Jump to content

SafeDisc: Difference between revisions

From Wikipedia, the free encyclopedia
Content deleted Content added
Djonesuk (talk | contribs)
Windows 10 section
m SafeDisc driver vulnerabilities: fixed non-standard character
Line 87: Line 87:
The current SafeDisc version is Version 4. As of November 2006, DVDs use SafeDisc v4.70
The current SafeDisc version is Version 4. As of November 2006, DVDs use SafeDisc v4.70


==SafeDisс driver vulnerabilities==
==SafeDisc driver vulnerabilities==
On November 7, 2007 Microsoft stated that "there is vulnerability in Macrovision SECDRV.SYS driver <ref>[http://www.microsoft.com/technet/security/advisory/944653.mspx vulnerability in Macrovision SafeDisc SECDRV.SYS driver]</ref> on Windows and it could allow elevation of privilege. This vulnerability was patched by Microsoft on December 11, 2007 <ref>[http://www.microsoft.com/technet/security/Bulletin/MS07-067.mspx Vulnerability in Macrovision Driver Could Allow Local Elevation of Privilege (944653)]</ref> This vulnerability does not affect Windows Vista. The driver, secdrv.sys, is used by games which use Macrovision SafeDisc. Without the driver, games with SafeDisc protection would be unable to play on Windows".
On November 7, 2007 Microsoft stated that "there is vulnerability in Macrovision SECDRV.SYS driver <ref>[http://www.microsoft.com/technet/security/advisory/944653.mspx vulnerability in Macrovision SafeDisc SECDRV.SYS driver]</ref> on Windows and it could allow elevation of privilege. This vulnerability was patched by Microsoft on December 11, 2007 <ref>[http://www.microsoft.com/technet/security/Bulletin/MS07-067.mspx Vulnerability in Macrovision Driver Could Allow Local Elevation of Privilege (944653)]</ref> This vulnerability does not affect Windows Vista. The driver, secdrv.sys, is used by games which use Macrovision SafeDisc. Without the driver, games with SafeDisc protection would be unable to play on Windows".



Revision as of 05:50, 24 August 2015

SafeDisc
Developer(s)Macrovision Corporation
Operating systemMicrosoft Windows
Platformx86
Available inEnglish
TypeCopy protection

SafeDisc is a copy protection program for Microsoft Windows applications and games that are distributed on optical disc. Created by Macrovision Corporation, it aims to hinder unauthorized disc duplication.

Although the stated use is to prevent piracy, many, including the Electronic Frontier Foundation, believe it is used to restrict one's fair-use rights.[1][2]

History

There have been several editions of SafeDisc over the years. Each one has the goals of making discs harder to copy. The current revision is marketed as SafeDisc Advanced.

The early versions of SafeDisc did not make the discs very difficult to copy. Recent versions 2.9+ can produce discs that are difficult to copy or reverse engineer, requiring specific burners capable of emulating the "weak sectors" and odd data formats that are characteristic of SafeDisc.

Circumvention

Previous versions of SafeDisc were overcome by disc image emulator software such as Daemon Tools and Alcohol 120%. SafeDisc currently blacklists such software, meaning that those who want to use this method must install additional software to cloak the mounter; examples include CureRom and Y.A.S.U.

Another potential attack on SafeDisc is to pull the encrypted application out of the archive it is contained in. All SafeDisc encrypted discs contain an ICD file, an encrypted format used by SafeDisc to ensure that the original CD is loaded. UnSafeDisc circumvents and decrypts SafeDisc encrypted files by opening the ICD file format, decrypting it, and converting it to an EXE file. However, each program requires a specific patch to enable full functionality.

