Media Key Block

Last updated December 23, 2022

The Media Key Block (MKB) is one of the keys included inside the copying protection system (DRM) AACS. This system is used to prevent Blu-ray and HD DVD formats from being copied. The system was developed by companies from the film industry and the electronics industry including IBM, Intel, Microsoft, Matsushita (Panasonic), Sony, Toshiba, The Walt Disney Company and Warner Bros.

The MKB key is found in the physical support (the disc) together with the content of the disc encrypted. The MKB has the function of validating the reproduction devices on which the disc is being played and obtaining, from the devices codes, the key that will allow the decryption of the disc content. That is the Media Key ( $K_{m}$ ). Since August 2022^[ref], version 78 has been the most recent MKB version.^[1]

How it works

Blu-Ray or HD-DVD have as content the encrypted data (usually video), the Volume ID (VID), the Encrypted Title Key(s) and the MKB. The MKB is also found encrypted in the disc to prevent it from being extracted off the disc and being manipulated and/or reproduced by another non authorized device.

The reproduction device will have available its own keys, uniques for each model, called Device Keys. These keys are conceded by the AACS organization. In the moment of the reproduction, one of these keys will decrypt the MKB contained on the disc and as a result of this process we obtain the Media key.

The Media key is combined with the VID (Volume ID) and as a result we obtain the Volume Unique Key ( $K_{vu}$ ). With the $K_{vu}$ we are able to decrypt the Encrypted Title Key and obtain the Title keys which finally allows to decrypt the content of the disc and view it.^[2]

This way the system can prevent contents from being viewed in devices that have not been authorized. Therefore, the system allows modifying the MKB in future relaunch of a determined content in order to select the devices in which this content can be viewed.

Key structure

Even though it seems a simple mechanism the MKB key which is found in the physical support of the disc follows a complex structure. The MKB is distributed in blocks that contain the version of the Media key, the list of devices that have been revoked, a field to authenticate the MKB, and other fields that specify parameters corresponding to the decrypting algorithm and define the structure of the own Media Key and also the Media key itself.

The MKB itself is found inside the field Media Key Data Record and has a variable length but it is always a multiple of 4 bytes.^[3]

Advantages and disadvantages

Many consumer associations have complained against this system since it can lead to a situation where physical devices cannot reproduce contents even though they do not infringe any intellectual property. This situation can be achieved either by trying to reproduce some content in old devices, therefore not certified by the AACS, or because the device model has been disallowed by AACS, as a result all the owners of that device model will not be able to view contents encrypted with the MKB.

This situation has become even worse with the recent publication in multiple web sites of the Media Key, that is, the key that allows decrypting the Volume ID^[4] and at the same time, the encrypted content, without the need of using a certified device by the AACS or a valid MKB. This is especially critical because nowadays the Volume ID is the same in all the Blu-ray or HD-DVDs with equal content.

Related Research Articles

A disk image, in computing, is a computer file containing the contents and structure of a disk volume or of an entire data storage device, such as a hard disk drive, tape drive, floppy disk, optical disc, or USB flash drive. A disk image is usually made by creating a sector-by-sector copy of the source medium, thereby perfectly replicating the structure and contents of a storage device independent of the file system. Depending on the disk image format, a disk image may span one or more computer files.

DVD-Audio is a digital format for delivering high-fidelity audio content on a DVD. DVD-Audio uses most of the storage on the disc for high-quality audio and is not intended to be a video delivery format.

High-bandwidth Digital Content Protection (HDCP) is a form of digital copy protection developed by Intel Corporation to prevent copying of digital audio and video content as it travels across connections. Types of connections include DisplayPort (DP), Digital Visual Interface (DVI), and High-Definition Multimedia Interface (HDMI), as well as less popular or now deprecated protocols like Gigabit Video Interface (GVIF) and Unified Display Interface (UDI).

VOB is the container format in DVD-Video media. VOB can contain digital video, digital audio, subtitles, DVD menus and navigation contents multiplexed together into a stream form. Files in VOB format may be encrypted.

Broadcast encryption is the cryptographic problem of delivering encrypted content over a broadcast channel in such a way that only qualified users can decrypt the content. The challenge arises from the requirement that the set of qualified users can change in each broadcast emission, and therefore revocation of individual users or user groups should be possible using broadcast transmissions, only, and without affecting any remaining users. As efficient revocation is the primary objective of broadcast encryption, solutions are also referred to as revocation schemes.

In computing, ROM Mark or BD-ROM Mark is a serialization technology designed to guard against mass production piracy or the mass duplication and sale of unauthorized copies of pre-recorded Blu-ray Discs. Only licensed BD-ROM manufacturers have access to the equipment that can make these unique ROM Marks, thus allowing authentic BD-ROM media like movies and music to be identified.

BackupHDDVD is a small computer software utility program available in command line and GUI versions which aids in the decryption of commercial HD DVD discs protected by the Advanced Access Content System. It is used to back up discs, often to enable playback on hardware configurations without full support for HDCP. The program's source code was posted online, but no licence information was given.

The Advanced Access Content System (AACS) is a standard for content distribution and digital rights management, intended to restrict access to and copying of the post-DVD generation of optical discs. The specification was publicly released in April 2005 and the standard has been adopted as the access restriction scheme for HD DVD and Blu-ray Disc (BD). It is developed by AACS Licensing Administrator, LLC, a consortium that includes Disney, Intel, Microsoft, Panasonic, Warner Bros., IBM, Toshiba and Sony. AACS has been operating under an "interim agreement" since the final specification has not yet been finalized.

