DOCSLIB.ORG

Computer Forensics: Steganography 4.2.2019

Total Page:16

File Type:pdf, Size:1020Kb

Download full-text PDF Read full-text
Computer Forensics: Steganography 4.2.2019 Steganography 4.2.2019. ● cryptography • exchanging messages – everybody can see that communication is going on • through open channels ● even capture the message • even if someone can – but cannot understand the message ▪ intercept messages and change them ● steganography • "The Prisoners Problem" by Simmons, 1983 – is hiding the fact that there is a communication ● nobody can see the message ● it is hidden steganos = protected gráfo = to write http://docsdrive.com/images/academicjournals/rjit/2013/fig3-2k13-53-66.jpg 2015-2017 (c) P.Pale: Computer forensics: Steganography 4.2.2019. 2 2015-2017 (c) P.Pale: Computer forensics: Steganography 4.2.2019. 3 1 2 3 4 • invisible (secret) ink • digital messages • 1499. g. „Steganographia” by Johannes Trithemus ▪ needs chemicals or heat to become visible ▪ first recorded use of the term „steganography” • digital text ▪ a book on cryptography ◦ lemon juice–heat • network steganography and steganography • knitting in clothes • ▪ Cyber-physical Systems (Internet of Things) disguised as a book on magic ! • microdots • 440 BC - Herodot records use • printed content ▪ shaving slaves head • typefaces in printed text ▪ „Is every car electrical?” ▪ using wooden surface of wax tablets . • media files • Cardan Grille ▪ positions in text 2/4/2019 4 2015-2017 (c) P.Pale: Computer forensics: Steganography 4.2.2019. 5 2015-2017 (c) P.Pale: Computer forensics: Steganography 4.2.2019. 6 4 5 6 2015-2017 (c) P.Pale: Computer forensics 1 Steganography 4.2.2019. • hiding content in office files • also „Social steganography” • using color to disguise text ▪ text and background of same color • using space in last block after the end-of-file • all sorts of messages • overlapping elements • hidden partitions ▪ web pages, blogs, comments, shares, likes ▪ picture overlapping text People can’t see messages but programs can detect them • … • methods • coding ▪ mixing ASCII and Unicode characters ▪ timing, order, mistakes, …. ▪ nonprinting Unicode characters ▪ types of media files, size, metadata …. • deliberate errors ▪ using jargon ▪ spelling ◦ professional, slang, emoticons, pictograms, … ▪ formatting • using control elements in HTML ▪ embedding in JavaScript 2015-2017 (c) P.Pale: Computer forensics: Steganography 4.2.2019. 7 2015-2017 (c) P.Pale: Computer forensics: Steganography 4.2.2019. 8 2015-2017 (c) P.Pale: Computer forensics: Steganography 4.2.2019. 