DOCSLIB.ORG

Steganographically Encoded Data

Total Page:16

File Type:pdf, Size:1020Kb

Download full-text PDF Read full-text
Steganographically Encoded Data Revista Informatica Economică, nr. 4 (44)/2007 37 Steganographically Encoded Data Adrian VASILESCU, Bucharest, Romania Steganography is the art of hiding information in ways that prevent its detection. Though steganography is an ancient craft, the onset of computer technology has given it new life. Computer-based steganographic techniques introduce changes to digital covers to embed in- formation foreign to the native covers. Such information may be communicated in the form of text, binary files, or provide additional information about the cover and its owner such as digital watermarks or fingerprints. This paper explains steganography, provides a brief his- tory and describes how steganography is applied in hiding information in images. Keywords: Steganography, information hiding, digital image, digital watermarking teganography is the art and science of matter how unbreakable it is, will arouse sus- S writing hidden messages in such a way picion and may in itself be incriminating, as in that no one apart from the intended recipient some countries encryption is illegal knows of the existence of the message; this is Steganographic techniques in contrast to cryptography, where the exis- Modern steganographic techniques tence of the message itself is not disguised, • Concealing messages within the low- but the content is obscured. est bits of noisy images or sound files. The word "Steganography" is of Greek ori- • Concealing data within encrypted gin and means "covered, or hidden writing". data. The data to be concealed is first en- Its ancient origins can be traced back to 440 crypted before being used to overwrite part BC. Herodotus mentions two examples of of a much larger block of encrypted data. Steganography in The Histories of Herodo- This technique works most effectively where tus. Demeratus sent a warning about a forth- the decrypted version of data being overwrit- coming attack to Greece by writing it on a ten has no special meaning or use: some wooden panel and covering it in wax. Wax cryptosystems, especially those designed for tablets were in common use then as re-usable filesystems, add random looking padding writing surface, sometimes used for short- bytes at the end of a ciphertext so that its size hand. Another ancient example is that of His- can't be used to know what was the plaintext tiaeus, who shaved the head of his most size. Examples of software that use this tech- trusted slave and tattooed a message on it. nique include FreeOTFE and TrueCrypt. After his hair had grown the message was • Chaffing and winnowing hidden. The purpose was to instigate a revolt • Invisible ink against the Persians. Later, Johannes • Null ciphers Trithemius's book Steganographia is a trea- • Concealed messages in tampered ex- tise on cryptography and steganography dis- ecutable files, exploiting redundancy in the guised as a book on black magic. Generally, i386 instruction set. a steganographic message will appear to be • Embedded pictures in video material something else: a picture, an article, a shop- (optionally played at slower or faster speed). ping list, or some other message. This appar- • A new steganographic technique in- ent message is the covertext. For instance, a volves injecting imperceptible delays to message may be hidden by using invisible packets sent over the network from the key- ink between the visible lines of innocuous board. Delays in keypresses in some applica- documents. tions (telnet or remote desktop) can mean a The advantage of steganography over cryp- delay in packets, and the delays in the pack- tography alone is that messages do not attract ets can be used to encode data. There is no attention to themselves, to messengers, or to extra processor or network activity, so the recipients. An unhidden coded message, no steganographic technique is "invisible" to the 38 Revista Informatica Economică, nr. 4 (44)/2007 user. This kind of steganography could be in- valee Dickinson, sent information to accom- cluded in the firmware of keyboards, thus modation addresses in neutral South Amer- making it invisible to the system. The firm- ica. She was a dealer in dolls, and her letters ware could then be included in all keyboards, discussed how many of this or that doll to allowing someone to distribute a keylogger ship. The stegotext in this case was the doll program to thousands without their knowl- orders; the 'plaintext' being concealed was it- edge. self a codetext giving information about ship • Content-Aware Steganography hides movements, etc. Her case became somewhat information in the semantics a human user famous and she became known as the Doll assigns a datagram; these systems offer secu- Woman.Counter-propaganda: During the rity against a non-human adversary/warden. Pueblo Incident, US crew members of the Historical steganographic techniques USS Pueblo (AGER-2) research ship held as Steganography has been widely used in his- prisoners