90w ago - It's been awhile since the last IDPS update, and today I've created this PS3 IDPS Viewer homebrew application based on research I'm doing and had not planned to release the tool out yet, but if someone needs it here it is (Thanks to J-Martin for the logo).
When the program starts you will see the typical intro screen, if you choose "Yes" you will see the data from your PS3, if sounds three beeps indicates that it was not possible dump and show the error message, and if all went well sounds a beep and you are able to see the data.
Automatically saves the IDPS in dev_hdd0/IDPS.bin, you must open it with a hex editor and look hexadecimal values, for example (IDPS false, I will not reveal my IDPS):
00 00 00 01 00 85 00 05 87 15 A4 4D 47 64 F6 AA
The IDPS in this case would be: 00 00 00 01 00 85 00 May 87 47 64 15 A4 F6 4D AA
It has been tested on PS3 FAT, SLIM should work perfectly in also.
Finally, in related news PlayStation 3 developer naehrwert has recently blogged (nwert.wordpress.com/2011/12/24/individual-infos/) about PS3 Individual Infos, to quote:
One of the PS3′s console specific cryptography works as follows:
At factory time there is a console specific key generated, probably from a private constant value and a console specific seed. Maybe that’s the key used for encrypting bootldr and metldr. Fact is, that metldr stores another console specific keyset (key/iv) to LS offset 0x00000.
That keyset is probably calculated from the first one. At factory time the isolated root keyset (how I call it) is used to encrypt the console’s “Individual Infos”, like eEID. But not the whole eEID is encrypted the same way, special seeds are used to calculate key/iv pairs for the different sections.
And not even that is true for every eEID section, because for e.g. EID0 another step is needed to generate the final section key(set). Each of the isolated modules using such an “Individual Info” has a special section that isoldr uses to generate the derived key(set)s.
But the generation works in a way, that the section data is encrypted with aes-cbc using the isolated root keyset, so it is not possible to calculate the isolated root keyset back from the derived key(set)s, because aes shouldn’t allow a known plaintext attack.
So far I can decrypt some of EID0′s sections, EID1, EID2 and EID4. EID5 encryption should be similar to EID0′s but I lack the generation keys for that one.
Stay tuned for more PS3 Hacks and PS3 CFW news, follow us on Twitter and be sure to drop by the PS3 Hacks and PS3 Custom Firmware Forums for the latest PlayStation 3 scene updates and homebrew releases!
sony can read pretty much anything they want. everytime you connect the ps3 to internet (NB: internet, non psn) it automatically uploads the log files
these files contains the all ps3 activity, sony's fw are 175MB of code (compressed) and they could put some checker everywhere in the firmware, if one of these checks finds out that your ps3 is running a non-original firmware sony'll know it.
the only thing we can do is locate these checks and find out a way to bypass all of them
Thanks for your information, Brenza! Anyway, it sounds too complicated, risky and useless right now as you said.
I was never really interested in playing online, and I think my PS3 was banned when I went online just to use the Youtube app and launched MM after... I was wondering, as the French guys said "CFW consoles connecting to PSN are too easily spotted", if anyone knows exactly what Sony can see and if a PS3 can really be stealthty in the future. How is the CFW online status today? Is it a matter of time to be banned or is there no way to be unnoticed?
1) Decrypt the whole eEID from the flash using the per_console_key_1 and the various sub-section keys (eid0, eid1, eid2... these keys can be obtained using the pck1 so you won't have any problem to retrieve them)
2) Replace the IDPS in the decrypted eid0 and eid5
3) Re-encrypt all the stuff and write it back to the flash
4) Perform a remarry (i think you might be able to fix the eid4 and update the bd-key directly via pc but i never tried it)
NB: this practice not so hard and it DOES NOT allow to to play online with CFW, you would get banned again and again... do not try this if you plan to stay on cfw, it's useless!!!
You should also be awared that changing the console's idps will cause lot of troubles with your savegames and throphy decryption / syncronization.
Oh, and unbanning the console won't OBVIOUSLY allow to unban your SEN account.
oh, i forgot it.. it can also be done automatically via Factory Service Mode (currently only on 3.55 and lower as the required sig file hash has been revoked in highter firmwares)
You just need ObjectiveSuites and a valid request_idps file (that we can generate "easily" with the info HERE)
And here's a few personal notes:
1) this practice not so hard and it DOES NOT allow to to play online with CFW, you would get banned again and again... do not try this if you plan to stay on cfw, it's useless!!!
2) you obviously will not be able to unban yous SEN account
3) changing the idps will cause troubles with tour save\trophy files (you should be able to resign them properly using aldo's application)
This process deals with modification in the flash memory of your PS3. So beware of the risk involved. As you will be the one responsible for any damages.
1 - It’s free.
2 - It does not provide for IDPS.
