🎮Quiz: The Playstation 3 Hack
aka The Nonce Reuse Attack
Sony uses a private key, typically stored (in an HSM?) at the company's HQ, to mark their Playstation firmwares as valid and unmodified. The PS3 only needs a public key to verify that the signature came from Sony. Normally, this is considered safe; but Sony did a rookie mistake in the implementation of their signing algorithm - they used the same random number to sign everything.
Quiz time
Last updated