Changes

Cartridge (view source)

Revision as of 03:07, 6 August 2017

542 bytes added , 03:07, 6 August 2017

no edit summary

Line 172: Line 172:

| <code>200838A25A344F818ABB6456694D4E8D</code>

| 0

−

| Enter crypto ~~mode~~ with ~~seed~~ "0838A25A344F818ABB6456694D4E8D"

+

| Enter crypto mode1 with HOST-RANDOM "0838A25A344F818ABB6456694D4E8D"

|-

| <code>7EE41FDF12C01C157CC899910673A0CF</code>

| 0x40

−

| Encrypted command, ~~possibly read UID?~~

+

| Encrypted crypto mode1 command, reads CART-RANDOM

|-

| <code>263C8230EC15FAE3CE79365BD850F4BD</code>

| 0x0

−

| Encrypted command

+

| Encrypted mode1 command, enters crypto mode2 with (HOST-RANDOM, CART-RANDOM)

|-

| <code>B6FDA6F37FFA29E18831D0B217DFBDBE</code>

| 0x4

−

| Encrypted command, possibly read card id?

+

| Encrypted mode2 command, possibly read card id?

|-

| <code>7B97F7DF07240AA9870E1C974336FA8A</code>

| 0x4

−

| Encrypted command

+

| Encrypted mode2 command

|-

|}

Line 201: Line 201:

== Encryption ==

After a few initial plaintext commands, the Switch instructs the game cartridge to enter into encrypted mode. From that point on, commands and responses are sent encrypted over the bus. The encryption algorithm used is currently unknown.

+

There appear to be 2 kinds of crypto mode.

+

Crypto mode1 is initiated solely by the HOST-RANDOM as random session seed. In that mode, the Switch host requests for the game cartridge random seed, and then sends a command to enter crypto mode2.

+

Crypto mode2 takes into account the CART-RANDOM seed generated by the cartridge, and possibly the previous HOST-RANDOM.

+

With this scheme replay attacks are not possible when crypto mode2 has been entered.

== Manufacturers ==

$andeor

27

edits

Changes

Cartridge (view source)

Revision as of 03:07, 6 August 2017

Navigation menu

Search