by North Korea communicated in torical times, especially before cryptographic sign language during staged photo ops to in- systems were developed. Examples of his- form the United States that they had not de- torical usage include: fected, but were instead captured by North • Hidden messages in wax tablets: in an- Korea. In other photos presented to the US, cient Greece, people wrote messages on the the crew members gave "the finger" to the wood, then covered it with wax so that it unsuspecting North Koreans, in an attempt to looked like an ordinary, unused tablet. discredit the pictures that showed them smil- • Hidden messages on messenger's body: ing and comfortable.The one-time pad is a also in ancient Greece. Herodotus tells the theoretically unbreakable cipher that pro- story of a message tattooed on a slave's duces ciphertexts indistinguishable from ran- shaved head, hidden by the growth of his dom texts: only those who have the private hair, and exposed by shaving his head again. key can distinguish these ciphertexts from The message, if the story is true, carried a any other perfectly random texts. Thus, any warning to Greece about Persian invasion perfectly random data can be used as a cover- plans . text for a theoretically unbreakable steg- • Hidden messages on paper written in se- anography. A modern example of OTP: in cret inks under other messages or on the most cryptosystems, private symmetric ses- blank parts of other messages . sion keys are supposed to be perfectly ran- • During and after World War II, espionage dom (that is, generated by a good Random agents used photographically produced Number Generator), even very weak ones microdots to send information back and (for example, shorter than 128 bits). This forth. Since the dots were typically extremely means that users of weak crypto (in countries small -- the size of a period produced by a where strong crypto is forbidden) can safely typewriter or even smaller -- the stegotext hide OTP messages in their session keys. was whatever the dot was hidden within. If a Additional terminology letter or an address, it was some alphabetic In general, terminology analogous to (and characters. If under a postage stamp, it was consistent with) more conventional radio and the presence of the stamp. The problem with communications technology is used; how- the WWII microdots was that they needed to ever, a brief description of some terms which be embedded in the paper, and covered with show up in software specifically, and are eas- an adhesive (such as collodion), which could ily confused, is appropriate. These are most be detected by holding a suspected paper up relevant to digital steganographic systems. to a light and viewing it almost edge on. The The payload is the data it is desirable embedded microdot would reflect light dif- to transport (and, therefore, to hide). The car- ferently than the paper. rier is the signal, stream, or data file into • More obscurely, during World War II, a which the payload is hidden; contrast "chan- spy for the Japanese in New York City, Vel- nel" (typically used to refer to the type of in- Revista Informatica Economică, nr. 4 (44)/2007 39 put, such as "a JPEG image"). The resulting latter. For this reason, digital pictures (which signal, stream, or data file which has the pay- contain large amounts of data) are used to load encoded into it is sometimes referred to hide messages on the Internet and on other as the package. The percentage of bytes, sam- communication media. It is not clear how ples, or other signal elements which are modi- commonly this is actually done. For example: fied to encode the payload is referred to as the a 24-bit bitmap will have 8 bits representing encoding density and is typically expressed as each of the three color values (red, green, and a floating-point number between 0 and 1. In a blue) at each pixel. If we consider just the set of files, those files considered likely to blue there will be 28 different values of blue. contain a payload are called suspects. If the The difference between say 11111111 and suspect was identified through some type of 11111110 in the value for blue intensity is statistical analysis, it may be referred to as a likely to be undetectable by the human eye. candidate. Therefore, the least significant bit can be Countermeasures used (more or less undetectably) for some- The detection of steganographically encoded thing else other than color information. If we packages is called steganalysis. The simplest do it with the green and the red as well we method to detect modified files, however, is can get one letter of ASCII text for every to compare them to the originals. To detect three pixels. information being moved through the graph- Stated somewhat more formally, the objec- ics on a website, for example, an analyst can tive for making steganographic encoding dif- maintain known-clean copies of these mate- ficult to detect is to ensure that the changes to rials and compare them against the current the carrier (the original signal) due to the in- contents of the site.