9 7 8 9 • uses communication protocols' control elements ▪ typically in headers • Some countries (e.g. China, Iran…) • They use technology ▪ or special packets ▪ block access to VPNs, Tor network etc. ▪ that makes “illegal” traffic (e.g. Tor traffic) ▪ or pattern of packet exchange • single protocol ▪ on a network level ▪ look like “legal” traffic (e.g. Skype video call traffic) ▪ within packets ▪ timing of packets • multiple protocols ▪ inter protocol steganography • To circumvent this • Doing this • steganophony ▪ citizens use (network) steganography ▪ makes it hard to block “illegal” traffic ▪ Voice-over-IP ◦ LACK (Lost Audio Packets Steganography) ▪ without also blocking “legal” traffic ▫ delayed or corrupted packets ▪ WLAN Steganography ▪ because it is hard to distinguish between them ◦ HICCUPS (Hidden Communication System for Corrupted Networks) ▫ intentionally wrong checksums 2015-2017 (c) P.Pale: Computer forensics: Steganography 4.2.2019. 10 2015-2017 (c) P.Pale: Computer forensics: Steganography 4.2.2019. 11 2015-2017 (c) P.Pale: Computer forensics: Steganography 4.2.2019. 12 10 11 12 2015-2017 (c) P.Pale: Computer forensics 2 Steganography 4.2.2019. • The programs for hiding Tor network traffic • Format-Transforming Encryption (FTE) • SkypeMorph/CTT ▪ are called Pluggable Transports (PT) ▪ makes data (e.g. “illegal” Tor/VPN traffic) ▪ disguises Tor traffic • There are many ingenious PT designs ▪ look like arbitrary application-layer traffic (e.g. HTTP) ▪ as Skype video call traffic ▪ more info: https://www.torproject.org/docs/pluggable-transports.html.en • From a steganography point of view, ▪ some interesting PTs are: ◦ Format-Transforming Encryption (FTE) ◦ SkypeMorph / Code-Talker-Tunnel ◦ meek http://cacr.uwaterloo.ca/techre ports/2012/cacr2012-08.pdf https://fteproxy.org/about.html 2015-2017 (c) P.Pale: Computer forensics: Steganography 4.2.2019. 13 2015-2017 (c) P.Pale: Computer forensics: Steganography 4.2.2019. 14 2015-2017 (c) P.Pale: Computer forensics: Steganography 4.2.2019. 15 13 14 15 • meek uses domain fronting: • This works with some CDN services e.g.: • Physical systems controlled by computers ▪ it uses different domain names ▪ Amazon CloudFront ▪ at different layers of communication ▪ Microsoft Azure • the state of multiple devices • one domain ▪ appears on the “outside” of an HTTPS request • the timing/order of their operation: on/off ◦ in the DNS request • the manipulation of their measurements and ◦ and TLS Server Name Indication reports • while another domain ▪ appears on the “inside” • … ◦ in the HTTP Host header • more info: https://www.bamsoftware.com/papers/fronting/ https://fteproxy.org/about.html 2015-2017 (c) P.Pale: Computer forensics: Steganography 4.2.2019. 16 2015-2017 (c) P.Pale: Computer forensics: Steganography 4.2.2019. 17 2015-2017 (c) P.Pale: Computer forensics: Steganography 4.2.2019. 18 16 17 18 2015-2017 (c) P.Pale: Computer forensics 3 Steganography 4.2.2019. • Machine Identification Code (MIC) ▪ „yellow dots, tracking dots, secret dots” • audio, video, photos, drawings ▪ laser printers and photo-copiers • ▪ watermarking every page techniques ▪ serial number, timestamp ▪ insertion • countermeasures ▪ to enhance privacy ▪ modifying least significant bits ▪ • the letter size, spacing, typeface, … distortions ▪ FontCode ▪ creating carrier ◦ http://www.cs.columbia.edu/cg/fontcode/ ◦ modifying specific parameters of letters ▫ to carry information ◦ undetectable to humans ◦ machine readable to computers ◦ message is preserved ▫ in copying/scanning/resizing/rotating 2/4/2019 21 2015-2017 (c) P.Pale: Computer forensics: Steganography 4.2.2019. 