Free the mouse Replay AuthCtl
Home | Changes | Index | Search | Go
The registry entries SysConfig/AuthCtl/Valid and SysConfig/AuthCtl/ValidSig2 are used in combination to validate the contents of the SysConfig/Auth subtree.

Valid is an md5hash of the unit serial number, the unit ISC, the unit OEM, and the entire SysConfig/Auth tree in parenthesised form. ValidSig2? is then a ElGamal? signature of Valid.

For instance, on a 4000 (where the ISC and OEM are both 0), the md5hash is taken of a body of text similar to: 

RTV4080K1AA5000149                                                              
0                                                                               
0                                                                               
(                                                                               
  'Activated' N '1'                                                             
  'Registered' N '0'                                                            
  'RegisteredMyReplayTV' N '1'                                                  
  ChannelGuide (                                                                
   OK (                                                                         
    'Eff' N '0'                                                                 
    'Exp' N '0'                                                                 
    'Auth' N '1'                                                                
   )                                                                            
  )                                                                             
  ReplayGuide (                                                                 
   OK (                                                                         
    'Eff' N '0'                                                                 
    'Exp' N '0'                                                                 
    'Auth' N '1'                                                                
   )                                                                            
  )                                                                             
  Zones (                                                                       
   OK (                                                                         
    'Eff' N '0'                                                                 
    'Exp' N '0'                                                                 
    'Auth' N '1'                                                                
   )                                                                            
  )                                                                             
  View (                                                                        
   OK (                                                                         
    'Eff' N '0'                                                                 
    'Exp' N '0'                                                                 
    'Auth' N '1'                                                                
   )                                                                            
  )                                                                             
  Record (                                                                      
   OK (                                                                         
    'Eff' N '0'                                                                 
    'Exp' N '0'                                                                 
    'Auth' N '1'                                                                
   )                                                                            
  )                                                                             
)

The text that's actually used has no whitespace, either horizontal or vertical -- it starts out 

RTV4080K1AA50014900('Activated'N'1''Registered'N'0'
and continues.

-- ToddLarason - 22 Jun 2002

If the md5hash doesn't match the Auth tree, or the signature doesn't match the md5hash, it's treated as if there's no authorization available, and the unit is disabled until a network connection is made and a valid auth tree can be retrieved.

-- ToddLarason - 10 Dec 2002


Your post will appear before this form in chronological order (newest at bottom)

Topic AuthCtl . { Edit | Attach | Ref-By | Printable | Diffs | r1.3 | > | r1.2 | > | r1.1 | More }
Revision r1.3 - 01 Apr 2003 - 04:27 GMT - TWikiGuest
Parents: WebHome > RnsProtocol > RnsAuth 		Copyright © 2001 by the contributing authors. All material on this collaboration tool is the property of the contributing authors.
Ideas, requests, problems regarding TWiki? Send feedback.