MPEG-CENC: Defective by Specification
by David “retr0id” Buchanan
Phrack Magazine Issue 71, article 6
https://phrack.org/issues/71/6.html
Remark |
---|
“DRM is defective by design” |
DeCNC |
DRM |
encryption without authentication |
encryption |
h264 (AVC) |
h265 (HEVC) |
paywalled by ISO |
video streaming |
codec |
Content Decryption Module |
license acquisition |
CENC - common encryption |
“the analog hole” |
camrip |
digitally recording the HDMI port |
video decompression |
hardware video encoder |
exfiltrating content keys |
exfiltrating CDM secrets |
key material |
obfuscation |
content key provisioning |
cryptographic side-channel attacks |
archivist |
WEBDL |
WEBRip |
Encrypted Media Extensions (EME) |
Media Source Extensions (MSE) |
HTML <video> elements |
ClearKey “DRM” |
black box |
“Steal This Movie: Automatically Bypassing DRM Protection in Streaming Media Services |
I_PCM |
AES_CTR |
XOR |
ciphertext |
Network Abstraction Layer (NAL) |
Chroma subsampling |
RGB/YUV triples |
Limited Range Color |
Coding Tree Units (CTU) |
libx264 |
kvazaar |
Python |
pixel |
mp4box |
bento4 |
metadata |
Firefox |
Chromium |
“The H.264 Advanced Video Compression Standard” book, Iaine E, Richardson |
pymp4 |
torrent |