3 - 1 change per member (archiving R_K to control all business)
4 - no requirement to have an ODE or another to benefit from this service.
5 - Do not buy IDPS! , but get it by your own means. It does not provide a repair service or any failure or brick If you do not have access to PSN / SEN after our intervention, you you probably have stolen your IDPS, we test the validity of IDPS before making the change.
6 - You do not store the IDPS valid for use and even less for
7 - No, not the service sony unbanned person a simple phone call, this is totally false.
8 - No, it is not a simple change with a hex editor, and it does not
change enough to IDPS only on known offsets.
To start here are the essential conditions to be fulfilled before you make the final change of IDPS:
1 - Have their console banned from PSN
2 - console already be hacked (CFW)
3 - have a valid IDPS to provide for replacement
If you do not meet any of these conditions, then it is no need to go further... however if all conditions are met then we will be able to do something for you, but before that take the time to read all the explanations below!
PS3 IDPS FAQ:
What is to Proj3ct IDPS?
To de-ban your console SEN / PSN actually modifying the flash memory of it.
How do I know if it is my PSN account or if my console ID that is banned?
If you get this message to the PSN sign: “Access denied or temporarily suspended for this system,” is that your console ID banned.
To which PS3 models are targeted modification of ID with IDPS Proj3ct?
For all models Fat and Slim CFW (before 3000 series).
Who is this service free of IDPS change?
Everyone has provided to meet the three key points above, nor any ODE Flasher is asked to make the change.
Why Does not provide you IDPS?
Just for 2 reasons: The first is that for the time being we do not yet generate non-original identifiers so they must find true and valid they are rare and valuable, however we work in progress to try to remedy this problem... and the second, CFW consoles connecting to PSN are too easily spotted and can not afford to lose identifiers for a few hours / days of games online.
Why Proj3ct IDPS is not distributed freely?
Because the conversion of the dump is difficult and requires a good knowledge in this field, any approximation leads directly onto a brick your console, but also to avoid unscrupulous pharmacies that will make their business to make money with our work, we hope that it is Free for the community and we will offer you this service. s
Secondly, because this change make public console could seriously undermine all users PS3 OFW, and it is only this reason that motivated the choice of delivery method!
How it’s gonna happen to change definitely IDPS?
1) Visit in [APPLICATION] IDPS PROJ3CT (ps-addict.fr/forum/post96895.html#p96895) to put your formal request for change of IDPS, stating:
PS3 Slim 320 GB / Fat 40 gb, etc. ...
Model: CECH .....
Level of knowledge PS3 (beginner - expert - expert)
2) Wait for an consideration answer of your request.
3) After acceptance of your application to the post in question, you can send your items BUT only in MP to Labuseor Raymanvtwo the following files:
Dump Your conducted with MM
Your IDPS (HS recovered on a console, for example)
A picture of your system properties in Multiman
Note: you will find the method and tools to recover these different elements in the [TUTORIAL] IDPS PROJ3CT (ps-addict.fr/forum/post96894.html#p96894).
4) We check first the actual validity of your IDPS then proceed to the actual change of the IDPS in your dump. We send it back within 2 to 4 days max MP.
5) You re-flash your PS3 with Multiman to the dump you have recovered.
6) You still have to format your PS3 to erase all traces using a CFW and you can now enter the OFW update, your console is banned from de-SEN / PSN! attention: any use of PSN CFW after the de-banning your console to deliver in the same situation a few hours / days later... and I recall that we do not make one final change by console! Enjoy!
Finally, below is a brief guide from Abkarino as follows:
1 - Dump you NAND/NOR flash using a memDump tool or Hardware flasher if you have a higher firmware.
2 - Drag this dump into Request IDPS generator tool to generate the request_idps.txt file.
3 - Set your PC IP Address to: 192.168.0.100 and sub net mask to 255.255.255.0.
4 - Enter a FSM using any dongle/software method you like.
5 - Connect your PS3 to your PC directly using Ethernet cable.
6 - Find the old leaked CEX2DEX conversion tools that contains ObjectiveSuite-SetIDPS.
7 - copy all files from conversion folder into flash drive and put it in the right USB slot in your PS3.
8 - in your PC start copy the generated request_idps.txt into the TEMP folder inside the ObjectiveSuite-SetIDPS folder.
9 - Start ObjectiveSuite.exe then power up your PS3.
10 - Wait for about 1 min and you will see a "PASS" message in ObjectiveSuite.
11 - Now turn off your console.
12 - Flash any 3.55 CFW DEX.
13 - While in FSM remarry your BD Drive using 3.30 DEX PUP + 3.55 Remarry tools from Wiki.
14 - Exit from FSM and now you have a fully functional DEX machine.
From eussNL via IRC: patch SSL, use REQUEST IDPS Generator, lay back bored (since what happens with SetIDPS isn't really a true conversion, because you just write your own EID to the NOR/NAND).