Load more

Recommended publications
  • Omegakey Manage Your Device at the Management Module
    Welcome to use our latest version of Lost Mode How to Start to Use it Bluetooth tracker. Detect the distance between the device and Bluetooth Tracker module your phone under the lost mode .Turn on the Step 1: Download the latest version App(version 1.6.0) from Apple App store. omegakey Manage your device at the management module. alarm at alert whether the device is lost, there Step 2: Open the Bluetooth and App. are two levels of lost alarm mode. Select the Thank you for purchasing omegakey Freely set and remove your device here. Step 3: Tap the Beacon for 3-5 times on hard surface, and the Beacon will be connectable when you Double-click the “call” button to find your device. alarm mode you want from the device. Phone hear a buzz. alarm, and both ends alarm. Step 4: Click the Beacon in the App which you want to configure and enter a name to connect it. Step 5: Now, you can configure and use the Beacon normally. NEXT Note: If you're having trouble with the Bluetooth, we recommend you completely remove the battery from the unit for 10 sec and reinsert it. There are many apps you can download some are better than others, we have linked just click on the apple / android icons on the first page Once you have selected the app you like download it and follow the on screen instructions ATTACH BLUETOOTH BEACON EXTERNALLY FOR MAX PERFORMANCE Found mode More View the alarm location or item's last location Find the device under the find mode according p.s make sure your Bluetooth is on and your phone is compatible with 4.0 Bluetooth to the strength of the signal.
    [Show full text]
  • A Future-Focused Forensic Imager Designed to Streamline Evidence Collection Processes
    A Future-Focused Forensic Imager Designed to Streamline Evidence Collection Processes Extremely fast forensic imaging speed surpassing 50GB/min. Clone PCIe to PCIe at speeds above 90GB/min Image to/from Thunderbolt™ 3/USB-C external storage enclosures with an optional I/O card. Image and verify from up to 5 source drives up to 9 destinations simultaneously Create a logical image to capture only specific files needed Concurrent Image+Verify greatly reduces duration of image plus verification process Two 10GbE connections provide fast network imaging performance Network capture feature to capture network traffic, VOIP, internet activity Multi-task. Image from multiple sources simultaneously FEATURES n The Falcon®-NEO achieves imaging speeds when imaging directly to large capacity Thunder- n Image from a Mac® computer with USB-C ports surpassing 50GB/min and can clone PCIe to PCIe bolt 3 RAID storage enclosures for evidence data using a USB-C to USB-A cable and Target Disk at speeds at over 90GB/min. collection. The card connects to the Falcon-NEO’s Mode or use Logicube’s USB boot device to n Image and verify to multiple image formats; 2 write-blocked source I/O ports or 1 destination I/O image a source drive from a Mac computer on the native copy, .dd, dmg, e01 and ex01. The Falcon- port. The I/O card does not currently support imaging same network without booting the Mac computer’s ® NEO provides MD5, SHA1, SHA256, and dual hash in TDM from Mac systems, refer to the Falcon-NEO native OS. The Falcon-NEO supports imaging from ® authentication at extremely fast speeds.
    [Show full text]
  • Mobiflage: Deniable Storage Encryption for Mobile Devices 3
    TRANSACTIONS ON DEPENDABLE AND SECURE COMPUTING 1 Mobiflage: Deniable Storage Encryption for Mobile Devices Adam Skillen and Mohammad Mannan Abstract—Data confidentiality can be effectively preserved through encryption. In certain situations, this is inadequate, as users may be coerced into disclosing their decryption keys. Steganographic techniques and deniable encryption algorithms have been devised to hide the very existence of encrypted data. We examine the feasibility and efficacy of deniable encryption for mobile devices. To address obstacles that can compromise plausibly deniable encryption (PDE) in a mobile environment, we design a system called Mobiflage. Mobiflage enables PDE on mobile devices by hiding encrypted volumes within random data in a devices free storage space. We leverage lessons learned from deniable encryption in the desktop environment, and design new countermeasures for threats specific to mobile systems. We provide two implementations for the Android OS, to assess the feasibility and performance of Mobiflage on different hardware profiles. MF-SD is designed for use on devices with FAT32 removable SD cards. Our MF-MTP variant supports devices that instead share a single internal partition for both apps and user accessible data. MF-MTP leverages certain Ext4 file system mechanisms and uses an adjusted data-block allocator. These new techniques for storing hidden volumes in Ext4 file systems can also be applied to other file systems to enable deniable encryption for desktop OSes and other mobile platforms. Index Terms—File system security, Mobile platform security, Storage Encryption, Deniable encryption ✦ 1 INTRODUCTION AND MOTIVATION plaintext can be recovered by decrypting with the true key. In the event that a ciphertext is intercepted, and the Smartphones and other mobile computing devices are user is coerced into revealing the key, she may instead being widely adopted globally.
