| | All You Need To Know About Windows Product Keys | |
| | Author | Message |
---|
korrud Senior SBF
Number of posts : 484 Points : 3 Registration date : 2008-04-15
| Subject: All You Need To Know About Windows Product Keys Sat Jun 14, 2008 8:57 pm | |
| All You Need To Know About Windows Product Keys
Abstract
Microsoft Windows Server 2003 VLK requires a VLK key to install. Commonly, for illegal users, this key is a leaked key, and thousands of piracy users use the same key to install their Windows. The problem is that the piracy users can use the product now, but not forever, because Microsoft would probably include the leaked key list in the further service packs (e.g. Microsoft prohibited several Windows XP VLK keys in service pack 1).
So, it is necessary to install Windows with different keys for different illegal users.
By tracing Windows product key verification program, I successfully extracted the algorithm MS uses (some Public Key Infrastructure), and broke the private key uses to generate product keys.
Validation Process
1. Decode
The following computations are based on this product key:
QUOTE JCF8T-2MG8G-Q6BBK-MQKGT-X3GBB
The character “-“ does not contain any information, so, the MS product key is composed of 25-digit-character. Microsoft only uses “BCDFGHJKMPQRTVWXY2346789” to encode product key, in order to avoid ambiguous characters (e.g. “I” and “1”, “0” and “O”). The quantity of information that a product key contain is at most . To convert a 25-digit key to binary data, we need to
a. convert “JCF8T2MG8GQ6BBKMQKGTX3GBB“ to “6 1 3 22 ......“, where ‘B’=0, ‘C’=1, ‘D’=2 … we call the array “6 1 3 22…” base24[]
b. compute decoded = , the result is: 00 C5 31 77 E8 4D BE 73 2C 55 47 35 BD 8D 01 00 (little-endian)
c. The decoded result can be divided into 12bit + 31bit + 62bit + 9bit, and we call theses 4 parts 12bit: OS Family, 31bit: Hash, 62bit: Signature, and 9bit: Prefix.
2. Verify
If you want to understand what I am talking about in this section, please refer to some Elliptic Curve Cryptography materials. Before verifying a product key, we need to compute the 4 parts mentioned above: OS Family, Hash, Signature, and Prefix.
Microsoft Product-key Identification program uses a public key stored in PIDGEN.DLL’s BINK resource, which is an Elliptic Curve Cryptography public key, which is composed of:
QUOTE p, a, b construct an elliptic curve G(x,y) represents a point on the curve, and this point is so called “generator” K(x,y) represents a point on the curve, and this point is the product of integer k and the generator G.
Without knowing the private key k, we cannot produce a valid key, but we can validate a key using public key:{p, a, b, G, K}
1. compute H=SHA-1(5D OS Family,Hash, prefix, 00 00) the total length is 11 byte. H is 160-bit long, and we only need the first 2 words. Right lift H’s second word by 2 bits. E.g. if SHA-1() returns FE DC BA 98 76 54 32 10, H= FE DC BA 98 1D 95 0C 04.
2. compute R(rx,ry)= Signature * (Signature*G + H*K) (mod p)
3. compute SHA-1(79 OS Family, rx, ry) the total input length = 1+2+64*2=131 bytes. And compare Hash and result, and if identical, the key is valid.
Producing A Valid Key!
We assume the private key k is known (sure, Microsoft won’t public this value, so we have to break it by ourselves). The equation in the product key validation system is as below:
Hash=SHA(Signature*(Signature*G+SHA(Hash)*K) (mod p))
What we need is to calculate a Signature which satisfies the above equation.
1. Randomly choose an integer r, and compute R(rx,ry)=r * G
2. Compute Hash= SHA-1(79 OS Family, rx, ry) the total input length = 1+2+64*2=131 bytes, and we get the first 62bit result.
3. compute H=SHA-1(5D OS Family,Hash, prefix, 00 00) the total length is 11 byte, and we need first 2 words, and right lift H’s second word by 2 bits.
And now, we get an equation as below:
QUOTE Signature*(Signature*G+H*K) = r * G (mod p)
By replacing K with k * G, we get the next equation:
Signature*(Signature*G+H*k*G) = r * G (mod p) , where n is the order of point G on the curve
Note:
not every number has a square root, so maybe we need to go back to step 1 for several times.
Get Private-key From Public Key I’ve mentioned that the private key k is not included in the BINK resource, so we need to break it out by ourselves. In the public key:
QUOTE K(x,y) = k * G, we only know the generator G, and the product K, but it is hard to get k.
The effective method of getting k from K(x,y) = k * G is Pollard’s Rho (or its variation) method, whose complexity is merely , where n is the order of G. (n is not included in public key resource, so, we need to get n by Schoof’s algorithm)
Because a user cannot suffer a too long product key, the Signature must be short enough to be convenient. And Microsoft chooses 62 bit as the length of signature, hence, n is merely 62-bit long. Therefore, the complexity of computing the private key k is O(2^31) | |
| | | tahan.tukul SBF Moderator
Number of posts : 264 Points : 34 Registration date : 2008-03-01
| Subject: Re: All You Need To Know About Windows Product Keys Sat Jun 14, 2008 9:31 pm | |
| That is a good sharing from you my friend. Nowadays, there are so many hacking tools and I believe hackers use this softwares to do all the cracking things inorder to get cheap sofware without buying the original one.
