Diablohead said:
So the leaked signing keys are pointless now? I thought the keys gave you the ability to sign packages no problem.
They are not pointless.
I'll try and some everything up (I'm no expert in this so I'll probably get a couple of things wrong).
- Geohot's signed homebrew always uses the same keypairing which Sony have now blacklisted. Another keypairing can be generated and any homebrew signed with this would work on vanilla 3.56 (you would have to install it on 3.55 though as NPDRM keys still haven't leaked). It's likely this will always be the case unless Sony creates a whitelist. However it is not practical as you would not be able to install new homebrew once you upgrade from 3.55.
- 3.56 fixes the ECDSA random number bug. Private keys can no longer be calculated. Public keys can still be found (and already have been).
Private keys = encrypt data
Public keys = decrypt data
The fact Sony fixed this makes no difference to people already on CFW or pre-3.56 OFW as they have everything they need to decrypt and encrypt with old keys.
Additionally fail0verflow's other exploit allowed all the loaders and revoke lists to be downgraded using hardware (very difficult). This cannot be patched by Sony so all PS3's can still use CFW (though it's very inconvenient for anyone on 3.56)
- Signed 3.56 CFW will only work with 3.55 or lower firmware because of the new keys.
- New PSN security means that it will very soon be secure even when 3.56 CFW arrives. (see my post on the last page)
What this means:
- All consoles on virgin 3.56 or higher can't install CFW or homebrew without a downgrade via hardware.
- Homebrew will run on 3.56 or newer once resigned with different keys (but you can only install homebrew on 3.55 or lower)
- CFW 3.56 will eventually arrive but will only be able to be installed on 3.55 or lower.