    [Show full text]
  • Deep Web for Journalists: Comms, Counter-Surveillance, Search
    Deep Web for Journalists: Comms, Counter-surveillance, Search Special Complimentary Edition for Delegates attending the 28th World Congress of the International Federation of Journalists * By Alan Pearce Edited by Sarah Horner * © Alan Pearce June 2013 www.deepwebguides.com Table of Contents Introduction by the International Federation of Journalists A Dangerous Digital World What is the Deep Web and why is it useful to Journalists? How Intelligence Gathering Works How this affects Journalists 1 SECURITY ALERT . Setting up Defenses 2 Accessing Hidden Networks . Using Tor . Entry Points 3 Secure Communications . Email . Scramble Calls . Secret Messaging . Private Messaging . Deep Chat . Deep Social Networks 4 Concealed Carry 5 Hiding Things . Transferring Secret Data . Hosting, Storing and Sharing . Encryption . Steganography – hiding things inside things 6 Smartphones . Counter-Intrusion . 007 Apps 7 IP Cameras 8 Keeping out the Spies . Recommended Free Programs . Cleaning Up . Erasing History . Alternative Software Share the Knowledge About the Authors Foreword by the International Federation of Journalists Navigating the Dangerous Cyber Jungle Online media safety is of the highest importance to the International Federation of Journalists. After all, the victims are often our members. The IFJ is the world’s largest organization of journalists and our focus is on ways and means to stop physical attacks, harassment and the killing of journalists and media staff. In an age where journalism – like everything else in modern life – is dominated by the Internet, online safety is emerging as a new front. In this new war, repressive regimes now keep a prying eye on what journalists say, write and film. They want to monitor contacts and they want to suppress information.
    [Show full text]
  • Mobigyges: a Mobile Hidden Volume for Preventing Data Loss, Improving Storage Utilization, and Avoiding Device Reboot
    MobiGyges: A Mobile Hidden Volume for Preventing Data Loss, Improving Storage Utilization, and Avoiding Device Reboot Wendi Fenga, Chuanchang Liua, Zehua Guob,c, Thar Bakerd, Gang Wangb,c, Meng Wanga, Bo Chenga, and Junliang Chena aBeijing University of Posts and Telecommunications, 10 Xitucheng RD, 100876, Beijing, China bBeijing Institute of Technology, 5 Zhongguancun ST South, 100081, Beijing, China cUniversity of Minnesota Twin Cities, 117 Pleasant ST, 55455, Minneapolis, USA dLiverpool John Moores University, James Parson Building, Liverpool, L3 3AF, UK Abstract Sensitive data protection is essential for mobile users. Plausibly Deniable Encryption (PDE) systems provide an effective manner to protect sensitive data by hiding them on the device. However, existing PDE systems can lose data due to overriding the hidden volume, waste physical storage because of the \reserved area" used for avoiding data loss, and require device reboot when using the hidden volume. This paper presents MobiGyges, a hidden volume based mobile PDE system, to fill the gap. MobiGyges addresses the problem of data loss by restricting each storage block used only by one volume, and it improves storage utilization by eliminating the \reserved area". MobiGyges can also avoid device reboot by mounting the hidden volume dynamically on-demand with the Dynamic Mounting service. Moreover, we identify two novel PDE oriented attacks, the capacity comparison attack and the fill-to-full attack. MobiGyges can defend them by jointly leveraging the Shrunk U-disk method and multi-level deniability. We implement the MobiGyges proof-of-concept system on a real mobile phone Google Nexus 6P with LineageOS 13. Experimental results show that MobiGyges prevents data loss, avoids device reboot, improves storage utilization by over 30% with acceptable performance overhead compared with current works.
    [Show full text]
  • Or As I Like to Call It, Occult Computing Adrian Crenshaw
    Or as I like to call it, Occult Computing Adrian Crenshaw http://Irongeek.com I run Irongeek.com I have an interest in InfoSec education I don’t know everything - I’m just a geek with time on my hands http://Irongeek.com Occult comes from the Latin word occultus (clandestine, hidden, secret), referring to "knowledge of the hidden". Forensic: Relating to the use of science and technology in the investigation and establishment of facts or evidence in a court of law. Since hiding activities is what we are doing, Occult Computing seems like a good name. Since people are not necessarily hiding their activities from a court of law, the term anti-forensics may not apply. Occult Computing sounds cooler than Anti-forensics Cthulhu fhtagn http://Irongeek.com Thanks to Wikipedia and Wiktionary for wording of definitions Why: Not about just hiding your stash from the Fuzz… Law/policy enforcement may find it useful to know how folks hide their computer activities Users may want to know how to hide their activities from invasive law/policy enforcement Companies may want to know how to clear boxes before donating them What: Mostly Windows, but most ideas are applicable to other operating systems Not going to cover malware analysis, nor network anti-forensics (at least not much) Mostly we will cover hiding tracks left on storage media http://Irongeek.com 1. Don’t leave tracks in the first place 2. Selective file removal and encryption tools 3. Parlor Tricks 4. Nuke it from orbit, it's the only way to be sure http://Irongeek.com Bow down before my Venn diagram of doom!!! If it’s not easy, folks won’t do it.