19 2015-2017 (c) P.Pale: Computer forensics: Steganography 4.2.2019. 20 19 20 21 22 23 24 • hiding image or audio (and decoding) • free coding and decoding of any file type • hiding and decoding images, audio, video ▪ any format by Andy Brown • uses LSB (Least significant bits algorithm) • can use multiple carriers (carrier chain) • in image or audio by Michal Wegrzyn by Cosimo Oliboni WIndows only • simple GUI for various techniques ▪ JPG, PNG, MP3, MP4, WAV,... ▪ WAV, BMP, GIF • 3 layers of hidden data obfuscation • also offers encryption ▪ cryptography, whitening and encoding ▪ IDEA, DES, MDC • deniable steganography 2/4/2019 22 2/4/2019 23 2/4/2019 24 22 23 24 2015-2017 (c) P.Pale: Computer forensics 4 Steganography 4.2.2019. 25 26 • creating carrier • hiding any type of file Software Carrier RAM Encryption Steganography usage algorithm • also editing image • by Kent Briggs in audio or image S-Tools BMP, GIF 1.6 MB IDEA, DES, LSB ▪ resizing, cropping, rotating … ▪ JPG, GIF, BMP or MP3, WAV T-DES, MDC • VSL Any 43.8 MB - LSB, encrypting • can also encrypt Karhunen-Loeve, ▪ 256-bit AES F5 algorithm ▪ Blowfish, AES, T-DES OpenPuff BMP, JPG, PCX, PNG, 36.0 MB AES, Anubis, LSB TGA Camelia, proprietary CryptaPix BAY, BMP, CRW, CR2, CUR, 6.3 MB AES 3 bit segments DCR, DCX, DIB, EMF, FAX,GIF, G3F, G3N, ICB, ICO, JIF, JPC, JPE, JPG, JP2, J2C, J2K, MRW, NEF… Quick Crypto JPG, GIF, BMP 4.7 MB Blowfish, AES, LSB T-DES 2/4/2019 25 2/4/2019 26 2015-2017 (c) P.Pale: Computer forensics: Steganography 4.2.2019. 27 25 26 27 28 29 • Measures ▪ PSNR – Peak Signal to Noise Ratio ◦ better measure 1 2 ◦ the greater the value the better image Image S-Tools VSL OpenPuff CryptaPix Quick ▪ SSIM – Structural Similarity Index Crypto P 3 66.32 57.09 56.76 56.34 65.02 ◦ similar to human perception S ◦ values 0 to 1; 1 = totally equal N 4 67.02 58.76 57.26 57.26 66.01 R • Message 5 67.1 57.95 57.03 57.03 66.25 • Carriers PSNR vrijednosti Image S-Tools VSL OpenPuff CryptaPix Quick S Crypto S 3 0.9999 0.9988 0.9989 0.9988 0.9998 I 4 0.9998 0.9987 0.9981 0.9981 0.9998 M 5 1.0 0.9997 0.9997 0.9997 1.0 SSIM vrijednosti 2/4/2019 30 467.6 KB 399x399 24 bit BMP Slika500.2 2 KB 413x413 24 bit BMP 557.0 KB 436x436 24 bit BMP 2/4/2019 28 2/4/2019 29 28 29 30 2015-2017 (c) P.Pale: Computer forensics 5 Steganography 4.2.2019. 31 32 • the science of discovering messages • Prema poznatim informacijama ▪ hidden by steganographic methods • Metoda vizualnog pregleda • analytical „attacks” attempt to • Audio‐reproduktivna metoda ▪ detect the presence of a hidden message ▪ or even its meaning/content • Softverska metoda 2/4/2019 31 2/4/2019 32 31 32 33 2015-2017 (c) P.Pale: Computer forensics 6.
