Digital rights management
The Blu-ray Disc format employs several layers of digital rights management.
AACS decryption process
AACS
Advanced Access Content System (AACS) is a standard for content distribution and digital rights management. It is developed by AS Licensing Administrator, LLC (AACS LA), a consortium that includes Disney, Intel, Microsoft, Matsushita (Panasonic), Warner Bros., IBM, Toshiba and Sony.
Since appearing in devices in 2006, several successful attacks have been made on the format. The first known attack relied on the trusted client problem. In addition, decryption keys have been extracted from a weakly protected player (WinDVD). Since keys can be revoked in newer releases, this is only a temporary attack and new keys must continually be discovered in order to decrypt the latest discs. This cat-and-mouse game has gone through several cycles and as of August 2008 all current AACS decryption keys are available on the Internet.
BD+
BD+ was developed by Cryptography Research Inc. and is based on their concept of Self-Protecting Digital Content. BD+ is effectively a small virtual machine embedded in authorized players. It allows content providers to include executable programs on Blu-ray Discs. Such programs can:
- examine the host environment, to see if the player has been tampered with. Every licensed playback device manufacturer must provide the BD+ licensing authority with memory footprints that identify their devices.
- verify that the player's keys have not been changed.
- execute native code, possibly to patch an otherwise insecure system.
- transform the audio and video output. Parts of the content will not be viewable without letting the BD+-program unscramble it.
If a playback device manufacturer finds that its devices have been hacked, it can potentially release BD+-code that detects and circumvents the vulnerability. These programs can then be included in all new content releases.
The specifications of the BD+ virtual machine are available only to licensed device manufacturers. A list of licensed commercial adopters is available from the BD+ website.
The first titles using BD+ were released in October 2007. Versions of the BD+ protection have been circumvented by various versions of the AnyDVD HD program, including a new version of BD+ released in November 2008, and later cracked by AnyDVD on December 29, 2008.
BD-ROM Mark
BD-ROM Mark is a small amount of cryptographic data that is stored separately from normal Blu-ray Disc data. Bit-by-bit copies that do not replicate the BD-ROM Mark are impossible to decode. A specially licensed piece of hardware is required to insert the ROM-mark into the media during replication. Through licensing of the special hardware element, the BDA believes that it can eliminate the possibility of mass producing BD-ROMs without authorization.