|
Welcome to the GSM-Forum forums. You are currently viewing our boards as a guest which gives you limited access to view most discussions and access our other features. Only registered members may post questions, contact other members or search our database of over 8 million posts. Registration is fast, simple and absolutely free so please - Click to REGISTER! If you have any problems with the registration process or your account login, please contact contact us . |
|
Register | FAQ | Donate | Forum Rules | Root any Device | ★iPhone Unlock★ | ★ Direct Codes ★ | Direct Unlock Source |
GSM Programming & Reverse Engineering Here you can post all Kind of GSM Programming and Reverse Engineering tools and Secrets. |
| LinkBack | Thread Tools | Display Modes |
06-14-2012, 19:03 | #1 (permalink) |
No Life Poster Join Date: Feb 2005 Location: Poland Age: 34
Posts: 4,943
Member: 117496 Status: Offline Sonork: 100.83919 Thanks Meter: 22,689 | Nokia RSA Private key 195F111A9543A8644E77E1677296AB23 for free... Nokia don't use this key widely in production, but if you have prototype/test/demonstration aka "not for sale" phone.... ROOT Key: 195F111A9543A8644E77E1677296AB23 http://www.**********/195F111A9543A86...230BF60EAD.pem Enjoy... don't ask how to use it - its for those who knows how to use it, and knows sometihing aobut BB5 architecture, and know what can be signed by Rootkey. Last edited by karwos; 06-14-2012 at 19:12. |
The Following 9 Users Say Thank You to karwos For This Useful Post: |
06-14-2012, 19:42 | #2 (permalink) | ||
No Life Poster Join Date: Mar 2007 Location: Guangzhou-China
Posts: 1,289
Member: 468587 Status: Offline Sonork: 100.1612429 Thanks Meter: 681 | Quote:
Quote:
Last edited by MOURAD™; 06-14-2012 at 19:52. | ||
06-14-2012, 20:05 | #5 (permalink) | ||
No Life Poster Join Date: Mar 2007 Location: Guangzhou-China
Posts: 1,289
Member: 468587 Status: Offline Sonork: 100.1612429 Thanks Meter: 681 | Quote:
Quote:
| ||
06-14-2012, 20:17 | #6 (permalink) | |
No Life Poster Join Date: Feb 2005 Location: Poland Age: 34
Posts: 4,943
Member: 117496 Status: Offline Sonork: 100.83919 Thanks Meter: 22,689 | Quote:
This is technical subforum, and if you don't have nothing to tell, then leave posts "ask zulea" blabla for yourself. And again: post link, or leave "use google" comments for yourself. | |
06-14-2012, 20:29 | #7 (permalink) | |
No Life Poster Join Date: Mar 2007 Location: Guangzhou-China
Posts: 1,289
Member: 468587 Status: Offline Sonork: 100.1612429 Thanks Meter: 681 | Quote:
Code: To make change SL data need RSA1024 signature must use this RSA private key................ Last edited by MOURAD™; 06-14-2012 at 20:35. | |
06-14-2012, 20:38 | #8 (permalink) | |
No Life Poster Join Date: Feb 2005 Location: Poland Age: 34
Posts: 4,943
Member: 117496 Status: Offline Sonork: 100.83919 Thanks Meter: 22,689 | Quote:
1. Each phone having "KEYS" certificate. Inside KEYS you will find a) Magic, constant b) ROOT RSA Public Key - it's hashed and must MATCH with "rootkey hash" c) OEM1, OEM2 Key d) PA keys, RD Keys and others This forms one block called KEYS. Second block is PAPUBKEYS, this consist of keys used in Simlock signature, NPC signature, and in generic Public keys used in PA. Block KEYS is signed using ROOT KEY Private key. Block PAPUBKEYS are signed using Public KEYS previously loaded in secure ram from "KEYS" block. There is only about 8-10 ROOT keys in Nokia. The 195F... is just hash of Root RSA public key, and it is tightly coupled with phone MCU. If you can PROPERLY SIGN KEYS block using this ROOT key, that means you can generate your own OEM1, OEM2, PA keys, then you can sign PAPUBKEYS with own Simlock RSA key, then... maybe now it is more clear for you. Or no, i will post