Load more

Recommended publications
  • Openpuff Steganography & Watermarking
    OPENPUFF V4.01 STEGANOGRAPHY & WATERMARKING Data hiding and watermarking made easy, safe and free EmbeddedSW © 2018 Send your suggestions, comments, bug reports, requests to [email protected] – Skype "embeddedsw.company" OPENPUFF HOMEPAGE LEGAL REMARKS P. 2 OPENPUFF INSTALLATION: WINDOWS P. 3 OPENPUFF INSTALLATION: LINUX P. 4 FEATURES: WHY IS THIS STEGANOGRAPHY TOOL DIFFERENT FROM THE OTHERS? P. 7 FEATURES: PROGRAM ARCHITECTURE P. 9 FEATURES: ADAPTIVE ENCODING AND STEGANALYSIS RESISTANCE P. 13 FEATURES: MULTI-CRYPTOGRAPHY & DATA OBFUSCATION P. 14 WHAT IS STEGANOGRAPHY? P. 15 WHAT IS DENIABLE STEGANOGRAPHY? P. 16 WHAT IS MARKING? P. 18 SUPPORTED FORMATS IN DETAIL P. 19 SUGGESTIONS FOR BETTER RESULTS P. 24 OPTIONS: BITS SELECTION LEVEL P. 26 STEP BY STEP DATA HIDING P. 27 STEP BY STEP DATA UNHIDING P. 31 STEP BY STEP MARK SETTING P. 34 STEP BY STEP MARK CHECKING P. 35 STEP BY STEP DATA & MARK ERASING P. 36 OPENPUFF V4.01 - ENGLISH - 11/JUL/2018 1 LEGAL REMARKS Remember: this program was not written for illegal use. Usage of this program that may violate your country's laws is severely forbidden. The author declines all responsibilities for improper use of this program. No patented code or format has been added to this program. THIS IS A FREE SOFTWARE: This software is released under LGPL 3.0 You’re free to copy, distribute, remix and make commercial use of this software under the following conditions: You have to cite the author (and copyright owner): WWW.EMBEDDEDSW.NET You have to provide a link to the author’s Homepage: WWW.EMBEDDEDSW.NET/OPENPUFF.HTML
    [Show full text]
  • An Approach for Stego-Insider Detection Based on a Hybrid Nosql Database †
    Journal of Sensor and Actuator Networks Article An Approach for Stego-Insider Detection Based on a Hybrid NoSQL Database † Igor Kotenko 1,* , Andrey Krasov 2 , Igor Ushakov 2 and Konstantin Izrailov 1,2 1 St. Petersburg Federal Research Center of the Russian Academy of Sciences, 199178 St. Petersburg, Russia; [email protected] 2 Department of Secured Communication Systems, The Bonch-Bruevich State University of Telecommunications, 199178 St. Petersburg, Russia; [email protected] (A.K.); [email protected] (I.U.) * Correspondence: [email protected] † This paper is an extended version of the conference paper: Igor Kotenko, Andrey Krasov, Igor Ushakov and Konstantin Izrailov. Detection of Stego-Insiders in Corporate Networks Based on a Hybrid NoSQL Database Model. The 4th International Conference on Future Networks and Distributed Systems (ICFNDS 2020). Saint-Petersburg, Russia, 26–27 November 2020. Abstract: One of the reasons for the implementation of information security threats in organizations is the insider activity of its employees. There is a big challenge to detect stego-insiders-employees who create stego-channels to secretly receive malicious information and transfer confidential information across the organization’s perimeter. Especially presently, with great popularity of wireless sensor networks (WSNs) and Internet of Things (IoT) devices, there is a big variety of information that could be gathered and processed by stego-insiders. Consequently, the problem arises of identifying such intruders and their transmission channels. The paper proposes an approach to solving this Citation: Kotenko, I.; Krasov, A.; problem. The paper provides a review of the related works in terms of insider models and methods Ushakov I.; Izrailov K.
