Patent Grant
9137015
This invention relates to apparatus and method for protecting the Advanced Access Content System (AACS) in software video players.
The Advanced Access Content System (AACS) is a standard for content distribution and digital rights management that is intended to restrict access to and copying of High Density (HD) and Blue-ray Disk (BD) media. It was developed by AACS Licensing Administrator, LLC (AACS LA), a consortium that includes Disney, Intel, Microsoft, Matsushita (Panasonic), Warner Brothers, IBM, Toshiba, and Sony.
For each protected Title or a set of protected Titles to be included together on the pre-recorded medium, the AACS LA provides to the licensed replicator a Media Key Block (MKB), a Sequence Key Block, and a secret Media Key (Km). The MKB will enable all compliant devices, each using their set of secret Device Keys and Sequence Keys, to calculate the same or variants of the Media Key. If a set of Device Keys is compromised in a way that threatens the integrity of the system, an updated MKB can be released that will cause a device with the compromised set of Device Keys to calculate a different Media Key than the remaining compliant devices. In this way, the compromised Device Keys are “revoked” by the new MKB.
For each protected Title, the licensed replicator calculates a cryptographic hash of the Media Key and the Volume ID, and uses the result to encrypt the Title's Title Key. The encrypted Title Key and the MKB are stored on the pre-recorded medium.
The AACS LA provides a set of 253 secret Device Keys to the licensed manufacturer for inclusion into each compliant device or application produced. Device Key sets may either be unique per licensed product, or used commonly by multiple products.
The licensed product reads the MKB from the pre-recorded medium, and uses its Device Keys to process the MKB and thereby calculate the Media Key. If the given set of Device Keys has not been revoked, then the calculated Media Key will be the same Media Key that was used by the licensed replicator as described above.
For each protected Title the licensed product then calculates a cryptographic hash of the calculated Media Key and the Volume ID, and uses the result to decrypt the Title's encrypted Title Key. The result is then used to decrypt the Title.
Playback of AACS content is only performed using the Title Keys and Volume ID which are read from the media. Except otherwise provided by the AACS specifications, the values used to enable playback of AACS content (e.g. Title Keys and Volume ID) shall be discarded upon removal of the instance of media from which they were retrieved. Any derived or intermediate cryptographic values shall also be discarded.
Hackers have found various AACS keys by using debuggers to inspect the memory space of running HD-DVD and BD software video players. Thus, what are needed are method and apparatus for safeguarding the AACS content in HD-DVD and BD software video players.
In embodiments of the invention, methods are provided to protect AACS Device Keys in a software video player and to encrypt data transfers between modules of the player.
In one embodiment, AACS Device Keys and their renewal information are packed into a file and then encrypted. When the software video player starts, the encrypted file is read into memory and decrypted. If the Device Keys have expired, the software video player will prompt the user to renew the Device Keys. Otherwise the software video player uses the Device Keys to calculate AACS Title Keys for decoding encrypted content. Afterwards, the software video player clears the memory of keys by filling it with random numbers.
In one embodiment, to prevent static analysis, the Title Keys are encrypted with a random number and they are decrypted only when they are used. After they are used, the Title Keys are encrypted immediately with a new random number. In addition, junk codes are inserted into essential places of the binary machine code of the software video player. Furthermore, the binary machine code self-decrypts dynamically only at runtime.
In one embodiment, to prevent dynamic debugging, a monitoring mechanism in the system service is provided to detect debugging tools and determine whether or not the software video player is under conditions that indicate the player is being debugged.
In one embodiment, authentication is used between certain modules of the player and encryption is used in data transfer between certain modules of the player.
Use of the same reference numbers in different figures indicates similar or identical elements.
Conventional software video player 200 of
In embodiments of the invention, software video player is provided with (1) encryption of the AACS keys, (2) countermeasures against static analysis, (3) countermeasures against debugging tools, (4) authentication between modules of the player, and (5) encryption of data transfer between modules of the player.
Software video player 300 is typically executed by a processor in a computer or in an appliance from codes and data loaded in volatile memory. Software video player 300 includes a player engine 301 with an AACS engine 302. AACS engine 302 has hacking countermeasures so it does not directly access AACS keys. Instead, AACS engine 302 requests the AACS keys from an AACS key manager 304 only when the AACS keys are needed. In response, AACS key manager 304 decrypts an AACS key file 306 and provides the AACS keys to AACS engine 302.
The contents of AACS key file 306 is packed and then encrypted by a Pack Tool using a random key 307 (
In step 504, AACS key manager 304 encrypts or masks random key 307 with a temporary random key to prevent random key 307 from appearing directly in the memory during long playbacks. In one embodiment, AACS key manager 304 encrypts random key 307 by XORing it with the temporary random key. AACS key manager 304 creates a new temporary random key each time software video player 300 is started. Step 504 is followed by step 506.
