N3 hex block with rsa and boxkey

[electronic-gsm]

Quote:

Originally Posted by chef1

post your methods , this will help

For the reasons that we all know it he cannot become a public, because rapid we go to have a new intervention on the part of the supplier

B.R.

[sidsnot]

it was my understanding, (limited as it is) that all 2100 had same rsa ??
if so could an old ,useless to anyone , boxes nvram dump be looked at with no comebacks & then be used to test on a 2100 with known bk & "n3" card ??
or as usual am i way off the mark & it can only be achieved from comparing nvram dump of 2100 before & after n3 card insertion?

[TheCoder]

Quote:

Originally Posted by electronic-gsm

For the reasons that we all know it he cannot become a public, because rapid we go to have a new intervention on the part of the supplier

Its very unlikely for this to happen as it would require a new cam from Kudelski and ALL stb manufacturers licenced to use Nagra would then have to rebuild their firmwares with the new cam and then every single box has to be updated.

Even if it does occur then so what ?

There are so many boxes where its easy to dump stuff that it really doesn't matter what the cam does. It will be dumped and reverse engineered within a very short period of time.

The only danger is if they issue the next generation cards which will likely have a much more secure method of pairing. Whenever that happens any tools you now have will be redundant anyway !

[skyneo]

sids not: As I understand you, yes all nagra receivers have the same way of rsa encryption, and I am 100 % sure that everything it's stored in flash.


this thread is listed on google can we make it private ?

[TheCoder]

Quote:

Originally Posted by sidsnot

it was my understanding, (limited as it is) that all 2100 had same rsa ??

Not really, all boxes have a different rsa pairing modulus. The thing with the 2100 is that it uses a DT08 tier to transfer that modulus and that is encrypted using an algorithm that all 2100's know something about. The modulus for this DT08 decryptor is identical on all 2100's BUT other key parameters used to decrypt the DT08 are different. You obviously require to know a complete keyset to decrypt, not just the modulus !!!

In order to get anywhere with this, you require to know exactly how a DT08 is decrypted to aquire the pairing modulus. I suggest you study some of the N2 dumps in order to understand pairing in all its forms.

Quote:

if so could an old ,useless to anyone , boxes nvram dump be looked at with no comebacks & then be used to test on a 2100 with known bk & "n3" card ??

You will find nothing in the NVRAM, thats not where this stuff lives !

2100's have jtag access anyway though, so you can effectively dump any part of memory with no comeback.

[sidsnot]

loving being pupil again

no tuts req
just pointers
raven ready
raring to go

[jimbo]

Quote:

Originally Posted by electronic-gsm

For the reasons that we all know it he cannot become a public, because rapid we go to have a new intervention on the part of the supplier

B.R.

it seems to me u may be touting for business?

[CG121]

Quote:

Originally Posted by jack08

try UltraEdit i got full ver if need it
ive used this to edit dumps before really good

I thought, ooh I'll update my version...But not with this file, it's infected guys..

[jan1981]

So is there actually a way to crack the N3 coding now or not? I hope so...

btw will try downloading those apps mentioned before here

[cable man]

Quote:

Originally Posted by jan1981

So is there actually a way to crack the N3 coding now or not? I hope so...

btw will try downloading those apps mentioned before here

It will not work, I think this is a joke ??? as you will see people posting stuff like this all over the net and nowt ever comes from it....