Sony has entered a new phase in the lifespan of the PS3, but not by some new peripheral, reaching a sales goal or redefining their online market. This phase is not a good one for the company either: it is the age of the hackers.
The Sony PS3 uses a root code system for authenticating games, programs, and anything else that runs on the system. This root code governs the entire security of the system; at least it used to. Earlier this month George Hotz and his team successfully hacked the PS3 root code, opening the system to hackers around the world. Unlike previous hacks where they are based on a physical attachment to the system, which can usually be circumvented by a security patch, this hack is purely digital.
The magnitude of this hack becomes apparent when you look at how it will affect piracy on the system. Using this hack, any pirated game is playable, any trophy is immediately attainable, any operating system can be installed on the system. Hackers have already swarmed COD, leading to unplayable servers for honest gamers, some of who have now lost all of their stats and trophies.
Many gaming systems utilize a hardwired identification number, as well as a randomly generated root code for every individual console. This method increases security immensely because even if someone successfully breaks the root code, it will only work on that specific console. In addition, if that hack is detected by the console manufacturer they can ban that specific system from connecting to Playstation Network. This model is how Microsoft operates the Xbox 360 network, using a hardwired identification built into each component. If any components don’t match, then the system will break and become a paperweight.
Sony made the mistake of using the same root code on every single system they manufactured, severely reducing the security. Once one system is hacked, then they are all hacked as the same process will unlock every system in the entire world. Also, the identification code for each system is stored digitally and secured by the root code.
Sony has the ability to detect people who are hacking games and the normal solution would be to ban them from the Playstation Network. Unfortunately, they can only ban a system based on the identification code, which can now be changed using the root code hack. Sony can release all the security patches they want, but they won’t last for long now that the root code is hacked.
The only foolproof way for Sony to completely fix the problem is to offer a voluntary recall of every PS3 they have ever sold, as well as retracting every console from retailers around the world. Each console would need to be opened up and have the CPU replaced. Of course the cost of shipping all of those consoles would be substantial-just ask Microsoft. During the Red Ring of Death fiasco, Microsoft extended their warranty to cover all RROD errors and also paid for shipping in some cases. However, that was just for a percentage of all consoles and the fix was easy – just swap out the heatsink. Sony has a much bigger challenge, considering that they need to change the way the entire CPU works to remove the hacking threat.
Of course, the obvious problem with a voluntary recall is that it is voluntary. Anyone who actually hacks their system does so for the sole purpose of defeating the built-in security, so they are not going to actually send their systems in – which trivializes any campaign to fix the problem.
How much money can Sony afford to dump into fixing this issue, and how much will it take to completely bankrupt their gaming division? This development will haunt Sony for many years, and cause headaches for all the PS3 gamers. There have been rumours for a while about a new tiered pay structure for PSN, but how can they ensure the quality when the hack is so easy and destructive? Developers of multiplayer games will now need to implement their own security systems in an attempt to ensure a fair competition for all gamers.
It is impossible to predict what will happen in the next few months, how Sony will respond, and how the law suit against Hotz will pan out. One thing is certain: this will profoundly change Sony’s pricing scheme, their plans for the future and their planned lifetime for the PS3. Of course, Sony has been considering different options for the future of the Playstation brand; it’s safe to say they are going to be profoundly changing their security system. Now Playstation is in a position where they need to release the successor to the PS3 as soon as possible, in an economic period where their competitors are trying to extend the current generation as much as possible. Sony has some very difficult decisions to make about the future of their console and it will be interesting to see the outcome of this unique situation, so stay tuned.
Leave a Reply