Starting with firmware version 3.60 loader keys have been encrypted. Besides that, there is an implementation of the cryptographic algorithm which is used to encrypt/decrypt lv1ldr from lv0 and root scramble key at the SPU side.
- On the PHAT consoles AES-CBC-192 is used for HDD encryption and AES-CBC-128 for VFLASH encryption.
- So no tweak and tweak key here. Each sector is encrypted with the same zeroed IV.
- VFLASH is encrypted once with ENCDEC key and zeroed IV!
- Data key is of size 32 bytes but only the first 24 bytes are used for HDD and 16 bytes for VFLASH.
What does this mean?
It will help others to 'decrypt' the real keys that in the end are used for making MFWs.
About HDD encryption?
In the longrun that means you could be able to dump your drivekeys and decrypt the hdd on the PC.
So possibly altering the dev files and reinserting them into the console.
Are 3K3Y and COBRA out?