Operation

SafeDisc adds a unique digital signature to the optical media at the time of replication. Each time a SafeDisc-protected program runs, the SafeDisc authenticator performs various security checks and verifies the SafeDisc signature on the optical media. The authentication process takes about 10 to 20 seconds. Once verification has been established, the sequence is complete and the program will start normally. The SafeDisc signature is designed to be difficult to copy or transfer from the original media. (For example, it might change as a result of error correction during the copying process.) Certain multimedia programs are designed to run from the PC's hard drive without accessing files from the program disc after the initial installation. SafeDisc will permit this as long as the consumer retains the original CD or DVD, which is required for authentication each time the program is launched. Failure to place the original disc in the drive when loading the program will prevent validation of the SafeDisc signature.

Windows 10

Shortly after the release of Windows 10, Microsoft announced that games with SafeDisc DRM will not run on its new operating system. Citing security concerns over the software due to the way in which it becomes "deeply embedded" in the system, Microsoft said "That’s where Windows 10 says, 'Sorry'." Supporting SafeDisc could have been a possible loophole for computer viruses to exploit. [3][4]

Version History

SafeDisc (V1)

SafeDisk V1 protected CDs can be recognized by several files on the CD:

  • 00000001.TMP
  • CLCD16.DLL
  • CLCD32.DLL
  • CLOKSPL.EXE
  • DPLAYERX.DLL

And also by the existence of two files <GAME>.EXE and <GAME>.ICD (where <GAME> is replaced with the actual game's name).

The EXE executable is only a loader which decrypts and loads the protected game executable in the encrypted ICD file.

The initial version of SafeDisc was easy for home users and professional duplicators alike to copy, due to the fact that the ICD file can be decrypted and converted into an EXE file.

SafeDisc (V2)

The following files should exist on every original CD:

  • 00000001.TMP
  • 00000002.TMP (not always present)

The loader file (<GAME>.EXE) is now integrated into the main executable, making the <GAME>.ICD file obsolete. Also the CLOKSPL.EXE file, which was present in SafeDisc v1, no longer exists.

The SD2 version can be found inside the <GAME>.EXE file through its string: "BoG_ *90.0&!! Yy>", followed by three unsigned longs, these are the version, subversion and revision numbers (in hex). When making a backup, read errors will be encountered between sectors 806-10663.

The protection also has "weak" sectors, introduced with this version, which causes synchronization problems with certain CD-Writers. Digital signatures are still present in this version. But this has no effect on disc images mounted in Daemon Tools or similar programs. In addition, SafeDisc Version 2.50 added ATIP detection making it impossible to use a copy in a burner unless software that masks this is used (CloneCD has the ability to do this.[5]) SafeDisc Versions 2.90 and above make burning copies more difficult requiring burners that are capable of burning the "weak sectors"; these drives are uncommon. However, there are software solutions that eliminate the need for specialized hardware.[6]

SafeDisc (V3)

SafeDisc v3 uses a key to encrypt the main executable (EXE or DLL) and creates a corresponding digital signature which is added to the CD-ROM/DVD-ROM when they are replicated. The size of the digital signature varies from 3 to 20 MB depending how good the encryption must be. The authentication process takes about 10 to 20 seconds.

SafeDisc v3 is capable of encrypting multiple executables over one or more CDs/DVDs, as long as the executables are encrypted with the same key and the digital signature is added to each media. SafeDisc v3 supports Virtual Drives as long as the original CD/DVD is available. Once the CD has been authenticated the game should continue to run from the virtual drive, provided the virtual drive software has not been blacklisted.

CloneCD is able to make fair use copies of V3.[7]

SafeDisc (V4)

The current SafeDisc version is Version 4. As of November 2006, DVDs use SafeDisc v4.70

SafeDisc driver vulnerabilities

On November 7, 2007 Microsoft stated that "there is vulnerability in Macrovision SECDRV.SYS driver [8] on Windows and it could allow elevation of privilege. This vulnerability was patched by Microsoft on December 11, 2007 [9] This vulnerability does not affect Windows Vista. The driver, secdrv.sys, is used by games which use Macrovision SafeDisc. Without the driver, games with SafeDisc protection would be unable to play on Windows".

See also

References