Post: Regarding CFW installation on 3.60+
Options
10-28-2012, 09:21 PM
#1
ericmeltz
Grunt
In 3.56 Sony fixed the metldr exploit (hardware) by wrapping its security around bootldr (hardware)
In 3.60 Sony fixed the ECDSA Algorithm, making the variable which was supposed to be randomly generated work as intended
What does this mean?
The ability to sign files (PUP, PKG, etc...) is lost because of the change of private key (not hardcoded) and the fix of ECDSA prevents us form getting the key again.
TO CLARIFY:
The recent exploit of bootldr (lv0) (hardware, Sony's Final Defense) allow the ability to modify PUPs 3.56+ which is why we are getting 4.21, 4.25, 4.30
BUT since the private key used in the OFW has been changed and is unknown, 3.60+ IS NOT POSSIBLE (Rogero 4.21 and E3 4.30 are still using 3.55 private key which is why you need 3.55)
ECDSA WILL NOT BE CRACKED. If it is, GLOBAL security will be compromised, as many other databases, websites, etc. are using ECDSA
If you need proof or further reading, google ECDSA.
The following 25 users say thank you to ericmeltz for this useful post:
The following user groaned ericmeltz for this awful post:
10-28-2012, 09:23 PM
#2
DEREKTROTTER
You're Goddamn Right
The following 5 users say thank you to DEREKTROTTER for this useful post:
10-28-2012, 09:29 PM
#3
Xx--AIDAN--xX
One Man Army
10-28-2012, 09:40 PM
#7
MxModz1
Little One
Originally posted by ericmeltz
Trying to keep this as short and understandable as possible. I discuss why installing a modified PUP (CFW) on a OFW of 3.60+ will not happen anytime soon, so don't get your hopes up.
In 3.56 Sony fixed the metldr exploit (hardware) by wrapping its security around bootldr (hardware)
In 3.60 Sony fixed the ECDSA Algorithm, making the variable which was supposed to be randomly generated work as intended
What does this mean?
The ability to sign files (PUP, PKG, etc...) is lost because of the change of private key (not hardcoded) and the fix of ECDSA prevents us form getting the key again.
TO CLARIFY:
The recent exploit of bootldr (lv0) (hardware, Sony's Final Defense) allow the ability to modify PUPs 3.56+ which is why we are getting 4.21, 4.25, 4.30
BUT since the private key used in the OFW has been changed and is unknown, 3.60+ IS NOT POSSIBLE (Rogero 4.21 and E3 4.30 are still using 3.55 private key which is why you need 3.55)
ECDSA WILL NOT BE CRACKED. If it is, GLOBAL security will be compromised, as many other databases, websites, etc. are using ECDSA
If you need proof or further reading, google ECDSA.
In 3.56 Sony fixed the metldr exploit (hardware) by wrapping its security around bootldr (hardware)
In 3.60 Sony fixed the ECDSA Algorithm, making the variable which was supposed to be randomly generated work as intended
What does this mean?
The ability to sign files (PUP, PKG, etc...) is lost because of the change of private key (not hardcoded) and the fix of ECDSA prevents us form getting the key again.
TO CLARIFY:
The recent exploit of bootldr (lv0) (hardware, Sony's Final Defense) allow the ability to modify PUPs 3.56+ which is why we are getting 4.21, 4.25, 4.30
BUT since the private key used in the OFW has been changed and is unknown, 3.60+ IS NOT POSSIBLE (Rogero 4.21 and E3 4.30 are still using 3.55 private key which is why you need 3.55)
ECDSA WILL NOT BE CRACKED. If it is, GLOBAL security will be compromised, as many other databases, websites, etc. are using ECDSA
If you need proof or further reading, google ECDSA.
Originally posted by DEREKTROTTER
this should be stickied, would maybe stop the same questions been asked everyday 
Exactly :y: But im sure they will still ask the same question again xD
3.55 PS3 is getting rare, thats good
10-28-2012, 10:11 PM
#8
RealTimeEditz
I defeated!
10-28-2012, 10:57 PM
#9
Pseudo_Soldier
< ^ > < ^ >
10-28-2012, 11:02 PM
#10
primetime43
Knowledge is power 
Originally posted by ericmeltz
Trying to keep this as short and understandable as possible. I discuss why installing a modified PUP (CFW) on a OFW of 3.60+ will not happen anytime soon, so don't get your hopes up.
In 3.56 Sony fixed the metldr exploit (hardware) by wrapping its security around bootldr (hardware)
In 3.60 Sony fixed the ECDSA Algorithm, making the variable which was supposed to be randomly generated work as intended
What does this mean?
The ability to sign files (PUP, PKG, etc...) is lost because of the change of private key (not hardcoded) and the fix of ECDSA prevents us form getting the key again.
TO CLARIFY:
The recent exploit of bootldr (lv0) (hardware, Sony's Final Defense) allow the ability to modify PUPs 3.56+ which is why we are getting 4.21, 4.25, 4.30
BUT since the private key used in the OFW has been changed and is unknown, 3.60+ IS NOT POSSIBLE (Rogero 4.21 and E3 4.30 are still using 3.55 private key which is why you need 3.55)
ECDSA WILL NOT BE CRACKED. If it is, GLOBAL security will be compromised, as many other databases, websites, etc. are using ECDSA
If you need proof or further reading, google ECDSA.
In 3.56 Sony fixed the metldr exploit (hardware) by wrapping its security around bootldr (hardware)
In 3.60 Sony fixed the ECDSA Algorithm, making the variable which was supposed to be randomly generated work as intended
What does this mean?
The ability to sign files (PUP, PKG, etc...) is lost because of the change of private key (not hardcoded) and the fix of ECDSA prevents us form getting the key again.
TO CLARIFY:
The recent exploit of bootldr (lv0) (hardware, Sony's Final Defense) allow the ability to modify PUPs 3.56+ which is why we are getting 4.21, 4.25, 4.30
BUT since the private key used in the OFW has been changed and is unknown, 3.60+ IS NOT POSSIBLE (Rogero 4.21 and E3 4.30 are still using 3.55 private key which is why you need 3.55)
ECDSA WILL NOT BE CRACKED. If it is, GLOBAL security will be compromised, as many other databases, websites, etc. are using ECDSA
If you need proof or further reading, google ECDSA.
So most likely we will never get the private key again?
Copyright © 2026, NextGenUpdate.
All Rights Reserved.
