Soooo, after a few evenings of work, I've 100% broken Widevine L3 DRM. Their Whitebox AES-128 implementation is vulnerable to the well-studied DFA attack, which can be used to recover the original key. Then you can decrypt the MPEG-CENC streams with plain old ffmpeg...
-
Show this thread
-
Replying to @David3141593 @bofh453
now break L1 by extracting the intermediate keys from any device with a vulnerable TZ implementation or boot ROM
4 replies 3 retweets 61 likes
( ͡° ͜ʖ ͡°)
4:20 PM - 2 Jan 2019
0 replies
2 retweets
38 likes
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.