Some enthusiasts participate in homebrew for the PlayStation 3 video game console. Homebrew started due to George Hotz wanting to install Linux on the PS3, a feature which was removed in the 3.55 update. This led to him being sued by Sony. The court case was settled out of court, with the result of George Hotz not being able to circumvent the PS3 security system.
Private key compromised
At the 2010 Chaos Communication Congress in Berlin, a group calling itself fail0verflow announced it had succeeded in bypassing a number of the PlayStation 3's security measures, allowing unsigned code to run without a dongle. They also announced that it was possible to recover the Elliptic Curve DSAprivate key used by Sony to sign software, due to a failure of Sony's ECDSA implementation to generate a different random number for each signature. However, fail0verflow chose not to publish this key because it was not necessary to run homebrew software on the device. The release of this key would allow anyone to sign their code and therefore be able to run it on any PlayStation 3 console. This would also mean that no countermeasures could be taken by Sony without rendering old software useless, as there would be no distinction between official and homebrew software. On January 3, 2011, geohot published the aforementioned private key, represented in hexadecimal as 46 DC EA D3 17 FE 45 D8 09 23 EB 97 E4 95 64 10 D4 CD B2 C2, as well as a Hello world program for the PS3. On January 12, 2011, Sony Computer Entertainment America filed lawsuits against both fail0verflow and geohot for violations of the DMCA and CFAA. The suit against geohot was settled at the end of March, 2011, with geohot agreeing to a permanent injunction.
Custom firmware (CFW)
To allow for homebrew using the newly discovered encryption keys, several modified versions of system update 3.55 have been released by Geohot and others. The most common feature is the addition of an "App Loader" that allows for the installation of homebrew apps as signed DLC-like packages. Although Backup Managers could run at that time, they could not load games at first even though some success had been made by making backups look like DLC games and then signing them. An LV2 patch was later released to allow Backup Managers to load game backups and was later integrated into the Managers themselves so that it doesn't have to be run whenever the PS3 is restarted. PS3 System Software update 3.56 tried to patch Miha's exploit for 3.55, however, within a daythe system was circumvented again. This caused Sony to release another update shortly after, 3.60, which was secure against circumvention. However, users may choose not to update and games requiring a firmware version above 3.55 can be patched to run on v3.55 or lower. Soon after v3.60 was released, updates to the PlayStation Network were conducted to block any methods known that allowed PSN access on firmware older than the latest required official firmware, thereby blocking users who chose not to update. A custom firmware known as "Rebug", released on March 31, 2011, gave retail PS3s most of the options and functionality of debug/developer PS3 units. One week later, tutorials became available allowing users to download PSN content for free, using fake credit card numbers. One April 12 report described hackers using the jailbroken firmware to access the dev-PSN to get back on games like Call of Duty, with widespread reports of cheating. While some sources blamed Rebug for the subsequent intrusion to Sony's private developer network, Time "Techland" described such theories as "highly—as in looking down at the clouds from the tip-top of Mount Everest highly—speculative". In late 2017, there was a tool released to convert 4.82 PS3 OFW to CFW.