Sealedkey / pfsSKKey

From Vita Developer wiki
Jump to navigation Jump to search

sealedkey file is located in sce_sys folder of savedata/trophies. It is not PFS encrypted.

It is used as a per savedata/trophy key in PFS encryption/decryption whilst gamedata/addcont uses klicensee.

File Structure[edit]

Offset Size Description
0x0 0x8 Magic "pfsSKKey"
0x8 0x4 Type (always 2)
0xC 0x4 Padding / unk
0x10 0x10 IV for encrypted key
0x20 0x10 Encrypted key
0x30 0x20 HMAC Value


The first step is to check the HMAC of the file. The process is to use the HMAC key from the Keys#PFS_Secret_Keys page to check the HMAC at position 0x30 in the file. If it is correct, it proceeds to use the pfsSKKey_EncKey to decrypt the value at +0x20 using the value at +0x10 as the IV.