German researchers crack Intel's Blu-ray encryption technology using a $260 computer board kit. How much does it cost to crack Blu-ray encryption? Not much, apparently: Researchers at the Secure Hardware Group of Germany’s Ruhr University of Bochum (RUB) have cracked Intel’s encryption protocol protecting Blu-ray discs and other HD media using a $267 custom board.When you watch a Blu-ray on your TV or computer, Intel’s High-bandwidth Digital Content Protection (HDCP) protocol is there to encrypt and copy-protect the HD channel. The entertainment industry has used the protocol for nearly a decade to prevent users from copying and pirating movies and games. The technology also found its way to any display that uses a DVI, HDMI, DisplayPort and other connections.Hackers cracked the HDCP master key in September 2010; at the time, Intel wrote it off as a minor threat, as a person would have to “make a computer chip of their own” to actually use the code, according to Fox News. Well, the RUB researchers found another way.To crack Intel’s HDCP encryption, the researchers used a man-in-the-middle (MITM) attack with an inexpensive field programmable gate array (FPGA) board. The build used an ATLYS board from Digilent, a HDMI port equipped Xilinx Spartan-6 FPGA, and a serial RS232 port for communication. The board was able to manipulate and decode the communication between the Blu-ray player and the HDTV without being detected. There may be legal implications to circumventing copyright protection, but the researchers’ intent was to never create a pirating process, because the pirates already have figured out much simpler methods.“Rather, our intention was to fundamentally investigate the safety of the HDCP system and to financially assess the actual cost for the complete knockout,” said Tim Gneysu, a professor of Electrical Engineering and Information Technology at RUB, in a press release. “The fact that we have achieved our goal in a degree thesis and with material costs of approximately 200 Euro[s] definitely does not speak for the safety of the current HDCP system.” [Informationsdienst Wissenschaft via The H Security, RegHardware, Engadget]Like this? You might also enjoy…Siri Can Unlock Your Car, Can’t Drive It Just YetGeekBytes: Thanksgiving Turkey, Tesla Coils, and Taking PhotosThe Cake Is a Lie? Fine, I’ll Take These Portal LED Flashlights Instead Related content feature Cybersecurity startups to watch for in 2023 These startups are jumping in where most established security vendors have yet to go. By CSO Staff Sep 29, 2023 19 mins CSO and CISO CSO and CISO C-Suite news analysis Companies are already feeling the pressure from upcoming US SEC cyber rules New Securities and Exchange Commission cyber incident reporting rules don't kick in until December, but experts say they highlight the need for greater collaboration between CISOs and the C-suite By Cynthia Brumfield Sep 28, 2023 6 mins Regulation Data Breach Financial Services Industry news UK data regulator warns that data breaches put abuse victims’ lives at risk The UK Information Commissioner’s Office has reprimanded seven organizations in the past 14 months for data breaches affecting victims of domestic abuse. By Michael Hill Sep 28, 2023 3 mins Electronic Health Records Data Breach Government news EchoMark releases watermarking solution to secure private communications, detect insider threats Enterprise-grade software embeds AI-driven, forensic watermarking in emails and documents to pinpoint potential insider risks By Michael Hill Sep 28, 2023 4 mins Communications Security Threat and Vulnerability Management Security Software Podcasts Videos Resources Events SUBSCRIBE TO OUR NEWSLETTER From our editors straight to your inbox Get started by entering your email address below. Please enter a valid email address Subscribe