    [Show full text]
  • Comparison of Disk Encryption Software 1 Comparison of Disk Encryption Software
    Comparison of disk encryption software 1 Comparison of disk encryption software This is a technical feature comparison of different disk encryption software. Background information Name Developer First released Licensing Maintained? ArchiCrypt Live Softwaredevelopment Remus ArchiCrypt 1998 Proprietary Yes [1] BestCrypt Jetico 1993 Proprietary Yes BitArmor DataControl BitArmor Systems Inc. 2008-05 Proprietary Yes BitLocker Drive Encryption Microsoft 2006 Proprietary Yes Bloombase Keyparc Bloombase 2007 Proprietary Yes [2] CGD Roland C. Dowdeswell 2002-10-04 BSD Yes CenterTools DriveLock CenterTools 2008 Proprietary Yes [3][4][5] Check Point Full Disk Encryption Check Point Software Technologies Ltd 1999 Proprietary Yes [6] CrossCrypt Steven Scherrer 2004-02-10 GPL No Cryptainer Cypherix (Secure-Soft India) ? Proprietary Yes CryptArchiver WinEncrypt ? Proprietary Yes [7] cryptoloop ? 2003-07-02 GPL No cryptoMill SEAhawk Proprietary Yes Discryptor Cosect Ltd. 2008 Proprietary Yes DiskCryptor ntldr 2007 GPL Yes DISK Protect Becrypt Ltd 2001 Proprietary Yes [8] cryptsetup/dmsetup Christophe Saout 2004-03-11 GPL Yes [9] dm-crypt/LUKS Clemens Fruhwirth (LUKS) 2005-02-05 GPL Yes DriveCrypt SecurStar GmbH 2001 Proprietary Yes DriveSentry GoAnywhere 2 DriveSentry 2008 Proprietary Yes [10] E4M Paul Le Roux 1998-12-18 Open source No e-Capsule Private Safe EISST Ltd. 2005 Proprietary Yes Dustin Kirkland, Tyler Hicks, (formerly [11] eCryptfs 2005 GPL Yes Mike Halcrow) FileVault Apple Inc. 2003-10-24 Proprietary Yes FileVault 2 Apple Inc. 2011-7-20 Proprietary
    [Show full text]
  • A New Standard in Digital Forensics
    A New Standard in Digital Forensics Extremely fast forensic imaging at over 30GB/min* Image and verify from 4 source drives to 5 destinations Write-blocked preview & triage of suspect drive contents Image to or from a network location Multi-task. Set Image, wipe, hash tasks to run concurrently Targeted Imaging feature allows you to create a logical image using pre-set, custom filters, file signature filters and/or keyword search to capture only specific files needed Supports PCIe SSDs (M.2 SATA/AHCI/NVME type) with optional adapters Without exception, the most technologically advanced forensic imaging solution available. Blazing fast performance, feature-packed, and designed to meet future technology advances, the Falcon sets a new standard of excellence in digital forensic imaging solutions. FEATURES ­n The Falcon is blazing fast with imaging speeds of ­n Built-in support for SAS/SATA/USB3/FireWire n Write-blocked preview/triage hard drive contents. over 30GB/min* storage devices. Adapters are included with Use the Falcon as a write-blocker. The file browser ­n Image and verify to multiple image formats; Falcon to support 1.8”/2.5”/3.5”/1.8” ZIF IDE and feature provides write-blocked access to source or native copy, dd image, e01, ex01 and file-based microSATA drive interfaces. Optional adapters are destination drives connected to Falcon. View the copy. Compression available for E01/Ex01 available for eSATA, mSATA and compact flash drive’s partitions and contents and view text files, formats. Uses SHA1, SHA256, MD5 and dual-hash drives. An optional SCSI module provides support jpeg, PDF, XML, or HTML files.