    [Show full text]
  • Openpuff Steganography & Watermarking
    OPENPUFF V4.01 STEGANOGRAFIA & WATERMARKING Nascondere dati e marking, semplice, sicuro e gratuito EmbeddedSW © 2018 Inviate i vostri suggerimenti, commenti, segnalazioni, richieste a [email protected] – Skype "embeddedsw.company" OPENPUFF HOMEPAGE NOTE LEGALI P. 2 INSTALLARE OPENPUFF: WINDOWS P. 3 INSTALLARE OPENPUFF: LINUX P. 4 CARATTERISTICHE: PERCHÈ QUESTO PROGRAMMA STEGANOGRAFICO È DIFFERENTE DAGLI ALTRI? P. 7 CARATTERISTICHE: ARCHITETTURA DEL PROGRAMMA P. 9 CARATTERISTICHE: CODIFICA ADATTIVA E RESISTENZA ALLA STEGANALISI P. 13 CARATTERISTICHE: MULTI CRITTOGRAFIA E OFFUSCAMENTO DATI P. 14 COSA È LA STEGANOGRAFIA? P. 15 COSA È LA STEGANOGRAFIA NEGABILE? P. 16 COSA È IL MARKING? P. 18 FORMATI SUPPORTATI IN DETTAGLIO P. 19 SUGGERIMENTI PER RISULTATI MIGLIORI P. 24 OPZIONI: LIVELLO DI SELEZIONE BIT P. 26 DATA HIDING IN DETTAGLIO P. 27 DATA UNHIDING IN DETTAGLIO P. 31 MARK SETTING IN DETTAGLIO P. 34 MARK CHECKING IN DETTAGLIO P. 35 DATA & MARK ERASING IN DETTAGLIO P. 36 OPENPUFF V4.01 - ITALIANO - 11/JUL/2018 1 NOTE LEGALI Ricordate: questo programma non è stato scritto per uso illegale. L’uso di questo programma in violazione delle leggi del vostro paese è assolutamente proibito. L’autore declina qualsiasi responsabilità conseguente dall’uso improprio di questo programma. Né codice né formati coperti da brevetto sono stati inseriti in questo programma. QUESTO È UN FREE SOFTWARE: Questo software è rilasciato con licenza LGPL 3.0 Siete liberi di copiare, distribuire, modificare e fare uso commerciale di questo software alle seguenti
    [Show full text]
  • Authentication of MP4 File by Perceptual Hash and Data Hiding, Pp. 304-314
    Authentication of MP4 File by Perceptual Hash and Data Hiding, pp. 304-314 AUTHENTICATION OF MP4 FILE BY PERCEPTUAL HASH AND DATA HIDING April Pyone Maung Maung1, Yiqi Tew2, and KokSheik Wong3 1Faculty of Computer Science & Information Technology, University of Malaya, Malaysia 2Faculty of Computing and Information Technology, Tunku Abdul Rahman University College, Malaysia 3School of Information Technology, Monash University Malaysia, Malaysia Email: [email protected]* (corresponding author), [email protected]* (corresponding author), [email protected] DOI: https://doi.org/10.22452/mjcs.vol32no4.4 ABSTRACT With advances in multimedia signal processing and abundance of data, multimedia authentication becomes more and more challenging and demanding. Although many prior techniques were put forward to authenticate individual video or audio stream, the cross-layer authentication of audio-visual content as a whole remains unexplored. In this work, an authentication system of the dominant audio-visual content file format (MP4) is presented. Specifically, the perceptual hashes of I-frames from video stream are encrypted and embedded into the audio stream, and the audio hash vector is encrypted and embedded in the synchronization information, i.e., stts box, in the MP4 file. The proposed system is implemented and tested on various videos downloaded from YouTube. Results show that the proposed system can authenticate MP4 files correctly without degrading the video quality while being able to provide indication of tampering. Keywords: MP4, Perceptual Hash, Data Hiding, Authentication 1.0 INTRODUCTION Multimedia authentication is the process of confirming the genuineness of a content and its alleged source. It is vital and critical for many applications, especially those involving legal issues.
    [Show full text]
  • An Examination on Information Hiding Tools for Steganography
    INTERNATIONAL JOURNAL OF INFORMATION SECURITY SCIENCE İ. Karadoğan, R. Daş, Vol. 3, No.3 An Examination on Information Hiding Tools for Steganography İsmail Karadoğan*, Resul Daş** *Kahramanmaraş Sütçü İmam Univ., Elbistan Vocational School, Department of Computer Technologies, Kahramanmaraş, Turkey. e-mail: [email protected] **Fırat University, Technology Faculty, Department of Software Engineering, Elazığ, Turkey. e-mail: [email protected] Abstract— In this paper, information about the steganographic methods and tools that are used to hide important data in digital media are presented. At the same time, different aspects of these tools such as used methods, types of hidden data and cover media are examined. Keywords- Information security; information hiding; steganography; steganography tools. 1. Introduction Since the dawn of written communication people have been concerned with both obscuring the contents of communication (Cryptography) and obscuring the fact that communication is taking place (Steganography). As a result of the digitization of communication, new stegonagraphic approaches, protocols and Figure 1. The data hiding diagram as a simple form applications have been developed. Conforming to the principle of ‘Defense in Steganography is the art and science of hiding Depth’ it is standard practice to employ secret messages or information within innocent cryptography, compression, and steganography looking media. Because the sender and intended when hiding data. Even if the existence of covert recipient want to communicate securely, the communication can be determined by unwanted carrier medium in which the hidden message is third parties, the encoding or the obfuscation of embedded should not arouse the suspicion of third data complicates the retrieval of data, typically parties’ concerning the existence of the hidden requiring access to keys.
