(adsbygoogle = window.adsbygoogle || []).push({}); Hacker says PS3 can never be fully re-secured due to “kindergarten mistakes” in system security.

Sony’s recently-released PlayStation 3 system software 3.56, which was solely intended to stop hackers and pirates in their tracks, only presents a “minor drawback” to the scene.

The new firmware, released last week, was quickly decrypted, but Sony has done enough to prevent installation of custom firmware, homebrew and piracy on PS3s that have updated to 3.56. Mathieu Hervais, a respected voice in the homebrew scene who prefers the term “reverse engineer” to “hacker”, told us that while Sony has done all it could in response, it can never fully re-secure its system.

“3.56 was more of a patch to save what’s left to be saved,” he says. “Indeed Sony fixed everything that could have been fixed. The reality though is that this is only a minor drawback.”

The new firmware update includes updated security keys, including the random element that was absent from the original keys, which lead to the system being hacked. New games will be signed with these keys, and Sony has produced a whitelist of approved software – essentially PS3’s existing games library – that is allowed to run with only the original keys. Sony evidently believes this will re-secure its console, but Hervais believes the opposite.

“New keys were introduced in the 3.56 Firmware and code that is not whitelisted is now forced to use those keys,” he continues. “However, since the boot chain integrity is compromised it’s always possible to reprogram externally the NAND/NOR chips (where the firmware code is written to) to run unsigned code again." While Sony can include the new keys in consoles at the manufacturing stage going forward, it is essentially powerless to re-secure the millions of systems it has already sold.

“No matter what they do, a 3.56 (and onward) custom firmware is possible on all PlayStation 3 consoles manufactured so far," says Hervais. "The people Sony hired made several kindergarten mistakes while implementing their security.”

The new firmware release is Sony’s first response in what it told us was to be a “series of network updates” aimed at re-securing the console. Its legal department has been busy too, taking legal action against the hackers, and securing a temporary restraining order against Geohot, the man who published the console’s root keys online.


source EDGE

and someone cares what u say ??? lol :dingding:

I don"t think the guy this guy copy and pasted from truly understands what exactly he is talking about.

never said anyone did but...
You must login or register to view this content.

omg i just downgraded my PS3! :carling:

3.55 -> 3.56

u mean 3.56 -> 3.55 ???

i can believe they added a root kit to 3.56 wtf?
this allows them to run code on signin :dingding:

they are getting smarter but they are still screwed

They can try all they want. They cant stop hackers period.

Ohh i get it lol u are insulting the new update lmao took me a while to click there ::mudkip::pedo: