0 users browsing Hacking. | 1 bot  
    Main » Hacking » How the Dreamcast copy protection was defeated
    Pages: 1
    Posted on 18-12-11, 11:21
    Full mod

    Post: #59 of 443
    Since: 10-30-18

    Last post: 863 days
    Last view: 60 days
    http://fabiensanglard.net/dreamcast_hacking/

    It turned out that the scrambler was nothing more than "security through obscurity". The SDK contained a reverse-scrambler which transformed a valid executable into reverse-mashed-potatoes so it would be valid again when loaded and scrambled by the Dreamcast when booting from a CD-ROM.


    As an aside, it looks like the ".gdi" metafile used for Dreamcast images is vastly more sane than the .cue metafile used by everything else these days. Another tally-mark for worse-is-better, I guess.

    The ending of the words is ALMSIVI.
    Posted on 18-12-11, 19:26
    Post: #8 of 60
    Since: 10-29-18

    Last post: 1404 days
    Last view: 1326 days
    it's funny how almost every anti-circumvention tech seems childishly simple/foolish in hindsight. It's rare to read about something and think "wow, that was really clever." Even the really clever ones seem to get beaten by nonsense like "shipped it with the damned keys still on it".
    Posted on 18-12-12, 05:12
    Full mod

    Post: #60 of 443
    Since: 10-30-18

    Last post: 863 days
    Last view: 60 days
    I was pretty impressed with the Playstation anti-circumvention tech when I understood it, encoding a signal into the "track wobble" that CDs use to maintain constant linear velocity, but of course that wasn't the weak link in the chain. Somebody just recorded that signal and made a chip that played it back,

    The ending of the words is ALMSIVI.
    Posted on 18-12-12, 10:31
    Custom title here

    Post: #119 of 1150
    Since: 10-30-18

    Last post: 6 days
    Last view: 1 day
    And it doesn't really have to be perfect, just "good enough". The Dreamcast's likely would have been had the SDK not been literally stolen.

    Honestly, the big mistake from a security stance was allowing the retail DC units to boot off of CDs at all. That they required hoops be leapt through to make it work was someone realizing it was a terrible idea, but not having authority enough to stop it from happening.

    --- In UTF-16, where available. ---
    Posted on 18-12-13, 00:58
    Dinosaur

    Post: #80 of 1282
    Since: 10-30-18

    Last post: 4 days
    Last view: 22 hours
    Why the hell Sega even wasted time bothering with the whole MIL-CD fiasco? Not only it costed them millions when hackers devised how to take advantage of that backdoor wide as a 747 for game piracy, nobody really bothered using it for actual music discs (aside of the eight lone titles ever released for the format)

    All this debacle for yet another Japan-only feature that somehow got baked into almost every Dreamcast ever sold. How Sega did actually removed the support on late DCs? Updated firmware? (and if it's firmware-only, would it be feasible to either use older firmware from previous consoles, or patched firmware for restoring the support?)

    Just wondering: what was so special about DiscJuggler that it was the only software suitable for burning Dreamcast rips to CD-Rs?

    Licensed Pirate® since 2006, 100% Buttcoin™-free, enemy of All Things JavaScript™
    Posted on 18-12-13, 08:01
    Post: #13 of 203
    Since: 11-24-18

    Last post: 9 days
    Last view: 6 days
    There are a few brilliantly simple copyright schemes though. One of the best ones I found out about was on the StarCraft CD (I think?) where the outer layer of the disk was circular and played the exact same message a certain number of times before jumping to another part of the disk.

    This of course confounded those pirates for years, because most CD-ROM media burns in an inward spiral. This then caused the software image to simply write the same repeatable garbage pattern to the ISO file, making it impossible to play back.

    Clever, clever... And easily defeated once you know what to look for! :)
    Posted on 18-12-13, 08:30
    Post: #46 of 426
    Since: 10-30-18

    Last post: 261 days
    Last view: 1 day
    How did Westwood handle copy protection for Red Alert 2 and Tiberian Sun? The game does some funky stuff with the CD during gameplay instead of reading the disc like normal if it was simply playing a music file.

    AMD Ryzen 3700X | MSI Gamer Geforce 1070Ti 8GB | 16GB 3600MHz DDR4 RAM | ASUS Crosshair VIII Hero (WiFi) Motherboard | Windows 10 x64
    Posted on 18-12-13, 09:18
    Custom title here

    Post: #124 of 1150
    Since: 10-30-18

    Last post: 6 days
    Last view: 1 day
    Posted by wertigon
    There are a few brilliantly simple copyright schemes though. One of the best ones I found out about was on the StarCraft CD (I think?) where the outer layer of the disk was circular and played the exact same message a certain number of times before jumping to another part of the disk.
    My favorite was the TurboCD "copy protection", which wasn't even intended as such(in the TurboGrafX's day, being on CD WAS copy-protection).

    Instead of the standard "data on track one, redbook audio after that" that is the observed behavior on pretty much every multi-mode optical disk ever, NEC put a "don't play this in your stereo, it contains data files" redbook track on track 1, then data, then more redbook.
    This was just off-standard enough that a lot of computer stuff refused to believe it it was a working CD at all.

    --- In UTF-16, where available. ---
    Posted on 22-02-22, 13:01 (revision 1)
    Post: #23 of 62
    Since: 01-29-22

    Last post: 627 days
    Last view: 627 days
    Posted by tomman
    Just wondering: what was so special about DiscJuggler that it was the only software suitable for burning Dreamcast rips to CD-Rs?

    I've always wondered this too. There's seemingly still no real way to do it on Linux without a Windows VM either, which is flat out ridiculous :/

    As for MIL-CD I wonder if SEGA intended to use DVDs at any point during the DC's development, and MIL-CD happened to be a leftover? Still, for international consoles it should have been disabled I guess since it really does feel like one of those "Japan-will-use-this-weird-shit-to-some-extent-but-no-one-else-will" features.
    Pages: 1
      Main » Hacking » How the Dreamcast copy protection was defeated
      Kawa's Github