In step 506, AACS key manager 304 divides the encrypted random key 307 into multiple segments and stores them in noncontiguous memory regions. For example, AACS key manager 304 allocates different buffers through the operating system to store the segments. This again prevents random key 307 from appearing directly in the memory. Step 506 is followed by step 508.
In step 508, AACS key manager 304 determines if AACS engine 302 is requesting AACS key data 402. If so, then step 508 is followed by step 510. Otherwise step 508 loops until AACS engine 302 requests AACS key data 402.
In step 510, AACS key manager 304 assembles the segments of the key 307 and decrypts encrypted random key 307 with the temporary random key.
In step 512, AACS key manager 304 decrypts AACS key file 306 with random key 307. Step 512 is followed by step 514. In one embodiment, AACS key manager 304 reads the pack file header 404 to make sure the AACS keys have not expired. If the AACS keys have expired, AACS key manager 304 will prompt for the newest AACS keys. The newest AACS keys may be downloaded through the Internet or read from a disc.
In step 514, AACS key manager 304 retrieves AACS key data 402 from the decrypted AACS key file 306. Step 514 is followed by step 516.
In step 516, AACS key manager 304 provides AACS key data 402 to AACS engine 302. In response, AACS engine 302 uses the Host Certificate to authenticate the optical drive, and the Device Keys and the Sequence Keys to calculate Title Key(s). As only the Title Key(s) are used for decrypting the media when the player is running, AACS key data 402 and random key 307 can be deleted after the Title Key(s) are determined. To prevent static analysis, the Title Keys(s) may be encrypted with a random number and decrypted only when they are used. After they are used, the Title Keys may be encrypted immediately with a new random number. Step 516 is followed by step 518.
In step 518, AACS key manager 304 clears AACS key data 402 from the memory by filling their memory locations with random numbers. Step 518 is followed by step 520.
In step 520, AACS key manager 304 clears random key 307 from the memory by filling its memory location with random numbers.
Referring back to
AACS engine 302 further uses self-extraction as a countermeasure against static analysis. The binary code of AACS engine 302 is compressed and encrypted into a file by a development tool before release, and the file self-extracts dynamically at runtime. The binary code of AACS engine 302 can be encrypted by XORing the code with a predefined random number.
Referring back to
Conventionally filters do not authenticate each other before data transfer and data transfer between filters are not protected. This provides opportunities for a hacker to exploit the filters if the hacker forges an empty filter that accepts decrypted data and dumps the data to a file. Therefore, software video player 300 is provided with authentication between certain modules and data encryption in the data transfer between certain modules in one embodiment of the invention. As illustrated in
In step 801, the initiator sets an authentication flag for the target to FALSE, which indicates that the target has not been authenticated. Step 801 is followed by step 802.
In step 802, the initiator generates a random number (e.g., a 16 byte). Step 802 is followed by step 803.
In step 803, the initiator sends the random number to the target. Step 803 is followed by step 804.
In step 804, the target encrypts the random number with its copy of a predefined key. Both the initiator and the target have the predefined key in their source codes. Step 804 is followed by step 805.
In step 805, the target sends the encrypted random number to the initiator. Step 805 is followed by step 806.
In step 806, the initiator verifies the encrypted random number by decrypting it with its copy of the predefined key. If the decrypted result matches the random number the initiator sent to the target, then the target is authenticated. Step 806 is followed by step 807.
In step 807, the initiator sets the authentication flag to TRUE if the decrypted result matches the random number sent to the target. Otherwise the initiator leaves the authentication flag as FALSE.
In step 902, BDMV engine 308 determines if the authentication flag for codec engine 306 is TRUE. If so, codec engine 312 has been previously authenticated in process 800 (
In step 904, BDMV engine 308 creates a random number (e.g., 16 byte) as a key. Step 904 is followed by step 906.
In step 906, BDMV engine 308 determines if a certain amount of time has passed since the key was created so it is time for generate a new key. If so, then step 906 is followed by step 908. Otherwise step 906 is followed by step 910.
In step 908, BDMV engine 308 generates a new random number as a key. Step 908 is followed by step 910.
In step 910, BDMV engine 308 sends the key to codec engine 312 by a function call. Step 910 is followed by step 912.
In step 912, BDMV engine 308 encrypts a stream of data with the key. In one embodiment, BDMV engine encrypts the data by XORing them with the key. Step 912 is followed by step 914.
