Hacking Question Cant we try to extract the private key with a already existing CFW?

  • Thread starter Deleted User
  • Start date
  • Views 1,668
  • Replies 9
D

Deleted User

Guest
OP
Hey I know that private keys should not accessable for an normal user (except the Playstation 3)
But we already can dump the complete BootRom so shouldn't be a way to extract the private key
and if the Key is splitted anywhere should stand where the splitted strings (or what ever var it is) are
Is this possible?
 
Last edited by ,
G

GothicIII

Well-Known Member
Member
Level 10
Joined
Jan 4, 2015
Messages
831
Trophies
0
Age
36
XP
2,241
Country
Gambia, The
Sumandora said:
Hey I know that private keys should not accessable for an normal user (except the Playstation 3)
But we already can dump the complete BootRom so shouldn't be a way to extract the private key
and if the Key is splitted anywhere should stand where the splitted strings (or what ever var it is) are
Is this possible?
Click to expand...

Short answer: No and you didn't do your homework.

Long answer:
This is not how it works. On PS3 they fucked up random number generation and used the same entropy multiple times. That's why it was possible to recalculate the private key.
Nintendo didn't do this mistake. Per definition it would take a tremendous amount of time with todays hardware to create a valid signature without the private key. If no miracle happens (like screwing up the signature process and leave the private key somewhere behind) it won't be possible to sign anything.
CFW are disabling this layer thats why you can run unsigned code.
 
D

Deleted User

Guest
OP
GothicIII said:
Short answer: No and you didn't do your homework.

Long answer:
This is not how it works. On PS3 they fucked up random number generation and used the same entropy multiple times. That's why it was possible to recalculate the private key.
Nintendo didn't do this mistake. Per definition it would take a tremendous amount of time with todays hardware to create a valid signature without the private key. If no miracle happens (like screwing up the signature process and leave the private key somewhere behind) it won't be possible to sign anything.
CFW are disabling this layer thats why you can run unsigned code.
Click to expand...
thanks and yes i know how the random number gen works on the Playstation (it works... change my mind)
 
B

bailli

Well-Known Member
Member
Level 11
Joined
Oct 16, 2006
Messages
228
Trophies
1
Website
Visit site
XP
2,496
Country
Gambia, The
You don't understand cryptography. When you talk about a private key, you talk about asymmetric or public-key cryptography. The so called private key is meant to never leave some secure environment - in your example some highly secured, probably even offline computer located at Nintendo to do the actual signing.

https://en.wikipedia.org/wiki/Public-key_cryptography
 
  • Like
Reactions: hippy dave
D

Deleted User

Guest
OP
If you want the private key you should go to college and do a dual major in cybersecurity and Japanese. Be a fucking great student always getting top marks. Get a job at Nintendo in Kyoto. Climb up the corporate ladder and when the opportunity arises leak the keys. You will most likely have signed a non-disclosure agreement so you’ll probably get sued and or go to jail.

We will most likely never get the Switch’s private key.
 
The Real Jdbye

The Real Jdbye

*is birb*
Member
Level 23
Joined
Mar 17, 2010
Messages
23,351
Trophies
4
Location
Space
XP
13,940
Country
Norway
Sumandora said:
Hey I know that private keys should not accessable for an normal user (except the Playstation 3)
But we already can dump the complete BootRom so shouldn't be a way to extract the private key
and if the Key is splitted anywhere should stand where the splitted strings (or what ever var it is) are
Is this possible?
Click to expand...
It's in the name, private key. Because it's only used to encrypt, it never needs to leave Nintendo's build server or whatever.
FWIW, quantum computers are very good at brute forcing private keys. Once they become mainstream (if ever), we are going to have to design entirely new encryption algorithms that can't be cracked with a quantum computer.
 
  • Like
Reactions: Deleted User
D

Deleted User

Guest
OP
The Real Jdbye said:
It's in the name, private key. Because it's only used to encrypt, it never needs to leave Nintendo's build server or whatever.
FWIW, quantum computers are very good at brute forcing private keys. Once they become mainstream (if ever), we are going to have to design entirely new encryption algorithms that can't be cracked with a quantum computer.
Click to expand...
Putting it that way, maybe I'll have to eat my words some day. By that time the Switch will probably be an obsolete piece of hard which still attracts attention from hardcore fans, similar to the Game Boy today. We might see new Switch games released by fans decades in a few decades.
 
B

blahblah

Well-Known Member
Member
Level 8
Joined
May 16, 2018
Messages
1,132
Trophies
0
Age
35
XP
1,472
Country
United States
Google Public/Private Cryptography. You've been told before to stop making threads about stuff like this because you know no where near enough to intelligently post about the subject.

EDIT: In this thread: https://gbatemp.net/threads/unban-concept-certs-question.534413/ you were told to stop. Follow direction already. Stop.
 
Last edited by blahblah,

Site & Scene News

Go to forum More news

Popular threads in this forum

Emulation Homebrew  duckstation for Switch

Can you trade in a banned switch for an unbanned one?

Why is Atmosphere so dominant?

Crosscode Hacking thread

Hacking Misc Tutorial  Eiyuden Chronicle Hundred Heroes save editing

Hacking  Weird findings from that DQ trilogy switch port

Migswitch backups without certificate files

switch change sd card, but android start fail

General chit-chat
Help Users
    Xdqwerty @ Xdqwerty: https://youtu.be/5eLWoy0fFkc?si=1vvQ_2zAUlF1ThoD