Wii Uses Elliptic Curve Cryptography For Saves 183
An anonymous reader writes "A user at the Nintendo-Scene forums just posted a lengthy post about his discovery that the Wii savegame files are signed and encrypted with NIST B 233 bit elliptic curve cryptography. Could this be the first step for a Wii softmod the homebrew community have waited for? From the post: 'It appears a Wii savegame file ends with a certificate chain. The certificates contains a public keypair (the one that is being "certified") and a signature (another number pair) from the signing entity. The number pairs are stored as a compound 60 bit data (first 30 bytes for the first number, and the next 30 bytes for the second). Hence, the first and middle byte is always 00 or 01 for keys, and 00 for signatures. One can check that the keys are indeed NIST B 233 keys using openssls EC_KEY_check_key function (code forthcoming).'"
Re:More important than homebrew potential (Score:3, Insightful)
Re:More important than homebrew potential (Score:5, Insightful)
for reference I am a linux user and took time out of writing a shell script for a solaris machine at work to write this response. normally your mentality is how I think but this time it doesn't stand up to a little critical thinking from the perspective of a fairly heavily vested party. [I don't know anyone who has spent more towards wii, games, and controllers than I have. though I am sure some
Mod parent troll (Score:5, Insightful)
Perhaps you don't understand why most
Nintendo does none of this. They encrypt savefiles. So what? This does not impede on your right to do anything. You can play any given game on as many Wiis as you wish. Nintendo is also not suing people to force hackers to halt breaking their savefile encryption. Game developers generally don't want players artificially advancing within games. Perhaps there are statistics stored within the savefile used online. Whatever's in the savefile is up to the game devs, and Nintendo is simply hiding that.
In other words, Nintendo is completely within their rights to encrypt savefiles. In turn, AFAIK, you are completely within your rights to attempt to break that encryption. And in turn again, Nintendo is completely within their rights to push out any updates to change or otherwise enforce their encryption. It's really that simple.
Re:More important than homebrew potential (Score:1, Insightful)
Just another case of Slashdot treating its visitors like criminals.
Re:More important than homebrew potential (Score:5, Insightful)
No, I think there is a much more mundane reason. In the past some of the consoles were broken with manipulated save games, the games didn't properly check the data and so opened a hole. I would guess Nintendo didn't want to take that chance and so added an API which sits between the game and the saved data. As the saved data could be verified for being originally written by the game before the game would even get a chance to have a look at it, it means it is much harder to attack code not written by Nintendo to be exploited.
Disclaimer: I have never seen the API of a game console, this is only a wild guess.
Great, now about the next step. (Score:4, Insightful)
The next step will be to search for an exploit in the console or in a game that allows execution of that data. The final step is to figure out how to get that newly loaded code to do something useful. I know this has been done before, but I'm under the impression that the exploit (in a 007 game) was found by chance. After that lucky break, the code-something-useful part came very fast.
Is there any way to search for such an exploit other than brute force testing of games? Are there things to look for that normal players might see, or do you have to just try to execute code over and over and over in various situations, hoping to find a hole? In short, how can I, a non-programmer, help?
I have hundreds of SNES and NES carts. I would love to be able to run those games on the Wii without having to buy them a second time or wait for N to trickle them out. Now if I can just hack together some Wii wireless SNES and NES pads, I'll be in heaven.
I for one dont have a problem with this (Score:1, Insightful)
Additionally those that would of hacked the save files to install mods are not a majority of players on any system. Most people who own a console do not have the skill set or urge to install mods. While encrypting the save files will slow down the hackers it will most likely not stop them, so unless Nintendo did something stupid and made the Save files have full authority over online play encrypting the save files with elaborate means is just a waste of the players time as the games have to take longer to save.
Re:Uhh (Score:3, Insightful)
Re:It seems to me... (Score:2, Insightful)
Re:Uhh (Score:5, Insightful)
Unlike Windows which you can get to install on damn near anything within reason.
I figure modders should get a second, control Wii if you will, that they can fall back on for games.
As much as I'm for tinkering, it's not like Nintendo's really promoting openess on their systems. Why should the modding community expect it? I feel the same way about the XBox and PS3 (although the PS3 not as much; Sony promoted the Linux part quite a bit).
Guess I'm just old fashioned in some ways. I like my consoles too much to tinker with em.
Re:Uhh (Score:5, Insightful)
This means that Nintendo has a clue.
It is signing all the data with a certificate. Proper crypto, not DIY snakeoil ala most DRM schemes out there. The only way to break it is to get to the device key.
If they have done is right the key is per device and hardware protected by a crypto module. From there on breaking this at the crypto level is absolutely impossible.
The consequences are actually the opposite to what the clueless editor posted:
1. No chance for homebrew unless someone steals a cert from somewhere and even then Nintendo can simply revoke it using their online service or in a service pack.
2. All communication from the console to a server and back can be signed with strong crypto so no online game cheating.
As far as the elliptic curve cipher choice, this is a common choice for devices with very limited CPU or memory resources. That is what these ciphers are designed for.
All I can say: Applause Nintendo, applause, well done.
Re:WTF? (Score:5, Insightful)
It's just like Demolition Man... (Score:3, Insightful)
...where the police are looking for a violent killer, and then their surveillance locates him, and they all breathe a sigh of relief, as they assume that's the hard part done - all they have to do now is arrest him.
I can't help thinking that there's a wee bit more work to do than just find out what encryption method is being used.
Then again, maybe your average slashdotter thinks that 'breaking encryption' is as easy as 'guessing the algorithm used' :-).
Re:Uhh (Score:4, Insightful)
Re:Uhh (Score:3, Insightful)
So although the security implemented in these savegames is definitely about as good as it gets for now, it is definitely not impossible to break.
Re:Uhh (Score:3, Insightful)
Re:Uhh (Score:5, Insightful)
Next time try not to automatically assume modding = piracy, because it does not, no matter how much the hardware manufacturers like to say it does. If I could buy a mod chip that enables imports but not pirated games I gladly would. The constant erroneous association of modding with piracy by clueless people such as yourself has become extremely tiresome.
Re:Uhh (Score:2, Insightful)
Re:Uhh (Score:4, Insightful)
Can you modify your game console - that is, are you physically capable of altering its hardware? Sure! You can make it run imported games, homebrew games, Linux, anything you please. Heck, you can turn it into a motion-sensitive coffeepot if you want. However, the console manufacturer never sold you a motion-sensitive coffeepot, and they are under no obligation to support it if that's what you build out of it. To continue the car analogy, this would be like converting your new gasoline-powered vehicle to run on biodiesel, and then complaining to the dealer when it won't run on gasoline anymore. You're completely within your rights to do that, but the carmaker is also within its rights to make you support it yourself by taking away your warranty.
Re:It's just like Demolition Man... (Score:3, Insightful)
But there's another avenue for attack. Given that a wii-game is capable of creating, verifying and signing its own savefiles, this means that the encryption-keys are also stored either in the wii-console or in the game-software.
So, it's just a matter of extracting them.
Once you know *both* the method of encryption and signing, *AND* are in posession of the relevant keys, the rest really is a walk in the park.
Commodity hardware ain't terribly good at hiding encryption-keys from the owners of the hardware which can take it all apart, insert logic-probes and generally mess around with the hardware at will.