question about ecid

Discussion in 'Jailbreaks and iOS Hacks' started by Darwing, Jul 14, 2010.

  1. Darwing macrumors 6502

    Joined:
    Nov 5, 2009
    #1
    is there a link of ecid's between 3.1.2 and 3.1.3 and 4.0? if there is a general calculatio for each device we can use a generator once inputed 2 or more ecid codes,
    IE. 3.1.2 3.1.3 can generate what your 4.0 ecid would be...

    anyone know if there is a link between the ecid's from fw to fw?
     
  2. thep33t macrumors regular

    Joined:
    Jun 18, 2009
    #2
    ECID is constant for any particular phone across all versions of the firmware.
     
  3. Darwing thread starter macrumors 6502

    Joined:
    Nov 5, 2009
    #3
    no it is not actually you are assigned a new ecid with each firmware, otherwise you would be able to downgrade once you have ANY ecid on sauriks server, you could apply the same ecid to any firmware...

    http://www.sinfuliphone.com/showthread.php?t=12965
     
  4. nebo1ss macrumors 68030

    Joined:
    Jun 2, 2010
    #4
    The previous poster was correct you are confusing ECID and SHSH Blobs.

    The ECID is constant to the iphone. The SHSH blobs changes with the firmware version and is also unique to each phone for the firmware version.
     
  5. thep33t macrumors regular

    Joined:
    Jun 18, 2009
    #5
    I actually left out the second part of my answer, that SHSH blobs have not shown a correlation between the different FW versions.

    I have no proof of this, but I imagine if they did, we would have heard of the need to not have to worry about these blobs anymore...
     
  6. pixelated macrumors 6502a

    pixelated

    Joined:
    Oct 21, 2008
    #6
    No it is actually. You are seriously confused with the terminology here...do a bit more reading and find out what each term actually means, and what it does.
     
  7. TMar macrumors 68000

    TMar

    Joined:
    Jul 20, 2008
    Location:
    Ky
    #7
    "Every ECID.SHSH file is UNIQUE for EVERY DEVICE AND EVERY FIRMWARE"

    From the link you posted. The ECID NEVER changes, the SHSH file does. You come here seeking an answer, then tell the person who correctly answered your question they are wrong. Either take the information you've been given or find it for yourself.
     
  8. nebo1ss macrumors 68030

    Joined:
    Jun 2, 2010
    #8
    Take it easy, why the anger. The op has already been put right three times in a much more diplomatic way.
     
  9. thelatinist macrumors 603

    thelatinist

    Joined:
    Aug 15, 2009
    Location:
    Connecticut, USA
    #9
    Your ECID does not change with the OS version, it's hard-encoded into your chip. The easiest way to find it is probably just to plug your phone in and run TinyUmbrella, which will tell you your ECID. You can also put your phone in DFU and check it out in a device profiler.

    But it is not possible to generate your own SHSH just by knowing the ECID. SHSHs can only be obtained from Apple's server, because they have to be signed using Apple's private key. This is why your SHSH for a firmware version can only be obtained while Apple is still signing that version. SHSH stands for signature hash, and is just a technical term for an encrypted signature attached to a message (in this case, the message authorizing installation of a version of the iPhone firmware).

    The SHSH is not saved anywhere on your device or in a backup. It is used only briefly to authorize an installation, and is requested anew for each installation. It is different for each version of the firmware. TinyUmbrella can save your SHSH as it is returned by Apple, but only if you request it while Apple is still signing. Same for Cydia. They take advantage of the fact that Apple failed to include a time check in their authorization scheme, so the same SHSH is returned each time you request the same version. This was really poor security design on Apple's part, since it make it possible to spoof Apple's server as long as you cache your SHSH for each version while Apple is still signing.

    It is absolutely impossible to generate a new SHSH yourself unless you can obtain Apple's private signing key. Good luck with that.
     
