Re: Off-topic: standards for embedded signing of digital images?

[Oli Kon via Gnupg-users]

On 2021-09-10 8:00 p.m., Ryan McGinnis via Gnupg-users - 
gnupg-users@gnupg.org wrote:
Years ago, I think Canon offered some kind of in-camera file format 
that supposedly could prove that the file had not been tampered with.  


We appear to be talking about two different things here. Both Nikon
and Canon had developed a system which, purportedly, guaranteed that
an image file represented "a reality, as the camera has seen it".
This is no more possible than constructing a ~perpetum mobile~, for
no matter what the in-camera software and hardware did, the lens
could be simply pointed to a synthetic image that is a faked reality, 
and camera would be none the wiser. By that naive logic, we could

point the lens at the Botticelli's painting and camera would produce
a cryptgraphically signed file that guaranteed that the photographer
was present when Venus was born. Both Nikon and Canon quickly
realized the error of their ways and quietly dropped the whole idea.

Is is a completely different thing for an owner of a private
cryptographic key to sign a file, and clearly state what it is that
he or she guarantees. That is a trivial process but it requires
three things: a clear statement of what is it that the file signer
guarantees, a secure conveyance of matching public key into the hands
of the image user and a detached or "baked-into-file" signature.

Since all three things are required, I see no significant advantage
of an in-file (as opposed to a detached) signature.


___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: Off-topic: standards for embedded signing of digital images?

[Стефан Васильев via Gnupg-users]

Mark H. Wood wrote:


I didn't know where else to turn, for folks who might be able to point
me at standards for or discussion of embedding crypto signatures in
image formats, to detect tampering with the image.


I do not know any, but like to add my POV. Let's say GnuPG could
digitally sign a .png image, i.e. inserting the signature 
steganographically
in the image and later a user could verify the steganographically 
embedbed

signature. What happens if Eve uses Photoshop and does a slightly image
correcting and re-saves the image? It would IMHO give a user then
an invalid signature or none.

Sending images over the Internet, say from an authorized photostudio
(passport photos etc.) can only be savely transmitted (openly) IMHO if
the photostudio would embedd the image in an, for example, digitally
signed .pdf, containing an eIDAS[1] signature, guaranteeing globally
that the image in the .pdf was signed by an authorized photosudio and
not manipulated by a middleman, while in transfer.

[1] eIDAS is the Digital Signature Standard in the EU for .pdf 
documents,

which can be verified with the free Adobe Reader.

Regards
Stefan




___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: Off-topic: standards for embedded signing of digital images?

[Ryan McGinnis via Gnupg-users]

No, I think what Canon and Nikon attempted to implement was something that, 
when paired with a validation software, would say with certainty "this is 
exactly what the camera wrote to the card".  It wasn't saying anything about 
whether what was being photographed was real or faked, merely that after the 
image file was written it wasn't tampered with.  It's a chain of custody thing. 
 Sorta like signing software -- the signature doesn't mean the software isn't a 
Trojan, it just means that the software has been signed by whatever key it was 
signed by, and you decide what that signature means to you.

Unfortunately they never really got the standard down, which is kinda funny 
since it's the kind of thing that can almost certainly be done.  I guess there 
just wasn't much of a market for it.  (Probably because altering photos 
undetectably is very hard to do -- you don't need digital signatures to see 
that the DA used the clone tool to put the gun in the killer's hand)

-Ryan McGinnis

r...@digicana.com

http://bigstormpicture.com

5C73 8727 EE58 786A 777C 4F1D B5AA 3FA3 486E D7AD

‐‐‐ Original Message ‐‐‐

On Saturday, September 11th, 2021 at 2:53 PM, Oli Kon via Gnupg-users 
 wrote:

> On 2021-09-10 8:00 p.m., Ryan McGinnis via Gnupg-users -
> 

> gnupg-users@gnupg.org wrote:
> 

> > Years ago, I think Canon offered some kind of in-camera file format
> > 

> > that supposedly could prove that the file had not been tampered with.
> 

> We appear to be talking about two different things here. Both Nikon
> 

> and Canon had developed a system which, purportedly, guaranteed that
> 

> an image file represented "a reality, as the camera has seen it".
> 

> This is no more possible than constructing a ~perpetum mobile~, for
> 

> no matter what the in-camera software and hardware did, the lens
> 

> could be simply pointed to a synthetic image that is a faked reality,
> 

> and camera would be none the wiser. By that naive logic, we could
> 

> point the lens at the Botticelli's painting and camera would produce
> 

> a cryptgraphically signed file that guaranteed that the photographer
> 

> was present when Venus was born. Both Nikon and Canon quickly
> 

> realized the error of their ways and quietly dropped the whole idea.
> 

> Is is a completely different thing for an owner of a private
> 

> cryptographic key to sign a file, and clearly state what it is that
> 

> he or she guarantees. That is a trivial process but it requires
> 

> three things: a clear statement of what is it that the file signer
> 

> guarantees, a secure conveyance of matching public key into the hands
> 

> of the image user and a detached or "baked-into-file" signature.
> 

> Since all three things are required, I see no significant advantage
> 

> of an in-file (as opposed to a detached) signature.
> 

> Gnupg-users mailing list
> 

> Gnupg-users@gnupg.org
> 

> http://lists.gnupg.org/mailman/listinfo/gnupg-users

signature.asc
Description: OpenPGP digital signature
___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users