Hmmm, im going to stop my hunt then, I searched 19% of the keyspace, but it sounds like im wasting time here. Has anyone had any luck or ideas on how to dump the 256mbit/ 8meg ram? Ive got no ideas on even trying to get the ram out of there. Hehe except with a hammer... ok later im going to keep at it. -- Jeremy
-----Original Message----- From: Emmanuel Fleury [mailto:[EMAIL PROTECTED] Sent: Thursday, September 27, 2007 10:20 PM To: Hardware and developpement mailing list. Subject: Re: [Linux4nano-dev] Update to rc4 key search (optimized) mat h wrote: > ok, just give me a bell if you need cpu power. > > Anyway what makes you so sure that the key is RC4? It's not. We have some good clues against it. Comparing several consecutive encrypted firmwares show us that the same key is used each time. In the case of an RC4 (or any stream cipher scheme), it would mean that we could have some statistical properties poping out when XORing of two encrypted firmwares (namely we should see something similar to the statistical property of an ARM binary... As Serpilliere did mention it, ARM binaries have very specific statistical properties (on the 'command' part)). We tried and nothing came out from this, which means that it's very likely a block cipher scheme (with a fixed key). Regards -- Emmanuel Fleury I do not fear computers. I fear the lack of them. -- Isaac Asimov _______________________________________________ Linux4nano-dev mailing list [email protected] https://mail.gna.org/listinfo/linux4nano-dev http://www.linux4nano.org
