If the SONY SDK was leaked then...

[Chickenx5]

Why can't we sign the code through that? is it possible?

[muki]

Why can't we sign the code through that? is it possible?

Because it involves going through a process that will generate a code from the compiled eboot, presumably. The process is probably only known by a few Sony labs and computers.

Either:
1. Someone break into Sony HQ and find the algorithms and functiosn that creates codes.

2. or some genius has to somehow reverse-engineer a few official games, figure out where the signature is, and figure out how such a signature was created from the file's checksum.

I'd be surprised even if official developpers could do it! Official developpers have different/extra hardware though, which is how they can test their products on PSPs without needing the signature.

[mirrorsawlljk]

Developers don't sign their applications, Sony does. And it's unlikely even Sony knows the key used to sign PSP apps. With bigger companies it's SOP to sign apps using a blackbox solution so that leaks are impossible.

[muki]

Developers don't sign their applications, Sony does. And it's unlikely even Sony knows the key used to sign PSP apps. With bigger companies it's SOP to sign apps using a blackbox solution so that leaks are impossible.

Makes sense. Sony can certainly afford it.

[BobModernNinja]

Devs can executed unsigned programs on their debug hardware, but when a game is certified gold, they submit the data on big data tape (don't ask why) to Sony, who signs the executable and mass produce it.

It's like that.

[SANiK]

What's the actual size of the CRC?

If it's 128 bit, then that'll mean THIS many combinations to try:
3402823669209384634633746 07431770000000
which is out the question.

[rvictory]

If I remember correctly, the DS homebrew developers had to crack an encryption that was similar, so they did a distributed crack. With the number of people on these forums, I don't think that it would take that long...maybe a couple of months of straight cracking...lol...but seriously an idea to consider.

Ryan Victory

[SANiK]

Fastest way might be to get a bunch of CRCed eboots, and then generate stats on them. How many even bytes, how many odd bytes, how many ON and how many OFF bits, total number of bytes, etc. Then compare the results from each eboot with others. But, any non standard CRC could drive this method down the drain.

[xxxmrgamerxxx]

Because it involves going through a process that will generate a code from the compiled eboot, presumably. The process is probably only known by a few Sony labs and computers.

Either:
1. Someone break into Sony HQ and find the algorithms and functiosn that creates codes.

2. or some genius has to somehow reverse-engineer a few official games, figure out where the signature is, and figure out how such a signature was created from the file's checksum.

I'd be surprised even if official developpers could do it! Official developpers have different/extra hardware though, which is how they can test their products on PSPs without needing the signature.

well considering when the psp was first released it was actually brought to the store in an armored car id have to go with the second option.
(go dexter go!)

[Vale]

Fastest way might be to get a bunch of CRCed eboots, and then generate stats on them. How many even bytes, how many odd bytes, how many ON and how many OFF bits, total number of bytes, etc. Then compare the results from each eboot with others. But, any non standard CRC could drive this method down the drain.

listen to this guy hes got the best idea out of this entire thread...