839
edits
Changes
Jump to navigation
Jump to search
Line 76:
Line 76: + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + +
no edit summary
The APP data (NCCH/SRL) is encrypted, using 128-bit AES-CBC. The encryption uses the decrypted titlekey of the ticket, and the titleid padded with zeros as the IV. To get the decrypted titlekey, the titlekey stored in the ticket must be decrypted using 128-bit AES-CBC with the 3DS common key, and the same IV as mentioned previously.
The APP data (NCCH/SRL) is encrypted, using 128-bit AES-CBC. The encryption uses the decrypted titlekey of the ticket, and the titleid padded with zeros as the IV. To get the decrypted titlekey, the titlekey stored in the ticket must be decrypted using 128-bit AES-CBC with the 3DS common key, and the same IV as mentioned previously.
=== Certificate Chain ===
There are three Certificates in this Chain:
{| class="wikitable" border="1"
|-
! CERTIFICATE
! SIGNATURE TYPE
! RETAIL CERT NAME
! DEBUG CERT NAME
! DESCRIPTION
|-
| CA
| RSA-4056
| CA00000003
| CA00000004
| Used to verify the Ticket/TMD Certificates
|-
| Ticket
| RSA-2048
| XS0000000c
| XS00000009
| Used to verify the Ticket signature
|-
| TMD
| RSA-2048
| CP0000000b
| CP0000000a
| Used to verify the TMD signature
|}
The CA certificates are issued by 'root', the public key for which is stored in the bootROM.
=== Meta ===
=== Meta ===