Vault 7: Projects

This publication series is about specific projects related to the Vault 7 main publication.

To edit the settings file use thenano or gedit text editors
For a list of Settings and what can be configured see the Configuration OptionsSection.
3.4 Public Key Generation
A different rsa key pair should be used with every deployment. The public rsa key is used
to encrypt audio files on the TV. The private half of the rsa key should be stored securely
and is used to decrypt audio files in a secure environment.
To generate the public key type the following:
This will generate two files: private_key.pem and public_key.pem. The whole contents of
public_key.pem should be copied into the “PublicKey setting field. The private_key.pem
will be required to decrypt the audio files generated by this deployment.
3.5 WPA Passphrase generation
To ensure the passphrase required to connect to our hotspot is not stored in plain text on
the TV it must be de-obfuscated in the settings file. This is performed using the
wpa_passphrase command on linux:
Where SSID is the SSID of the Wi-Fi hotspot you wish the application to connect to and
passphrase is the plain text passphrase for that SSID. The resulting psk output produced
by this command should then be pasted into theWPAPreSharedkeysetting.
3.6 Encrypting Settings File
Once the Settings have been configured the file needs to be encrypted. This is done using
the encryptSettings tool provided. The settings encrypter tool will verify all the Settings in
the XML file before Encrypting. The table in Appendix A give a list of error codes and their
meaning.
The encryptSettings tool will place the encrypted settings file (called config.xml.cmk) in a
folder numbered with the deployment id.
6

e-Highlighter

Click to send permalink to address bar, or right-click to copy permalink.

Un-highlight all Un-highlight selectionu Highlight selectionh