"when Netflix came begging for a solution to their DRM conundrum"
Does Netflix DRM even "work"? I've never personally seriously looked around for how to break it, but I note there are still plenty of people who seem to manage to review Netflix-based shows on YouTube with video clips of sufficient quality [1], and at least some of the reviewers in question I am fairly confident aren't getting any sort of privileged backdoor access or anything.
Is it "anyone can crack with a smidge of effort" or "it's really hard but it spreads once cracked"? I'm not asking for a lot of details of the crack per se, just general details of how successful it can be said to be in practice.
[1] I'm not claiming they aren't necessarily re-re-encoded by the time they get to me, but if they are, I can't tell for sure, so I'm going with "sufficient quality" as a description.
HDCP is broken, so people just get their captures from there I think. The Widevine stuff is also clearly not as trusted by publishers, which is why they only publish 720p streams on it IIRC. I think this is because it gets less help from the platform to prevent copying the frames.
No, this used to be the case, but isn't any more. Captures using lossless capture cards are called Webrips and generally disliked because they have to be reencoded (losing quality) and can only be ripped in realtime. For a long time now the better p2p groups (and even some scene) have figured out how to extract the encryption keys directly from the EME modules. So most of the Netflix rips you find on torrents these days are actually byte-for-byte copies of what you would view on Netflix.
Actually they should be byte-for-byte copies, but generally aren't, since Netflix makes you jump through half a dozen hoops to get the highest quality streams, so pirated copies are actually much better quality than what you can get on Netflix.
There are gazillion of 1:2 and 1:4 Chinese video splitters that strip HDCP from up to 4K sources letting any capture card rip anything that can be played on up to 4K TV.
A researcher on twitter recently cracked widevine level 1 quite quickly according to himself. No proof of concept was offered but he seemed to be claiming it was fairly simple. Netflix uses level 3.
The browser has to decrypt it somewhere along the line to play. Always was interested in tinkering around with it.
For a starting point I'd be going through chromium and checking out how they implement widevine.
For a while now there's been rumors in the torrent scene that a few people have broken it, but keep coy in case it gets patched. Then again it's trivial to screenrecord at the cost of time. Who knows?
Netflix only requires level 2 for HD streams, IIRC. SD streams can be level 1, I think.
Level 3 requires a secure path all the way to the display (so the decryption happens in a Trusted Execution Environment, the keys are stored in a Trusted Platform Module, and HDCP or similar to the display). Level 3 practically only exists on mobile currently, as Intel's SGX (their TEE) is typically disabled by default on what processors do support it.
Does Netflix DRM even "work"? I've never personally seriously looked around for how to break it, but I note there are still plenty of people who seem to manage to review Netflix-based shows on YouTube with video clips of sufficient quality [1], and at least some of the reviewers in question I am fairly confident aren't getting any sort of privileged backdoor access or anything.
Is it "anyone can crack with a smidge of effort" or "it's really hard but it spreads once cracked"? I'm not asking for a lot of details of the crack per se, just general details of how successful it can be said to be in practice.
[1] I'm not claiming they aren't necessarily re-re-encoded by the time they get to me, but if they are, I can't tell for sure, so I'm going with "sufficient quality" as a description.