A man-in-the-middle attack on HDCP-secured video links is demonstrated. The attack is implemented on an embedded Linux platform, with the help of a Spartan-6 FPGA, and is capable of operating real-time on HD video links. It utilizes the HDCP master key to derive the corresponding private keys of the video source and sink through observation and computation upon the exchanged public keys. The man-in-the-middle then genlocks its raster and cipher state to the incoming video stream, enabling it to do pixel by pixel swapping of encrypted data. Since the link does no CRC or hash verification of the data, one is able to forge video using this method.
Bunnie’s latest is so cool, and so out there – watch the whole thing and check out the slides.
You guys are going to catch a little hell for hosting this post. (so…) Good for you-all! Well done! More like this. Makers include those wishing to recover some of their freedom to control their own purchases. Thank you, folks.
What he ^ said. And good on Bunnie.
// What's Trending
Raspberry Pi Design Contest
Maker Faire: Day Two
Seventeen Sneaky Secret Hides
10 Things to Connect to Your Raspberry Pi
Maker Faire: Day One
DIY Hacks & How To’s: Swiss Army Key Ring
47 Raspberry Pi Projects to Inspire Your Next Build
// What's Shared
A better way to slice a pumpkin
DIY Nerf Darts
In the Maker Shed: Minty Boost USB Charger
100 Dollar Store Organization Ideas for Craft Rooms and Beyond
Mad’s Mouse House
Lace Princess Crowns
I Have a (Puzzling) Dream
Play the Rings of a Tree Trunk Like a Record
// Most Commented
DIY Hacks & How To’s: Get Emergency Power from a Phone Line
Resin Casting: Going from CAD to Engineering-Grade Plastic Parts
Ten Tips for Screws and Screwdrivers
Ten Tips for Better Measurement
Makers on TV: Big Brain Theory
Arduino Announces New Wireless Linux Board
Build a “Boomcase” and Upcycle that Old Suitcase
Tool Review: BioLite CampStove