  10. TMar macrumors 68000

    TMar

    Joined:
    Jul 20, 2008
    Location:
    Ky
    #10
    Thanks for your contribution to the conversation. I reread it again and I still don't see the anger, bluntness maybe but not anger. The "diplomatic way" doesn't all ways help people who think they know more then in reality they do.

    In the future please refrain from trying to derail threads with things that don't pertain to the subject at hand. Thank you.
     
  11. Darwing thread starter macrumors 6502

    Joined:
    Nov 5, 2009
    #11
    You need to relax, thelatinist put it very eloquently and nicely, this thread started off with a QUESTION, obviously I was confused or otherwise I

    A) Wouldn’t have a question in the first place
    B) Would have known that ecid was different from shsh, in other words the question would have been answered for me.

    Thanks for clarifying everything guys, I’m just upset because I don’t have my shsh 3.1.2 on file and am scrambling to find a way.

    as far as I see it, the IPSW file is an image of an installed OS that is extracted to the iphone (such as ghost or drive image). the disconnect comes with the notion that we cannot falsify the apple signature with a custom IPSW and non-itunes extraction to the phone. I am stuck trying to figure out why this is so difficult if
    A) we have the image of the operating system that is true to all iphones,
    B) the image requires a small indicator in order to extract and install

    why cant we fabricate a "generic" ecid from a virtual server to mimic apples "ok" to restore that image?

    I find it hard to believe that these are so linked to apple that the image files cannot be installed or force installed without linking up with apple first, or that we have not found a global shsh for every device (such as Microsoft has a global cd key that works for every product for activation).
     
  12. moussekateer macrumors 6502a

    moussekateer

    Joined:
    May 12, 2009
    #12
    There is a low level security chip on the phone that handles what firmware version is allowed to be installed on the phone. Your phones ECID is hardwired into this chip. When you try to restore the chip sends your ECID and firmware version to Apple's authentication servers. It gets back a response key that it checks against it's own result using an algorithm. We don't know the algorithm, and because the signature key is 128 bits, it would take decades to try and brute force it on computers.

    It doesn't matter that we can intercept the communication between the chip and Apple's servers, as long as we don't understand the 'language' there's nothing we can do but mimic Apple's response (saving SHSH keys).
     
  13. thelatinist macrumors 603

    thelatinist

    Joined:
    Aug 15, 2009
    Location:
    Connecticut, USA
    #13
    It is clear that you do not understand how encryption works. The communication from Apple to the phone is encrypted, and must be encrypted in order to be accepted by the phone. In order to spoof the Apple signature server, therefore, you absolutely have to know Apple's private key, a long string of characters used to encrypt the communication and not present anywhere on the phone. This is the whole point of using a signature server, to keep the key private and under Apple control.

    A brute force attempt to discover a private signing key would take years...perhaps decades...using the fastest computers in the world.
     
  14. nebo1ss macrumors 68030

    Joined:
    Jun 2, 2010
    #14
    Capital letters, bold face red type, language used all signs of anger.
    In case you did not notice I had already adequately answer the OP and was not derailing the thread.
     
  15. TMar macrumors 68000

    TMar

    Joined:
    Jul 20, 2008
    Location:
    Ky
    #15
    Once again you call it anger, I see it as emphasis and you clearly don't get it. Yes you clearly answer it as did the second poster which he quickly(and incorrectly) dismissed as incorrect. He even pointed to a thread that proved how incorrect he was.

    You might not agree with my bluntness and that's fine, but to point it out, chastise and label it as "anger" is derailing the thread. If you have a problem with it add me to ignore, shoot me a PM or ignore it completely. This thread isn't the place for it. Thank you..
     
  16. r3voLoL macrumors member

    Joined:
    May 12, 2010
    #16
    Get over yourself
     
  17. TMar macrumors 68000

    TMar

    Joined:
    Jul 20, 2008
    Location:
    Ky
    #17
    Nice contribution, thanks for your help.
     
  18. r3voLoL macrumors member

    Joined:
    May 12, 2010
    #18
    ¡Ningún problema, pincha!
     

Share This Page