even completly steps for you: 1. Read KEYS from your working phone 2. Replace PAPUB key with your own generated RSA1024 key 3. Sign KEYS using RSA ROOT private key 4. Replace Simlock RSA public key in PAPUBKEYS with your 2nd own genrated RSA1024, and sign with previously generated key, which is also stored in KEYS 5. Flash keys and papubkeys 6. Sign simlock with your 2nd generated RSA KEY Optional steps: 7. Release signed keys and papubkeys for keys which you have acces (for example baf3, 9ddb), so your customers can one-click flash them 8. Hold your generated keys on your HDD 9. Now you can run own Simlock server, or even more IMEI server and calculate NPC for example using YOUR rsa keys 10. Count money So using ROOT KEY you can properly sign KEYS, which means phone security is completly compromised. Obtainiing any ROOT key means WHOLE phone security is down. Even if just a simlock RSA key would leak - Nokia use diffrent RSA keys for DIFFRENT models... so leaking one key would cause just properly to sign RSA only for one model (papubkey hash...). I don't know how to explain more, but as I stated in first post - if you don't have knowledge how it works and how to use it - don't post bull****s like "it was posted already" and don't create mess here. Last edited by karwos; 06-14-2012 at 20:45. | |
The Following 18 Users Say Thank You to karwos For This Useful Post: |
06-14-2012, 20:39 | #9 (permalink) |
No Life Poster Join Date: Feb 2000 Location: UK
Posts: 3,186
Member: 1024 Status: Offline Thanks Meter: 5,510 | Hi, What is this format ? Base64 with compression ? The data seems 100 or more bytes short to be private key, but for sure is not just public key. Maybe post as binary data ? About the root hash - i am not sure anyone has a proto with such hash. BR |
06-14-2012, 20:52 | #10 (permalink) | |
No Life Poster Join Date: Feb 2005 Location: Poland Age: 34
Posts: 4,943
Member: 117496 Status: Offline Sonork: 100.83919 Thanks Meter: 22,689 | Quote:
Finding such phone would be great for fun. Just imagine what can do when sign own keys... Great, even just for R&D. I will post a example in minute. Last year i've used openssl without bigger problems to sign PA and other stuff. | |
06-14-2012, 20:52 | #11 (permalink) | |||
No Life Poster Join Date: Feb 2005 Location: Poland Age: 34
Posts: 4,943
Member: 117496 Status: Offline Sonork: 100.83919 Thanks Meter: 22,689 | Openssl accepts this format as long as: Quote:
Quote:
Quote:
Last edited by karwos; 06-14-2012 at 20:58. | |||
The Following User Says Thank You to karwos For This Useful Post: |
06-14-2012, 21:04 | #12 (permalink) |
No Life Poster Join Date: Feb 2005 Location: Poland Age: 34
Posts: 4,943
Member: 117496 Status: Offline Sonork: 100.83919 Thanks Meter: 22,689 | And example signing: echo 'test data' | /usr/bin/openssl rsautl -encrypt -inkey factory_195f.pem > signed.bin This gets you valid signed.bin file For test data of course you need pass BINARY data in PKCS format. But thats' minor things. |
06-14-2012, 21:04 | #13 (permalink) | |
No Life Poster Join Date: Feb 2000 Location: UK
Posts: 3,186
Member: 1024 Status: Offline Thanks Meter: 5,510 | Quote:
Yes! Linux on 6680 - take that stupid Galaxy S3 On serious note - it is great to R&D, hobby projects,etc. For how long do you have this ? How did you find and do you have a phone ? BR | |
Bookmarks |
| |
Similar Threads | ||||
Thread | Thread Starter | Forum | Replies | Last Post |
New Nokia Software!!!!!!! | Jefferson | Nokia Legacy Phones ( DCT-1 ,2 ,3 ,L ) | 52 | 12-30-2016 08:17 |
Need software upgrade for Nokia 5110 | ptkrf | Nokia Legacy Phones ( DCT-1 ,2 ,3 ,L ) | 30 | 02-24-2016 10:21 |
DES key Driver | black | Nokia Legacy Phones ( DCT-1 ,2 ,3 ,L ) | 8 | 02-08-2014 04:50 |
|