    [Show full text]
  • Identification of LSB Image Steganography Using Cover Image Comparisons
    Journal of Digital Forensics, Security and Law Volume 15 Article 6 February 2021 Identification of LSB image Steganography using Cover Image Comparisons Michael Pelosi Texas A&M University — Texarkana, [email protected] Chuck Easttom Independent Forensic Expert, [email protected] Follow this and additional works at: https://commons.erau.edu/jdfsl Part of the Computer Law Commons, and the Information Security Commons Recommended Citation Pelosi, Michael and Easttom, Chuck (2021) "Identification of LSB image Steganography using Cover Image Comparisons," Journal of Digital Forensics, Security and Law: Vol. 15 , Article 6. DOI: https://doi.org/10.15394/jdfsl.2021.1551 Available at: https://commons.erau.edu/jdfsl/vol15/iss2/6 This Article is brought to you for free and open access by the Journals at Scholarly Commons. It has been accepted for inclusion in Journal of Digital Forensics, Security and Law by an authorized administrator of (c)ADFSL Scholarly Commons. For more information, please contact [email protected]. Journal of Digital Forensics, Security and Law POSITIVE IDENTIFICATION OF LEAST SIGNIFICANT BIT (LSB)1 IMAGE STEGANOGRAPHY USING COVER IMAGE COMPARISONS ABSTRACT Steganography has long been used to counter forensic investigation. This use of steganography as an anti- forensics technique is becoming more widespread. This requires forensic examiners to have additional tools to more effectively detect steganography. In this paper we introduce a new software concept specifically designed to allow the digital forensics professional to clearly identify and attribute instances of least significant bit (LSB) image steganography by using the original cover image in side-by-side comparison with a suspected steganographic payload image.
    [Show full text]
  • System Steganalysis with Automatic Fingerprint Extraction
    RESEARCH ARTICLE System steganalysis with automatic fingerprint extraction Alejandro Cervantes1*, Tom Sloan2, Julio Hernandez-Castro2, Pedro Isasi1 1 University Carlos III of Madrid, LeganeÂs, Madrid, Spain, 2 University of Kent, Canterbury, United Kingdom * [email protected] a1111111111 Abstract a1111111111 a1111111111 This paper tries to tackle the modern challenge of practical steganalysis over large data by a1111111111 presenting a novel approach whose aim is to perform with perfect accuracy and in a a1111111111 completely automatic manner. The objective is to detect changes introduced by the stega- nographic process in those data objects, including signatures related to the tools being used. Our approach achieves this by first extracting reliable regularities by analyzing pairs of modified and unmodified data objects; then, combines these findings by creating general OPEN ACCESS patterns present on data used for training. Finally, we construct a Naive Bayes model that is Citation: Cervantes A, Sloan T, Hernandez-Castro used to perform classification, and operates on attributes extracted using the aforemen- J, Isasi P (2018) System steganalysis with tioned patterns. This technique has been be applied for different steganographic tools that automatic fingerprint extraction. PLoS ONE 13(4): operate in media files of several types. We are able to replicate or improve on a number or e0195737. https://doi.org/10.1371/journal. pone.0195737 previously published results, but more importantly, we in addition present new steganalytic findings over a number of popular tools that had no previous known attacks. Editor: Jim Jones, George Mason University, UNITED STATES Received: July 17, 2017 Accepted: March 28, 2018 Published: April 25, 2018 Copyright: © 2018 Cervantes et al.
