Categories: SecurityWorkspace

Intel Admits Theft Of Copy Protection Protocol

Intel is investigating how a master key for the High-bandwidth Digital Content Protection [HDCP] protocol used to protect digital content made its way to the Internet.

Developed by Intel, the HDCP protocol is used to protect video and audio content as it is transmitted between devices such as Blu-ray players and high-definition televisions [HDTVs] and to verify the device receiving the content is licensed to do so.

The master key is used to generate keys meant for consumer devices. On 14 September, it was reported that a secret master key for HDCP had been posted on the Internet. Intel confirmed the key was legitimate on 16 September.

Security properties destroyed

“We’re investigating how it might have been obtained, how someone might have determined it,” Intel spokesperson Tom Waldrop told eWEEK.

Anyone who knows the master key can generate keys, which “destroys both of the security properties that HDCP is supposed to provide”, blogged Ed Felten, director of the Centre for Information Technology Policy at Princeton University.

“HDCP encryption is no longer effective because an eavesdropper who sees the initial handshake can use keygen to determine the parties’ private keys, thereby allowing the eavesdropper to determine the encryption key that protects the communication,” Felten wrote. “HDCP no longer guarantees that participating devices are licensed, because a maker of unlicensed devices can use keygen to create mathematically correct public/private key pairs.”

Waldrop said that in order for someone to use the device keys, “they also would have to find a way to design those into some kind of hardware”.

Legal action

“Build a box, make a chip that implements it… for all practical purposes that’s what would have to be done in most cases that can be conceived of, and those things aren’t trivial,” the spokesperson said.

Waldrop added that the company would pursue legal action if need be to protect its intellectual property.

“Should someone use this published information to create a circumvention device there are definitely enforcement actions that could be taken… we would avail ourselves of the legal remedies as appropriate at our choice,” he said.

Brian Prince eWEEK USA 2014. Ziff Davis Enterprise Inc. All Rights Reserved

Recent Posts

Apple, Google Mobile Ecosystems Should Be Investigated, CMA Told

CMA receives 'provisional recommendation' from independent inquiry that Apple,Google mobile ecosystem needs investigation

4 hours ago

Australia Rejects Elon Musk Claim About Social Media Ban For Under-16s

Government minister flatly rejects Elon Musk's “unsurprising” allegation that Australian government seeks control of Internet…

7 hours ago

Northvolt Files For Bankruptcy Protection In US

Northvolt files for Chapter 11 bankruptcy protection in the United States, and CEO and co-founder…

9 hours ago

UK’s CMA Readies Cloud Sector “Behavioural” Remedies – Report

Targetting AWS, Microsoft? British competition regulator soon to announce “behavioural” remedies for cloud sector

1 day ago

Former Policy Boss At X, Nick Pickles, Joins Sam Altman Venture

Move to Elon Musk rival. Former senior executive at X joins Sam Altman's venture formerly…

1 day ago

Bitcoin Rises Above $96,000 Amid Trump Optimism

Bitcoin price rises towards $100,000, amid investor optimism of friendlier US regulatory landscape under Donald…

1 day ago