Sidebar Sidebar
Become a MacRumors Supporter for $50/year with no ads, ability to filter front page stories, and private forums.

question about ecid

D

Darwing

macrumors 6502
Original poster
Nov 5, 2009
407
0
is there a link of ecid's between 3.1.2 and 3.1.3 and 4.0? if there is a general calculatio for each device we can use a generator once inputed 2 or more ecid codes,
IE. 3.1.2 3.1.3 can generate what your 4.0 ecid would be...

anyone know if there is a link between the ecid's from fw to fw?
 
ECID is constant for any particular phone across all versions of the firmware.
 
Darwing said:
no it is not actually you are assigned a new ecid with each firmware, otherwise you would be able to downgrade once you have ANY ecid on sauriks server, you could apply the same ecid to any firmware...

http://www.sinfuliphone.com/showthread.php?t=12965
Click to expand...

The previous poster was correct you are confusing ECID and SHSH Blobs.

The ECID is constant to the iphone. The SHSH blobs changes with the firmware version and is also unique to each phone for the firmware version.
 
I actually left out the second part of my answer, that SHSH blobs have not shown a correlation between the different FW versions.

I have no proof of this, but I imagine if they did, we would have heard of the need to not have to worry about these blobs anymore...
 
Darwing said:
no it is not actually you are assigned a new ecid with each firmware, otherwise you would be able to downgrade once you have ANY ecid on sauriks server, you could apply the same ecid to any firmware...
Click to expand...

No it is actually. You are seriously confused with the terminology here...do a bit more reading and find out what each term actually means, and what it does.
 
Darwing said:
no it is not actually you are assigned a new ecid with each firmware, otherwise you would be able to downgrade once you have ANY ecid on sauriks server, you could apply the same ecid to any firmware...

http://www.sinfuliphone.com/showthread.php?t=12965
Click to expand...

"Every ECID.SHSH file is UNIQUE for EVERY DEVICE AND EVERY FIRMWARE"

From the link you posted. The ECID NEVER changes, the SHSH file does. You come here seeking an answer, then tell the person who correctly answered your question they are wrong. Either take the information you've been given or find it for yourself.
 
TMar said:
"Every ECID.SHSH file is UNIQUE for EVERY DEVICE AND EVERY FIRMWARE"

From the link you posted. The ECID NEVER changes, the SHSH file does. You come here seeking an answer, then tell the person who correctly answered your question they are wrong. Either take the information you've been given or find it for yourself.
Click to expand...

Take it easy, why the anger. The op has already been put right three times in a much more diplomatic way.
 
Your ECID does not change with the OS version, it's hard-encoded into your chip. The easiest way to find it is probably just to plug your phone in and run TinyUmbrella, which will tell you your ECID. You can also put your phone in DFU and check it out in a device profiler.

But it is not possible to generate your own SHSH just by knowing the ECID. SHSHs can only be obtained from Apple's server, because they have to be signed using Apple's private key. This is why your SHSH for a firmware version can only be obtained while Apple is still signing that version. SHSH stands for signature hash, and is just a technical term for an encrypted signature attached to a message (in this case, the message authorizing installation of a version of the iPhone firmware).

The SHSH is not saved anywhere on your device or in a backup. It is used only briefly to authorize an installation, and is requested anew for each installation. It is different for each version of the firmware. TinyUmbrella can save your SHSH as it is returned by Apple, but only if you request it while Apple is still signing. Same for Cydia. They take advantage of the fact that Apple failed to include a time check in their authorization scheme, so the same SHSH is returned each time you request the same version. This was really poor security design on Apple's part, since it make it possible to spoof Apple's server as long as you cache your SHSH for each version while Apple is still signing.

It is absolutely impossible to generate a new SHSH yourself unless you can obtain Apple's private signing key. Good luck with that.
 
nebo1ss said:
Take it easy, why the anger. The op has already been put right three times in a much more diplomatic way.
Click to expand...

Thanks for your contribution to the conversation. I reread it again and I still don't see the anger, bluntness maybe but not anger. The "diplomatic way" doesn't all ways help people who think they know more then in reality they do.

In the future please refrain from trying to derail threads with things that don't pertain to the subject at hand. Thank you.
 
TMar said:
"Every ECID.SHSH file is UNIQUE for EVERY DEVICE AND EVERY FIRMWARE"

From the link you posted. The ECID NEVER changes, the SHSH file does. You come here seeking an answer, then tell the person who correctly answered your question they are wrong. Either take the information you've been given or find it for yourself.
Click to expand...

