can we expect a release of a cfw 3.60 + (maybe 4.11 CFW or 4.2X for being up to date) or a possible release of the keys ? Kill3r : I think with the method I want to use, it will be possible to find all the keys in a SELF (key, iv, priv, pub ...) but not only this, it is also possible to obtain those of the LV1 / LV2 / SELF NPDRM ... You just have to be patient and hope that I will have enough time - and motivation - to continue to evolve this project and it will depend exclusively on the support that the readers bring ! Winch03200 : When does that last part of this project will be available and functional ? Kill3r : To quote George Broussard: "when it's done". For the Standalone version (only for a handful of privileged): early August.

[ryant001]

Kill3r : I think with the method I want to use, it will be possible to find all the keys in a SELF (key, iv, priv, pub ...) but not only this, it is also possible to obtain those of the LV1 / LV2 / SELF NPDRM ... You just have to be patient and hope that I will have enough time - and motivation - to continue to evolve this project and it will depend exclusively on the support that the readers bring !

Sounds very promising plus if he manages to find those supposedly "impossible to calculate" private keys he will be considered a hero.

[hellsing9]

@winch03200 added to the frontpage article thanks.

[Ada Love Lace]

well, really nice new and it s about something i don t know nothing but:
public keys are already prove to be "decrypted" (zadow28, Mara and fews others explained well fews things about it and LV0 obfuscated)
private keys will be like as breaking high level US military security (there are specific name for each level of security but don t remember exactly)
So private keys...and "never" can be associated in the same sentence.
But sure, about publics keys (i m not sure if this tool is all about it)
It s nice news and such but if there are any way to jailbreak 3K&4K ps3, i doubt it ll be by having properly private keys (but instead as modchip or even 100% software might not be so "never")
Sorry for the dev ebhind this tool if i don t understand correctly this tool (and i m sure i can not understand it really ) and this comment is more to don t give false hope for users having newest ps3.

edit: just to make sure, it s not directly related to this tool and what it s trying to do (i did not check the tools and even if i do, i ll probably not be able to really understand) and was more to give some kind of warning against users who have new ps3 and begin in ps3 scene (and seeing almost every day news cfw or keys being release)
However, for previous hack with private keys, it was said Sony made a huge fail, well this is true but still they implemented the security not in "random" fail way without any check. Kakarotok and others really talented users explained it well.

[hellsing9]

Originally Posted by Ada Love Lace well, really nice new and it s about something i don t know nothing but: public keys are already prove to be "decrypted" (zadow28, Mara and fews others explained well fews things about it and LV0 obfuscated) private keys will be like as breaking high level US military security (there are specific name for each level of security but don t remember exactly) So private keys...and "never" can be associated in the same sentence. But sure, about publics keys (i m not sure if this tool is all about it) It s nice news and such but if there are any way to jailbreak 3K&4K ps3, i doubt it ll be by having properly private keys (but instead as modchip or even 100% software might not be so "never") Sorry for the dev ebhind this tool if i don t understand correctly this tool (and i m sure i can not understand it really ) and this comment is more to don t give false hope for users having newest ps3.

SAPs.? xD
Besides that, yeah i agree with you in so many points and we know and even was a research done by military on certain cripto methods, that was posted here about the private keys (i don't find the article).

This article and tool was NOT meant to bring hope to 3K users, is just if you can call it in some way *Do some research and share*.

Fact is 3.55 = the king of the hill as highest of hackable firmware but another thing i think to myself when i post in here that 3.55 will not last forever.
In some part even with so much progress *we* are getting limited if we see the whole as a *civilization* has to be a break-point in all of this.
In all of this leaks, etc.

If we keep on 3.55 were is *secure* to stay (for how many years?) we are not *evolving* quite the contrary we are still researching, collecting bricks and making some nice modificactions or constantly repairing and discovering awesome data from ONE piramid only, when you have two more to explore.
Get my point?.

I don't know what will happen in the future, since the leaks seems to appear out of the blue and we have many RAW facts to research if someone is willing to do so. Long story short..more piramids to discover how were built, where they are from if exists any chance of crack it open.
Human nature = Curiosity.

Also that any new user that lurks or register on any scene site will ask the same, is inevitable. Sometimes for some people is so hard to see what it's in front on them that they need someone to tell them what is and what will happen if he open his/her eyes to that reality.

[Anthony817]

Like I said before, I give it a few more months, 2 at the soonest. If they can't find an exploit for OFW3.55+ in the next few months, I might as well invest in a solderless Progskeet or pay to get mine downgraded.

Nonetheless, all this orgy of news coming out in these past 2 weeks makes me glad I repaired my bros YLOD bc 80gb PS3 I got for free.

Keep the news coming guys, this seems to be the best PS3 scene news site on the net.

[Ada Love Lace]

Originally Posted by hellsing9 SAPs.? xD Besides that, yeah i agree with you in so many points and we know and even was a research done by military on certain cripto methods, that was posted here about the private keys (i don't find the article). This article and tool was NOT meant to bring hope to 3K users, is just if you can call it in some way *Do some research and share*.

The article is fine, it s like you said: some users want to believe what they want to believe. And since the article is about finding the keys, i liked to be the one giving pessimistic point of view.
But i still believe other way of hack can be done for any ps3 from even game save (me too i like to believe so i ll buy second ps3 like 4K. And since i m broke every month, i really want to believe.

[alexsius]

Just for curiosity i ve looked for some ecsda explainations but i didn't understand anything on wikipedia or on other sites it s not accurated... anyway it s just for curiosity.
I think that first we need the private keys than we can fail trying to install mfw on 3k/4k consoles but without any private key we can't even try...
Remember that instead on the other consoles maybe resigning the lv2_diag.self and lv1_diag.self we can re enable the downgrade via service mode! That is cheaper and easier than a flasher!