Breaking the 3DS: how the 3DS was hacked – Presentation by Smealum, Derrek, and Plutoo

Discussion in '3DS News' started by Cha0s Em3rald, Dec 29, 2015.

How to likeReveal download linksprotect your links
  1. Cha0s Em3rald

    Cha0s Em3rald Administrator
    Staff Member Administrator

    Joined:
    Oct 1, 2015
    Messages:
    3,978
    Likes Received:
    175,479
    Breaking the 3DS: how the 3DS was hacked – Presentation by Smealum, Derrek, and Plutoo


    Smealum, Derrek, and Plutoo had a Keynote at the Chaos Communication Congress (32C3), and the recording of the video is now online (embedded below)
    In the talk, the 3 hackers explain how they broke the security of the Nintendo 3DS, which led to a lively 3DS Homebrew scene. They first describe an overview of the system (specifically details on the ARM11, and ARM9, the security CPU).
    They then explain how they breach through the 4 levels of security (ARM11 Userland, ARM11 Kernel, ARM9 Userland, ARM9 Kernel), and how they involved the GPU to get access to the RAM. An interesting anecdote from Smealum is that in practice, the ARM9 Kernel has an unintentional syscall backdoor. One can feed it any operation pointer and it will run in Kernel Mode. ARM11 doesn’t have direct access to it, but anything in ARM9 can access it, meaning once a hacker gets Userland ARM9 access, it’s equivalent to getting Kernel access to that CPU. This makes the last layer of security pretty much moot.
    [​IMG]
    The hackers added a few tongue-in-cheek pieces of advice for Nintendo and other console manufacturers, in particular “Secrets hidden in hardware are great, unless you leak them”, in reference to how they managed to extract encryption keys shared by the Wii U and the 3DS.
    [​IMG]
    There’s alot being explained and I won’t summarize it all here. You can see the full presentation below. If you have interest in console security and hacking ( and if the words ROP, Webkit, NX don’t scare you), it’s a must see!
    Note: the presentation actually starts 15 minutes into the video.


    [video=youtube;CzVZgdkzBn8]https://www.youtube.com/watch?v=CzVZgdkzBn8[/video]



    One important point from Smealum is that he believes the 3DS homebrew scene is lively and growing. He emphasized his disagreement with Fail0verflow’s statement a few years ago that console homebrew is dead. He showcased a cool screenshot if existing 3DS homebrew.

    [​IMG]

    Last but not least, at the end of the presentation, Smealum announced the release of Browserhax, Ironhax, and Menuhax for the latest 3DS firmware 10.3. The release of at least Browserhax was made simultaneously with the Keynote.


    Source : Wololo.net


     
  • About Us

    Chaos Gamez is a friendly online community with our members sharing all the content you will ever need for your 3DS console including games in .3ds & .cia format, updates, DLC, Homebrew, CFW's, Flashcard firmwares, cheats & a variety of content for other platforms. We have all the downloads and games you'll ever need for your WiiU too! Including WiiU USB Ready Games, WUD Files, Game Tickets, and Homebrew! Same applies for NDS Roms, Wii WBFS, GameCube ISOs, and Retro game console ROMs!
  • Donate to the Server

    The management works very hard to make sure the community is running the best software, best security, and all the other bells and whistles. Care to contribute and support the community? We'd really appreciate it!

    Become a Donor!
  • Disclaimer

    No files are stored on our servers, all links are on external sites. If you have an issue with one of the posts/threads on our site or to make a DMCA report please use the "Contact Us" link at the bottom of the site