You need to relax, thelatinist put it very eloquently and nicely, this thread started off with a QUESTION, obviously I was confused or otherwise I

A) Wouldn’t have a question in the first place
B) Would have known that ecid was different from shsh, in other words the question would have been answered for me.

Thanks for clarifying everything guys, I’m just upset because I don’t have my shsh 3.1.2 on file and am scrambling to find a way.

as far as I see it, the IPSW file is an image of an installed OS that is extracted to the iphone (such as ghost or drive image). the disconnect comes with the notion that we cannot falsify the apple signature with a custom IPSW and non-itunes extraction to the phone. I am stuck trying to figure out why this is so difficult if
A) we have the image of the operating system that is true to all iphones,
B) the image requires a small indicator in order to extract and install

why cant we fabricate a "generic" ecid from a virtual server to mimic apples "ok" to restore that image?

I find it hard to believe that these are so linked to apple that the image files cannot be installed or force installed without linking up with apple first, or that we have not found a global shsh for every device (such as Microsoft has a global cd key that works for every product for activation).
 
Darwing said:
as far as I see it, the IPSW file is an image of an installed OS that is extracted to the iphone (such as ghost or drive image). the disconnect comes with the notion that we cannot falsify the apple signature with a custom IPSW and non-itunes extraction to the phone. I am stuck trying to figure out why this is so difficult if
A) we have the image of the operating system that is true to all iphones,
B) the image requires a small indicator in order to extract and install

why cant we fabricate a "generic" ecid from a virtual server to mimic apples "ok" to restore that image?

I find it hard to believe that these are so linked to apple that the image files cannot be installed or force installed without linking up with apple first, or that we have not found a global shsh for every device (such as Microsoft has a global cd key that works for every product for activation).
Click to expand...

There is a low level security chip on the phone that handles what firmware version is allowed to be installed on the phone. Your phones ECID is hardwired into this chip. When you try to restore the chip sends your ECID and firmware version to Apple's authentication servers. It gets back a response key that it checks against it's own result using an algorithm. We don't know the algorithm, and because the signature key is 128 bits, it would take decades to try and brute force it on computers.

It doesn't matter that we can intercept the communication between the chip and Apple's servers, as long as we don't understand the 'language' there's nothing we can do but mimic Apple's response (saving SHSH keys).
 
Darwing said:
I find it hard to believe that these are so linked to apple that the image files cannot be installed or force installed without linking up with apple first, or that we have not found a global shsh for every device (such as Microsoft has a global cd key that works for every product for activation).
Click to expand...

It is clear that you do not understand how encryption works. The communication from Apple to the phone is encrypted, and must be encrypted in order to be accepted by the phone. In order to spoof the Apple signature server, therefore, you absolutely have to know Apple's private key, a long string of characters used to encrypt the communication and not present anywhere on the phone. This is the whole point of using a signature server, to keep the key private and under Apple control.

A brute force attempt to discover a private signing key would take years...perhaps decades...using the fastest computers in the world.
 
TMar said:
Thanks for your contribution to the conversation. I reread it again and I still don't see the anger, bluntness maybe but not anger. The "diplomatic way" doesn't all ways help people who think they know more then in reality they do.

In the future please refrain from trying to derail threads with things that don't pertain to the subject at hand. Thank you.
Click to expand...

Capital letters, bold face red type, language used all signs of anger.
In case you did not notice I had already adequately answer the OP and was not derailing the thread.
 
nebo1ss said:
Capital letters, bold face red type, language used all signs of anger.
In case you did not notice I had already adequately answer the OP and was not derailing the thread.
Click to expand...

Once again you call it anger, I see it as emphasis and you clearly don't get it. Yes you clearly answer it as did the second poster which he quickly(and incorrectly) dismissed as incorrect. He even pointed to a thread that proved how incorrect he was.

You might not agree with my bluntness and that's fine, but to point it out, chastise and label it as "anger" is derailing the thread. If you have a problem with it add me to ignore, shoot me a PM or ignore it completely. This thread isn't the place for it. Thank you..
 
TMar said:
Once again you call it anger, I see it as emphasis and you clearly don't get it. Yes you clearly answer it as did the second poster which he quickly(and incorrectly) dismissed as incorrect. He even pointed to a thread that proved how incorrect he was.

You might not agree with my bluntness and that's fine, but to point it out, chastise and label it as "anger" is derailing the thread. If you have a problem with it add me to ignore, shoot me a PM or ignore it completely. This thread isn't the place for it. Thank you..
Click to expand...

Get over yourself
 
You must log in or register to reply here.
Register on MacRumors! This sidebar will go away, and you'll see fewer ads.
Top Bottom
Back