In step 914, BDMV engine 308 sends the encrypted data to codec engine 312. In response, codec engine 312 uses the key received in step 910 to decrypt the data and otherwise process the data for display. Step 914 is followed by step 916, which ends method 900.
Referring back to
In step 1002, monitor process 314 determines if software video player 300 is running after the software video player was started. If so, then step 1002 is followed by step 1004. Otherwise step 1002 is followed by step 1008.
In step 1004, monitor process 314 determines if a debugging tool is running. This function is represented by reference numeral 316 (
In one embodiment for the Win32 system, a check server is provided to prevent debugging. In the Win32 system, there is a thread information block (TIB) for each running thread. The check server checks TIB for flags that identify running threads of debugging tools in protection ring 3 (applications), such as Microsoft Visual Studio and OllyDbg. The check server also detects some debugging tools that run in protection ring 0 (kernel) by their driver names, file names, and sever names. For example, the check server attempts to create the same object handles with the same driver, file, and server names as the debugging tools. If the creation fails, then the debugging tools are present. When there is debugging tool attacking software video player 200, the check server closes the player to prevent it from been hacked.
In addition to the check server, a start server is provided to protect the check server from being attacked. The start server double checks the check server and the player are running without being debugged. Specifically, the start server determines whether or not the check server exists. Since the check server is a program of the Windows operating system, the start server looks for the processes of the check server using the Windows API. If the start server cannot find the processes of the check server, it restarts the check server again to protect the player.
In step 1006, monitor process 314 determines if software video player 300 is under conditions that indicate software video player 300 is being debugged. This function is represented by reference numeral 318 (
In step 1008, monitor process 314 waits for a timeout and then returns to step 1002 to again loop through method 1000.
In step 1010, monitor process 314 applies debugging countermeasures. This function is represented by reference numeral 320 (
To thwart any attempt to disable monitor process 314, application layer 310 and BDMV engine 308 both periodically detect monitor process 314 after software video player 300 is started. If either application layer 310 or BDMV engine 308 cannot detect monitor process 314, it can forcibly terminate player 300 as a precaution against debugging.
Various other adaptations and combinations of features of the embodiments disclosed are within the scope of the invention. Numerous embodiments are encompassed by the following claims.
| Number | Name | Date | Kind |
|---|---|---|---|
| 5668880 | Alajajian | Sep 1997 | A |
| 5832090 | Raspotnik | Nov 1998 | A |
| 5857025 | Anderson et al. | Jan 1999 | A |
| 6009177 | Sudia | Dec 1999 | A |
| 6480117 | Flick | Nov 2002 | B1 |
| 6563928 | Vanstone et al. | May 2003 | B1 |
| 6704870 | Vanstone et al. | Mar 2004 | B2 |
| 6990200 | Kasahara et al. | Jan 2006 | B1 |
| 7876895 | Jin et al. | Jan 2011 | B2 |
| 8023653 | Doherty et al. | Sep 2011 | B2 |
| 8121287 | Jin et al. | Feb 2012 | B2 |
| 20020152392 | Hardy et al. | Oct 2002 | A1 |
| 20030086567 | Okamoto et al. | May 2003 | A1 |
| 20040103292 | Shirouzu | May 2004 | A1 |
| 20040123122 | Asai et al. | Jun 2004 | A1 |
| 20040172538 | Satoh et al. | Sep 2004 | A1 |
| 20050135705 | Nishi | Jun 2005 | A1 |
| 20050138624 | Morrison et al. | Jun 2005 | A1 |
| 20050195975 | Kawakita | Sep 2005 | A1 |
| 20060047961 | Hashimoto et al. | Mar 2006 | A1 |
| 20060116969 | Hatanaka et al. | Jun 2006 | A1 |
| 20060117013 | Wada | Jun 2006 | A1 |
| 20060153381 | Kim et al. | Jul 2006 | A1 |
| 20060188098 | Kumagai et al. | Aug 2006 | A1 |
| 20070201691 | Kumagaya | Aug 2007 | A1 |
| 20080013732 | Ohno | Jan 2008 | A1 |
| 20080049932 | Ono et al. | Feb 2008 | A1 |
| Entry |
|---|
| Nate Lawson; Anti-debugger techniques are overrated; Apr. 19, 2007; root labs rdist; 1 Page. |
| Len Norton; Cracking Embird 7.11 Evaluation; Jan. 24, 2007; 5 Pages. |
| Woodmann; Anti-debugging & Software Protection Advice; Dec. 31, 2006; 1 Page. |
| Nagareshwar Talekar; Detecting & Defeating the Debuggers; SecurityXploded.com; Jul. 15, 2007; 1 Page. |
| Number | Date | Country | |
|---|---|---|---|
| 20100020968 A1 | Jan 2010 | US |
