Saved in:
Bibliographic Details
Main Authors: Patat, Gwendal, Sabt, Mohamed, Fouque, Pierre-Alain
Format: Preprint
Published: 2022
Subjects:
Online Access:https://arxiv.org/abs/2204.09298
Tags: Add Tag
No Tags, Be the first to tag this record!
_version_ 1866910895466086400
author Patat, Gwendal
Sabt, Mohamed
Fouque, Pierre-Alain
author_facet Patat, Gwendal
Sabt, Mohamed
Fouque, Pierre-Alain
contents For years, Digital Right Management (DRM) systems have been used as the go-to solution for media content protection against piracy. With the growing consumption of content using Over-the-Top platforms, such as Netflix or Prime Video, DRMs have been deployed on numerous devices considered as potential hostile environments. In this paper, we focus on the most widespread solution, the closed-source Widevine DRM. Installed on billions of devices, Widevine relies on cryptographic operations to protect content. Our work presents a study of Widevine internals on Android, mapping its distinct components and bringing out its different cryptographic keys involved in content decryption. We provide a structural view of Widevine as a protocol with its complete key ladder. Based on our insights, we develop WideXtractor, a tool based on Frida to trace Widevine function calls and intercept messages for inspection. Using this tool, we analyze Netflix usage of Widevine as a proof-of-concept, and raised privacy concerns on user-tracking. In addition, we leverage our knowledge to bypass the obfuscation of Android Widevine software-only version, namely L3, and recover its Root-of-Trust.
format Preprint
id arxiv_https___arxiv_org_abs_2204_09298
institution arXiv
publishDate 2022
record_format arxiv
spellingShingle Exploring Widevine for Fun and Profit
Patat, Gwendal
Sabt, Mohamed
Fouque, Pierre-Alain
Cryptography and Security
For years, Digital Right Management (DRM) systems have been used as the go-to solution for media content protection against piracy. With the growing consumption of content using Over-the-Top platforms, such as Netflix or Prime Video, DRMs have been deployed on numerous devices considered as potential hostile environments. In this paper, we focus on the most widespread solution, the closed-source Widevine DRM. Installed on billions of devices, Widevine relies on cryptographic operations to protect content. Our work presents a study of Widevine internals on Android, mapping its distinct components and bringing out its different cryptographic keys involved in content decryption. We provide a structural view of Widevine as a protocol with its complete key ladder. Based on our insights, we develop WideXtractor, a tool based on Frida to trace Widevine function calls and intercept messages for inspection. Using this tool, we analyze Netflix usage of Widevine as a proof-of-concept, and raised privacy concerns on user-tracking. In addition, we leverage our knowledge to bypass the obfuscation of Android Widevine software-only version, namely L3, and recover its Root-of-Trust.
title Exploring Widevine for Fun and Profit
topic Cryptography and Security
url https://arxiv.org/abs/2204.09298