The Blu-ray Disc (BD), often known simply as Blu-ray, is a digital optical disc data storage format. It was invented and developed in 2005 and released on June 20, 2006 worldwide. It is designed to supersede the DVD format, and capable of storing several hours of high-definition video. The main application of Blu-ray is as a medium for video material such as feature films and for the physical distribution of video games for the PlayStation 3, PlayStation 4, PlayStation 5, Xbox One, and Xbox Series X. The name "Blu-ray" refers to the blue laser used to read the disc, which allows information to be stored at a greater density than is possible with the longer-wavelength red laser used for DVDs.

<span class="mw-page-title-main">HD DVD</span> Obsolete optical disc format

HD DVD is an obsolete high-density optical disc format for storing data and playback of high-definition video. Supported principally by Toshiba, HD DVD was envisioned to be the successor to the standard DVD format.

BD+ is a component of the Blu-ray Disc digital rights management system. It was developed by Cryptography Research Inc. and is based on their Self-Protecting Digital Content concept. Its intent was to prevent unauthorized copies of Blu-ray discs and the playback of Blu-ray media using unauthorized devices.

The security of Advanced Access Content System (AACS) has been a subject of discussion amongst security researchers, high definition video enthusiasts, and consumers at large since its inception. A successor to Content Scramble System (CSS), the digital rights management mechanism used by commercial DVDs, AACS was intended to improve upon the design of CSS by addressing flaws which had led to the total circumvention of CSS in 1999. The AACS system relies on a subset difference tree combined with a certificate revocation mechanism to ensure the security of high definition video content in the event of a compromise.

.m2ts is a filename extension used for the Blu-ray disc Audio-Video (BDAV) MPEG-2 Transport Stream (M2TS) container file format. It is used for multiplexing audio, video and other streams. It is based on the MPEG-2 transport stream container. This container format is commonly used for high definition video on Blu-ray Disc and AVCHD.

The Content Scramble System (CSS) is a digital rights management (DRM) and encryption system employed on many commercially produced DVD-Video discs. CSS utilizes a proprietary 40-bit stream cipher algorithm. The system was introduced around 1996 and was first compromised in 1999.

A controversy surrounding the AACS cryptographic key arose in April 2007 when the Motion Picture Association of America and the Advanced Access Content System Licensing Administrator, LLC began issuing cease and desist letters to websites publishing a 128-bit (16-byte) number, represented in hexadecimal as 09 F9 11 02 9D 74 E3 5B D8 41 56 C5 63 56 88 C0, a cryptographic key for HD DVDs and Blu-ray Discs. The letters demanded the immediate removal of the key and any links to it, citing the anti-circumvention provisions of the United States Digital Millennium Copyright Act (DMCA).

Device Keys play a role in the cryptographic key management procedure in the Advanced Access Content System (AACS) specification. This specification defines a method for protecting audiovisual entertainment content, including high-definition content.

Encrypted Title Key is an encrypted key that belongs to anticopy Advanced Access Content System (AACS). This key is included in the Media Key Block system and is an important part of the content protection process of Blu-ray and HD-DVD contents.

<span class="mw-page-title-main">Cinavia</span>

Cinavia, originally called Verance Copy Management System for Audiovisual Content (VCMS/AV), is an analog watermarking and steganography system under development by Verance since 1999, and released in 2010. In conjunction with the existing Advanced Access Content System (AACS) digital rights management (DRM) inclusion of Cinavia watermarking detection support became mandatory for all consumer Blu-ray Disc players from 2012.

A Blu-ray ripper is a computer program that facilitates copying a Blu-ray disc or HD DVDs to a hard disk drive.

References

↑ "Public MKBs". doom9.org forums. 2022-08-02. Retrieved 2022-12-22.
↑ "Recordable Video Book (Rev. 0.91)" (PDF). AACS reference. Archived from the original (PDF) on 2008-09-07. Retrieved 2008-12-07.
↑ "Introduction and Common Cryptographic elements (Rev 0.91)" (PDF). AACS reference. Archived from the original (PDF) on 2012-03-01. Retrieved 2008-12-07.
"Pre-recorded Video Book (Rev 0.92)" (PDF). AACS reference. 2007-10-12. Archived from the original (PDF) on 2008-09-07. Retrieved 2008-12-07.
↑ Martell, Lindsay (2007-01-26). "Blu-ray and HD DVD Encryption Cracked". Archived from the original on 2007-11-03. Retrieved 2008-12-07.
Kaplan, Alexander (2007-04-05). "Illegal Offering of Title/Volume Keys to Circumvent AACS Copyright Protection: hdkeys.com" (PDF).

External links

AACS web page.
Guide to understand AACS.
Introduction and Common Cryptographic Elements. Rev. 0.91.
AACS Technical Overview. 7/2004.

This page is based on this Wikipedia article
Text is available under the CC BY-SA 4.0 license; additional terms may apply.
Images, videos and audio are available under their respective licenses.

[doom9-post1972563-1] "Public MKBs". doom9.org forums. 2022-08-02. Retrieved 2022-12-22.

[2] "Recordable Video Book (Rev. 0.91)" (PDF). AACS reference. Archived from the original (PDF) on 2008-09-07. Retrieved 2008-12-07.

[3] "Introduction and Common Cryptographic elements (Rev 0.91)" (PDF). AACS reference. Archived from the original (PDF) on 2012-03-01. Retrieved 2008-12-07.
"Pre-recorded Video Book (Rev 0.92)" (PDF). AACS reference. 2007-10-12. Archived from the original (PDF) on 2008-09-07. Retrieved 2008-12-07.

[4] Martell, Lindsay (2007-01-26). "Blu-ray and HD DVD Encryption Cracked". Archived from the original on 2007-11-03. Retrieved 2008-12-07.
Kaplan, Alexander (2007-04-05). "Illegal Offering of Title/Volume Keys to Circumvent AACS Copyright Protection: hdkeys.com" (PDF).

[1]

[2]

[3]

[4]