Linked by Thom Holwerda on Fri 7th Jan 2011 23:50 UTC
Games Sony has responded to the recent cracking of the Playstation3, and the company claism that they can fix the issue - which ought to be impossible considering the scope of the hack. "We are aware of this, and are currently looking into it," Sony said, "We will fix the issues through network updates, but because this is a security issue, we are not able to provide you with any more details."
Thread beginning with comment 456449
To view parent comment, click here.
To read all comments associated with this story, please click here.
RE[3]: Multiple root keys?
by galvanash on Sat 8th Jan 2011 01:34 UTC in reply to "RE[2]: Multiple root keys?"
galvanash
Member since:
2006-01-25

they could blacklist the old key but have a checksum of all old games executable, so if the old key is used they just need to check if the hash is in the whitelist


Replace a broken public key signing mechanism with simple checksum database... I suspect that would make things easier for hackers, not harder.

To be fair though, that is a possible angle they could take and if they were careful enough it might work - but I highly doubt it.

Reply Parent Score: 2

RE[4]: Multiple root keys?
by dsmogor on Sat 8th Jan 2011 23:56 in reply to "RE[3]: Multiple root keys?"
dsmogor Member since:
2005-09-01

They can use cypto quality checksums that are virtually impossible to forge.

Logistically it's not that hard for them, as the have all they already have checksums for every PS3 game in existence (they signed them afterall).

Reply Parent Score: 2

RE[5]: Multiple root keys?
by vodoomoth on Mon 10th Jan 2011 14:57 in reply to "RE[4]: Multiple root keys?"
vodoomoth Member since:
2010-03-30

Logistically it's not that hard for them, as the have all they already have checksums for every PS3 game in existence (they signed them afterall).

Not so sure as a checksum is like a bit parity in the sense that it does not suffice to reconstitute the data that has been pari... (err, is there a word for that action?) or checksummed.

You do checksum from data. Using a different checksum algorithm requires the original data, not just the few bytes that form the old checksum. So yes, it may be a logistical nightmare for Sony.

Reply Parent Score: 2