Crypto expert predicts demise of next gen DVD security
By Rene Millman,
The encryption system used to protect content on HD-DVD and Blu-Ray disc is fast becoming obsolete, according to an encryption expert.
Ed Felten, professor of computer science and public affairs at Princeton University and security researcher, said that decryption tools that find encryption keys - called title keys - used to decode the next generation formats will evolve and backup applications such as BackupHDDVD will be modified to use these keys to play copied discs.
"Somebody will make an online database of title keys, and will modify BackupHDDVD so it automatically consults that database and gets the title keys it needs," Professor Felten said. "This new decryption program will be able to decrypt any disc whose title key appears in the database. This decryption software and database don't exist yet, but they seem inevitable."
He compared this with the system used to distribute decrypted movies.
"One difference is that a 16-byte title key is much smaller and easier to distribute than a huge movie file - even a dialup line will be able to download title keys in the blink of an eye," he said.
He said the title key is only useful if you have the disc or a copy of it, but the keys will be enough to enable in-home fair use.
Felten said that the title keys could be obtained by either reverse engineering a player or more likely from a software application used to play a disc on a computer.
"In either case it will be possible. An engineer who extracts a key can upload it to the online database or share it with his friends," said Felten.
He predicted that such key extraction would eventually be automated.
But Felten said that if anyone published details of these recovered key then the central authority that governs the distribution of keys could black list these keys.
"So the engineer, if he is clever, won't necessarily publish everything he knows. The more he publishes, the more he helps others freely use their discs - but the more he also helps the central authority fight back," he said.
Felten said this would lead to an interesting strategic game between the engineer and the central authority.
You may also like...
Sponsored Links
advertisement
You may also like...
Latest Security Analysis & Insight
What is your password worth?
Would you be tempted to sell off company passwords for a fee? If not, seems like you're in the minority, acccording to research.
- Macs under attack?
- Intel: security inside
- Are you spending too much on IT security?
- Does the government want to snoop on your data?
- Eurocrats versus the cyber criminals
- The truth about spam
- Google and privacy: What’s the problem?
- Q&A: Symantec’s CISO on the source code hack
- RSA: Back from the breach?
Latest Security Reviews
Check Point 2210 Appliance review
Rating: 
advertisement
Most popular
- Apple iPad 3 vs iPad 2 head-to-head review
- Hutchison denies it will pull plug on Three UK
- EMC World 2012: Tucci declares Documentum is here to stay
- ICO: Fines for cookie law breakers
- EMC World 2012: EMC talks up cloud, security and big data
- Dell PowerEdge R820 review
- Sony Vaio T13 Ultrabook review: First look
- BlackBerry 7 OS certified to carry 'Restricted' UK government information
- Facebook floatation marred by Nasdaq glitch
- CIO: Career is over?
Latest News Videos in Security
IT PRO Podcast: Are UK data protection laws flawed?
PlayWe bring in two experts to talk about the problems with UK data protection law and the way it is managed.
Register for IT PRO
You'll get exclusive member benefits including free whitepapers, downloads, Webinars and weekly newsletters full of the latest IT PRO news, reviews, insight and expertise.