    [Show full text]
  • Falcon®-NEO User's Manual
    Falcon®-NEO User’s Manual Logicube, Inc. Chatsworth, CA 91311 USA Phone: 818 700 8488 Fax: 818 700 8466 Version: 3.2u1 Date: 10/22/2020 MAN-FALCON-NEO Logicube Falcon®-NEO User’s Manual I Limitation of Liability and Warranty Information Logicube Disclaimer LOGICUBE IS NOT LIABLE FOR ANY INCIDENTAL OR CONSEQUENTIAL DAMAGES, INCLUDING, BUT NOT LIMITED TO PROPERTY DAMAGE, LOSS OF TIME OR DATA FROM USE OF A LOGICUBE PRODUCT, OR ANY OTHER DAMAGES RESULTING FROM PRODUCT MALFUNCTION OR FAILURE OF (INCLUDING WITHOUT LIMITATION, THOSE RESULTING FROM: (1) RELIANCE ON THE MATERIALS PRESENTED, (2) COSTS OF REPLACEMENT GOODS, (3) LOSS OF USE, DATA OR PROFITS, (4) DELAYS OR BUSINESS INTERRUPTIONS, (5) AND ANY THEORY OF LIABILITY, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE (OR FROM DELAYS IN SERVICING OR INABILITY TO RENDER SERVICE ON ANY) LOGICUBE PRODUCT. LOGICUBE MAKES EVERY EFFORT TO ENSURE PROPER OPERATION OF ALL PRODUCTS. HOWEVER, THE CUSTOMER IS RESPONSIBLE TO VERIFY THAT THE OUTPUT OF LOGICUBE PRODUCT MEETS THE CUSTOMER’S QUALITY REQUIREMENT. THE CUSTOMER FURTHER ACKNOWLEDGES THAT IMPROPER OPERATION OF LOGICUBE PRODUCT AND/OR SOFTWARE, OR HARDWARE PROBLEMS, CAN CAUSE LOSS OF DATA, DEFECTIVE FORMATTING, OR DATA LOADING. LOGICUBE WILL MAKE EFFORTS TO SOLVE OR REPAIR ANY PROBLEMS IDENTIFIED BY CUSTOMER, EITHER UNDER WARRANTY OR ON A TIME AND MATERIALS BASIS. Warranty DISCLAIMER IMPORTANT - PLEASE READ THE TERMS OF THIS AGREEMENT CAREFULLY. BY INSTALLING OR USING LOGICUBE PRODUCTS, YOU AGREE TO BE BOUND BY THIS AGREEMENT. IN NO EVENT WILL LOGICUBE BE LIABLE (WHETHER UNDER THIS AGREEMENT, RESULTING FROM THE PERFORMANCE OR USE OF LOGICUBE PRODUCTS, OR OTHERWISE) FOR ANY AMOUNTS REPRESENTING LOSS OF PROFITS, LOSS OR INACCURACY OF DATA, LOSS OR DELAYS OF BUSINESS, LOSS OF TIME, COSTS OF PROCUREMENT OF SUBSTITUTE GOODS, SERVICES, OR TECHNOLOGY, PROPERTY DAMAGE, OR INDIRECT, CONSEQUENTIAL, OR PUNITIVE DAMAGES OF A PURCHASER OR USER OF LOGICUBE PRODUCTS OR ANY THIRD PARTY.
    [Show full text]
  • Anti-Virus - Backup - Encryption - File System - Forensics Media - Networking - Office - Password Recovery Pen-Testing - Registry - System - Utilities
    Katana Tool Kit: Portable Applications Anti-Virus - Backup - Encryption - File System - Forensics Media - Networking - Office - Password Recovery Pen-Testing - Registry - System - Utilities Portable applications are those which do not require installation on a system to be executed. They can be run directly from an external device allowing you to bring all your favorite applications around with you on one drive. The Katana Tool Kit comes preconfigured with over a hundred portable applications. Anti-Virus ClamAV 0.96 ClamWin Portable is the popular ClamWin antivirus packaged as a portable app, so you can take your antivirus with you to scan files on the go. You can place it on your USB flash drive, iPod, portable hard drive or a CD and use it on any computer, without leaving any personal information behind. SpyDLLRemover 3.2 SpyDLLRemover is the standalone tool to effectively detect and delete spywares from the system. It comes with advanced spyware scanner which quickly discovers hidden Rootkit processes as well suspcious/injected DLLs within all running processes. StreamArmor 1 StreamArmor is the sophisticated tool for discovering hidden alternate data streams (ADS) as well as clean them completely from the system. It's advanced auto analysis coupled with online threat verification mechanism makes it the best tool available in the market for eradicating the evil streams. StreamArmor comes with fast multi threaded ADS scanner which can recursively scan over entire system and quickly uncover all hidden streams. Backup Unstoppable Copier 4.4 Unstoppable Copier is a Free Portable tool that allows you to recover files from hard drives, flash drives, CDs/DVDs and other media disks that have physical damage or are starting to go bad.
