Select Page

XBOX 360 hacking has start and XBOX 1 hack flashback

XBOX 360 hacking has start and XBOX 1 hack flashback
The free60 wiki which aim to document ways to have a linux booting on XBOX360 is since 2 weeks online, and has already some interesting info. (some guys are really a lot crazier than me 😉 )
I came one more time to XBOX-linux.org which has a page for describing how the first XBOX was hacked. Very technical but a mus to read for all security geek.

The Hidden Boot Code of the Xbox From Xbox-Linux or "How to fit three bugs in 512 bytes of security code"


Microsoft’s engineers first seem to have thought that the secret key would never be revealed: security by obscurity. This explains why the decrypted code did not get hashed. Once the secret key was known, anyone could decrypt, patch and reencrypt the flash contents.

And how the chain of trust was breaked

The design of the first MCPX was very wrong, and the implementation was catastrophic. The design of the second version was a lot better, but the implementation was not. Without the various security holes (Visor and MIST bugs as well as possibly more) and with a working hash function, the system would have been pretty secure. Encrypting the ROM contents with a secret key, i.e. security by obscurity, simply does not work if the key travels over a bus that can be sniffed.

{mosgoogle}

About The Author

I worked with various Insurances companies across Switzerland on online applications handling billion premium volumes. I love to continuously spark my creativity in many different and challenging open-source projects fueled by my great passion for innovation and blockchain technology.In my technical role as a senior software engineer and Blockchain consultant, I help to define and implement innovative solutions in the scope of both blockchain and traditional products, solutions, and services. I can support the full spectrum of software development activities, starting from analyzing ideas and business cases and up to the production deployment of the solutions.I'm the Founder and CEO of Disruptr GmbH.

Categories