    [Show full text]
  • Steganographic File System Based on Jpeg Files 1
    Ø Ñ ÅØÑØÐ ÈÙ ÐØÓÒ× DOI: 10.2478/tmmp-2013-0036 Tatra Mt. Math. Publ. 57 (2013), 65–83 STEGANOGRAPHIC FILE SYSTEM BASED ON JPEG FILES Matu´ˇsJokay´ — Martin Koˇsdy ABSTRACT. A steganographic system provides a hidden communication chan- nel in background of a public channel. The existence of the hidden channel must remain secret, i.e. the adversary cannot decide whether the public channel con- tains any covert information or not. The public channel that is used in construc- tion of a steganographic system can often be embedded in a static file (medium), that is called a carrier (if the steganographic information is present). Most of the current research focuses on a single medium. The most suitable types of media, such as images or music files, contain a lot of redundancy. Small changes in the redundant parts are not easily detected. However, new methods for the detection of this information are developed along with the new algorithms for embedding the hidden information. Our work describes a new steganographic system design, where the hidden information is spread among many static images in a form of a virtual steganographic filesystem. We note that the implementation of the system must also take into account “steganographic side-channels”, i.e., some in- formation channels that are present in the operating system (in our case Linux, and Android) that leak information about the presence of the hidden channel. 1. Introduction The steganography has advanced tremendously in the last decade. Currently, there exist numerous sophisticated steganographic techniques of hiding the se- cret data in the various kinds of cover media.
    [Show full text]
  • A Comparative Study of Recent Steganography Techniques for Multiple Image Formats
    I. J. Computer Network and Information Security, 2019, 1, 11-25 Published Online January 2019 in MECS (http://www.mecs-press.org/) DOI: 10.5815/ijcnis.2019.01.02 A Comparative Study of Recent Steganography Techniques for Multiple Image Formats Arshiya Sajid Ansari Noida International University, Department of Computer Science and Engineering, NCR Delhi Noida, India E-mail: [email protected] Mohammad Sajid Mohammadi, Mohammad Tanvir Parvez Qassim University, Computer Engineering Department, Qassim, Saudi Arabia E-mail: [email protected], [email protected] Received: 20 February 2018; Accepted: 12 November 2018; Published: 08 January 2019 Abstract—Steganography is the technique for image is a combination of cover image plus hidden data. exchanging concealed secret information in a way to This paper presents a survey of Steganography avoid suspicion. The aim of Steganography is to transfer algorithms based on various image formats. The paper is secrete message to another party by hiding the data in a organized as follows. Section I includes the introduction cover object, so that the imposter who monitors the and technical properties of Steganography, applications, traffic should not distinguish between genuine secret limitations, methods, and Steganalysis. Section II presents message and the cover object. This paper presents the Steganography cover image formats, their comparative study and performance analysis of different methods/techniques and color model information of each image Steganography methods using various types of image format. Section III describes the literature review cover media ((like BMP/JPEG/PNG etc.) with the of recent Steganography techniques. Section IV is devoted discussion of their file formats.