I think the tips you have given gives us clue in settling most of the installation problems. | |
| | | korrud Senior SBF
Number of posts : 484 Points : 3 Registration date : 2008-04-15
| Subject: Re: All You Need To Know About Windows Product Keys Sat Jun 14, 2008 9:37 pm | |
| Well..what can i say, sharing is absolutely gud. | |
| | | akinabalu SBF Moderator
Number of posts : 581 Points : 49 Registration date : 2008-02-22
| Subject: Re: All You Need To Know About Windows Product Keys Sun Jun 15, 2008 10:03 am | |
| - korrud wrote:
- Well..what can i say, sharing is absolutely gud.
Yes, I agree with this statement. | |
| | | Sponsored content
| Subject: Re: All You Need To Know About Windows Product Keys | |
| |
| | | | All You Need To Know About Windows Product Keys | |
|
| Permissions in this forum: | You cannot reply to topics in this forum
| |
| |
| Latest topics | » eliminate oily stains by kooixin87 Fri Oct 14, 2022 3:25 pm
» The universally acceptable industrialized technology for greater developments by susanchong Thu Mar 03, 2022 6:40 am
» Terrible dandruff by dreschan Sun Feb 27, 2022 8:51 am
» Washing machine cleaning by dediaty Sun Dec 05, 2021 2:14 pm
» Shampoo Untuk Rambut Kering by dediaty Sat Aug 28, 2021 10:33 am
» Most stable line? by lau123 Sat May 22, 2021 9:49 am
» Business. Apa dan Bagaimana? by grayish88 Thu Mar 18, 2021 7:09 pm
» Need help regarding washing machine by miniang Sat Mar 06, 2021 7:00 pm
» Morning routine by miniang Mon Mar 01, 2021 1:29 pm
» Muka breakout by dohara Sun Feb 28, 2021 7:48 pm
» Travel with own cars vs bus by tennislim Fri Jan 29, 2021 4:54 am
» Masalah mesin basuh by Farihah Mon Jan 25, 2021 1:58 am
» looking for a gift of mother days by allmoor Fri May 05, 2017 9:25 pm
» buy air-cond online got warranty or not? by bazinga8888 Fri Mar 24, 2017 10:42 am
» Baby & Kidz Fair Sabah (Dec 2016) by Puteri Fri Nov 25, 2016 7:11 am
» let's talk about first gold by noorfaridahh Thu Apr 28, 2016 3:20 pm
» if company subsidises rm100 a mth, which plan? phone together? by chuge Sat Apr 09, 2016 5:48 pm
» KL isteri by gigi6204 Tue Apr 05, 2016 12:18 pm
» NewPhone dari pelan FIRST celcom by susanchong Tue Mar 29, 2016 6:11 am
» can't wait for S7 edge!!! by yiti Thu Mar 24, 2016 6:33 am
» XPAX got free voucher?? by gigi6204 Fri Mar 04, 2016 12:42 pm
» salam perkenalan by Arbirage Fri Mar 04, 2016 9:06 am
» Telco 4G speed and Coverage in Sabah by directlylaugh Fri Jan 29, 2016 6:18 am
» Celcom Postpaid Plan by ngaudennis Fri Jan 22, 2016 5:29 am
» Want to change to prepaid lah. This postpaid cause me many problem! by 2cent Fri Jun 19, 2015 7:59 pm
» 2gb data is not enough.. by lau123 Tue May 26, 2015 10:23 am
» Data Sikit Sangat lah by beeyii Tue May 12, 2015 6:26 am
» Been using too much data recently by tennislim Sat Mar 21, 2015 7:07 am
» kadar sms rendah! by gigi6204 Thu Dec 18, 2014 5:40 am
» Dah mula rindu gf saya kat Australia by DaunTimadang Sat Dec 13, 2014 1:27 am
|
Who is online? | In total there are 2 users online :: 0 Registered, 0 Hidden and 2 Guests None Most users ever online was 470 on Tue Oct 12, 2021 8:42 am |
Statistics | We have 610 registered users The newest registered user is Nathello iddy
Our users have posted a total of 12064 messages in 909 subjects
|
KANDUNGAN FORUM | PENGUMUMAN MAKLUMBALAS DAN PERTANYAAN BINCANG AKTIVITI SABAH BORNEO FORUM BERKENALAN BINCANG RAMADHAN DAN SYAWAL SEMBANG-SEMBANG PERTANIAN PERUNDANGAN EKONOMI LANSKAP HAIWAN KESAYANGAN PSIKOLOGI PELANCONGAN ALAM SEKITAR MAKAN-MAKAN PARANORMAL POLITIK PENDIDIKAN LAWAK BUALAN WANITA CINTA, ROMEN & INSPIRASI SUKAN DAN KESIHATAN HIBURAN FOTOGRAFI DAN VIDEOGRAFI AGAMA DAN KEPERCAYAAN SEMBANG MERAPU BINCANG PERMAINAN KOMPUTER BINCANG PLAYSTATION BINCANG XBOX, NINTENDO DAN KONSOL LAIN BLOGMASTERS & WEBMASTERS BINCANG OS BINCANG HARDWARE & SOFTWARE BINCANG PENGATURCARAAN & SEKURITI BINCANG REKAGRAFIK, WEB DAN MULTIMEDIA PERKHIDMATAN PERNIAGAAN & PENGIKLANAN LELONG BARANG TERPAKAI BINCANG PERNIAGAAN, PELABURAN DAN PENGURUSAN KEWANGAN |
|