Post: Regarding CFW installation on 3.60+
Options
10-28-2012, 09:21 PM
#1
ericmeltz
Grunt
In 3.56 Sony fixed the metldr exploit (hardware) by wrapping its security around bootldr (hardware)
In 3.60 Sony fixed the ECDSA Algorithm, making the variable which was supposed to be randomly generated work as intended
What does this mean?
The ability to sign files (PUP, PKG, etc...) is lost because of the change of private key (not hardcoded) and the fix of ECDSA prevents us form getting the key again.
TO CLARIFY:
The recent exploit of bootldr (lv0) (hardware, Sony's Final Defense) allow the ability to modify PUPs 3.56+ which is why we are getting 4.21, 4.25, 4.30
BUT since the private key used in the OFW has been changed and is unknown, 3.60+ IS NOT POSSIBLE (Rogero 4.21 and E3 4.30 are still using 3.55 private key which is why you need 3.55)
ECDSA WILL NOT BE CRACKED. If it is, GLOBAL security will be compromised, as many other databases, websites, etc. are using ECDSA
If you need proof or further reading, google ECDSA.
The following 25 users say thank you to ericmeltz for this useful post:
The following user groaned ericmeltz for this awful post:
D
01-17-2013, 07:49 PM
#42
mikedavis1
Keeper
01-20-2013, 10:33 PM
#43
Chris_Reiners
Haxor!
Originally posted by ericmeltz
Trying to keep this as short and understandable as possible. I discuss why installing a modified PUP (CFW) on a OFW of 3.60+ will not happen anytime soon, so don't get your hopes up.
In 3.56 Sony fixed the metldr exploit (hardware) by wrapping its security around bootldr (hardware)
In 3.60 Sony fixed the ECDSA Algorithm, making the variable which was supposed to be randomly generated work as intended
What does this mean?
The ability to sign files (PUP, PKG, etc...) is lost because of the change of private key (not hardcoded) and the fix of ECDSA prevents us form getting the key again.
TO CLARIFY:
The recent exploit of bootldr (lv0) (hardware, Sony's Final Defense) allow the ability to modify PUPs 3.56+ which is why we are getting 4.21, 4.25, 4.30
BUT since the private key used in the OFW has been changed and is unknown, 3.60+ IS NOT POSSIBLE (Rogero 4.21 and E3 4.30 are still using 3.55 private key which is why you need 3.55)
ECDSA WILL NOT BE CRACKED. If it is, GLOBAL security will be compromised, as many other databases, websites, etc. are using ECDSA
If you need proof or further reading, google ECDSA.
In 3.56 Sony fixed the metldr exploit (hardware) by wrapping its security around bootldr (hardware)
In 3.60 Sony fixed the ECDSA Algorithm, making the variable which was supposed to be randomly generated work as intended
What does this mean?
The ability to sign files (PUP, PKG, etc...) is lost because of the change of private key (not hardcoded) and the fix of ECDSA prevents us form getting the key again.
TO CLARIFY:
The recent exploit of bootldr (lv0) (hardware, Sony's Final Defense) allow the ability to modify PUPs 3.56+ which is why we are getting 4.21, 4.25, 4.30
BUT since the private key used in the OFW has been changed and is unknown, 3.60+ IS NOT POSSIBLE (Rogero 4.21 and E3 4.30 are still using 3.55 private key which is why you need 3.55)
ECDSA WILL NOT BE CRACKED. If it is, GLOBAL security will be compromised, as many other databases, websites, etc. are using ECDSA
If you need proof or further reading, google ECDSA.
PSN:KaoZ-XxEasYKilxX
Copyright © 2026, NextGenUpdate.
All Rights Reserved.