    [Show full text]
  • Artifice: a Deniable Steganographic File System
    Artifice: A Deniable Steganographic File System Austen Barker Staunton Sample Yash Gupta Anastasia McTaggart Ethan L. Miller Darrell D. E. Long University of California, Santa Cruz Abstract nations and law enforcement to legally obligate disclosure of The challenge of deniability for sensitive data can be a life encryption keys [24]. or death issue depending on location. Plausible deniability Since carrying encrypted files or dedicated hardware is in- directly impacts groups such as democracy advocates relay- herently suspicious, a deniable storage system must co-exist ing information in repressive regimes, journalists covering with an open public file system to maintain plausible de- human rights stories in a war zone, and NGO workers hid- niability. It is highly suspicious if there are visible drivers ing food shipment schedules from violent militias. All of or firmware, unconventional partitioning schemes, unusable these users would benefit from a plausibly deniable data stor- space in a file system, or unexplained changes to disk free age system. Previous deniable storage solutions only offer space. The hidden file system must therefore operate in such pieces of an implementable solution. Artifice is the first tun- a way that the encapsulating file system and operating system able, operationally secure, self repairing, and fully deniable are unaware of the hidden file system’s existence, even when steganographic file system. faced with a detailed forensic examination. A deniable sys- Artifice operates through the use of a virtual block device tem must therefore meet four requirements: effectively hide driver stored separately from the hidden data. It uses external existence of the data, disguise hidden data accesses, have no entropy sources and erasure codes to deniably and reliably impact on the behavior of the public system, and hide the store data within the unallocated space of an existing file software used to access the hidden data.
    [Show full text]
  • Delineation of Trivial PGP Security
    IOSR Journal of Computer Engineering (IOSR-JCE) e-ISSN: 2278-0661,p-ISSN: 2278-8727, Volume 20, Issue 3, Ver. I (May. - June. 2018), PP 17-23 www.iosrjournals.org Delineation of Trivial PGP Security Mr. Nikhil Joshi1, Mr. Gaurav Kumar2, 3 Prof. Divya Premchandran Asst Professor , 1mca Student, Bvimit Cbd Belapur, Navi Mumbai. 2mca Student, Bvimit Cbd Belapur, Navi Mumbai. 3mca Bvimit Cbd Belapur, Navi Mumbai. Corresponding Author:Mr. Nikhil Joshi Abstract: The enhanced PGP Security that we are proposing is based only for digital signatures & encryption/decryption of the messages. The algorithm that is used here consists of asymmetric algorithm as RSA 4096 & the symmetric algorithm used is AES-256(Advance Encryption standard). Also we require hashing function in order to secure the digital signature as well as messages. Hence we use Whirlpool hashing function which is open source & is based on 512 block cipher that makes the application more powerful than the previously used. Keywords: -Asymmetry algorithm, AES-256, Digital Signature, Hash Function, OpenPGP , PGP, RSA 4096, Rijndael Cipher, SHA-256, Symmetric algorithm, Whirlpool. -------------------------------------------------------------------------------------------------------------------------------------- Date of Submission: 07-05-2018 Date of acceptance: 26-05-2018 ----------------------------------------------------------------------------------------------------------------------------- ---------- I. Introduction The process of creating & maintaining digitalsignature along with encryption/decryption of messages is widely known & used in PGP. Various symmetric algorithms like DES, Triple DES, Twofish & IDEA along with hashing functions like MD5, SHA-1, SHA-256 has been introduced to provide a stronger encryption technique. The key exchange policy RSA 4096 is still considered the best asymmetric algorithm so far. Although being so strong in their encryption technique it is still slower & weaker compared to the newly concept that we are going to introduce is AES-256 & Whirlpool.
    [Show full text]