    [Show full text]
  • Lightweight Authentication for MP4 Format Container Using Subtitle Track
    IEICE TRANS. INF. & SYST., VOL.E103–D, NO.1 JANUARY 2020 2 INVITED PAPER Special Section on Enriched Multimedia—Application of Multimedia Technology and Its Security— Lightweight Authentication for MP4 Format Container Using Subtitle Track KokSheik WONG†a), ChuanSheng CHAN†, and AprilPyone MAUNGMAUNG††, Nonmembers SUMMARY With massive utilization of video in every aspect of our tion through data hiding is one of the ways in providing the daily lives, managing videos is crucial and demanding. The rich literature capability to verify the video [3]. of data embedding has proven its viability in managing as well as enrich- In the past, researchers focused on providing authen- ing videos and other multimedia contents, but conventional methods are designed to operate in the media/compression layer. In this work, the syn- tication solutions for image, video, and audio. For exam- chronization between the audio-video and subtitle tracks within an MP4 ple, Tew et al. [4] proposed to use statistics of the coding format container is manipulated to insert data. Specifically, the data are unit (CU) sizes in HEVC video as the authentication data. derived from the statistics of the audio samples and video frames, and it This information is embedded by manipulating the CU in serves as the authentication data for verification purpose. When needed, the inserted authentication data can be extracted and compared against the the next video frame, and the process is repeated for video information computed from the received audio samples and video frames. frames. Similarly, Maung et al. [5] compute the authentica- The proposed method is lightweight because simple statistics, i.e., ‘0’ and tion (hash) value using quantized spectral coefficients for ‘1’ at the bit stream level, are treated as the authentication data.
    [Show full text]
  • Investigating Steganography in Audio Stream for Network Forensic Investigations: Detection & Extraction
    Investigating Steganography in Audio Stream for Network Forensic Investigations: Detection & Extraction Yao Lu a thesis submitted to the graduate faculty of design and creative technologies AUT University In partial fulfillment of the Requirements for the degree of Master of Forensic Information Technology School of Computer and Mathematical Sciences Auckland, New Zealand 2014 i Declaration I hereby declare that this submission is my own work and that, to the best of my knowledge and belief, it contains no material previously published or written by another person nor material which to a substantial extent has been accepted for the qualification of any other degree or diploma of a University or other institution of higher learning, except where due acknowledgement is made in the acknowledgements. ……………………………. Yao Lu ii Acknowledgements This thesis was completed at the Faculty of Design and Creative Technologies in the school of Computing and Mathematical Sciences at Auckland University of Technology, New Zealand. Support was received from many people through the 2 years of study. Firstly, I would like to thank my family; my mother Xiangyan Xiao and my father Jianhua Lu who provided financial support. Also special thanks to my fiancée Natalie Ai who took care of my daily life so that I can focus on the thesis research. I would also like to thank my thesis supervisor, Prof. Brian O. Cusack who has provided valuable support and inspiration in the thesis project. With his support the project progressed smoothly. There are many other staff members at AUT that deserve thanking for their support. Jung Son for setting up EnCase for the research and Alastair Nisbet for managing the laboratory environment for the research testing.
    [Show full text]
  • Forensic Analysis of Video Steganography Tools Thomas Sloan and Julio Hernandez-Castro School of Computing, University of Kent, Canterbury, Kent, United Kingdom
    Forensic analysis of video steganography tools Thomas Sloan and Julio Hernandez-Castro School of Computing, University of Kent, Canterbury, Kent, United Kingdom ABSTRACT Steganography is the art and science of concealing information in such a way that only the sender and intended recipient of a message should be aware of its presence. Digital steganography has been used in the past on a variety of media including executable files, audio, text, games and, notably, images. Additionally, thereis increasing research interest towards the use of video as a media for steganography, due to its pervasive nature and diverse embedding capabilities. In this work, we examine the embedding algorithms and other security characteristics of several video steganography tools. We show how all feature basic and severe security weaknesses. This is potentially a very serious threat to the security, privacy and anonymity of their users. It is important to highlight that most steganography users have perfectly legal and ethical reasons to employ it. Some common scenarios would include citizens in oppressive regimes whose freedom of speech is compromised, people trying to avoid massive surveillance or censorship, political activists, whistle blowers, journalists, etc. As a result of our findings, we strongly recommend ceasing any use of these tools, and to remove any contents that may have been hidden, and any carriers stored, exchanged and/or uploaded online. For many of these tools, carrier files will be trivial to detect, potentially compromising any hidden data and the parties involved in the communication. We finish this work by presenting our steganalytic results, that highlight a very poor current state of the art in practical video steganography tools.
    [Show full text]