Sony's removal of the OtherOS from the PlayStation 3 a while back caused a lot of righteous anger
amongst gamers, and highlighted an increasing problem in the new digital age of vendors removing functionality from a product you bought long after you'd paid for it.
Inevitably, this drew the ire of the hacking community, and after several months of hard work it seems that this move has been completely and utterly responsible for the demolishing of all the outstanding security measures on the PlayStation 3. At a recent conference in Berlin called the Chaos Communication Congress
, a team called fail0verflow
has announced that (amongst other exploits), they have uncovered the private signing keys used to sign PlayStation 3 content - turns out Sony didn't use a random number in the right place, which meant they could trivially calculate the private key values.
If you're interested in the gory details, as well as a good summary of the state of console security as it stands now, the fail0verflow presentation is available on YouTube in three parts (one
). It's a pretty interesting talk and worth the watch (~45 minutes).
The practical upshot of their research apparently means that we should soon be seeing dongle-less jailbreaking for the PS3, which will return the ability to run custom code via an OtherOS-esque system.