Abstract
When communicating secret information there is more than one route to follow to ensure the confidentiality of the message being transmitted. Encryption might be an obvious choice; however there are limitations and disadvantages to using encryption. An alternative approach is steganography, which is a technology for hiding information in other information. Combining the two disciplines may provide better security but more overhead, since the receiver must now have knowledge not only of how the information was encrypted, but also of how it was hidden, in order to retrieve the message. This paper proposes a system where image steganography is combined with encryption by hiding not only a message inside an image, but also the means to extract and decrypt the message. An executable program is hidden inside the image that functions as a decryptor, enabling the receiver to be oblivious to the encryption algorithm used.
An erratum to this chapter can be found at http://dx.doi.org/10.1007/11915034_125.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
Preview
Unable to display preview. Download preview PDF.
References
Dunbar, B.: Steganographic techniques and their use in an Open-Systems environment. SANS Institute (January 2002)
Jamil, T.: Steganography: The art of hiding information is plain sight. IEEE Potentials 18(01) (1999)
Silman, J.: Steganography and Steganalysis: An Overview. SANS Institute (2001)
Johnson, N.F., Jajodia, S.: Steganalysis of Images Created Using Current Steganography Software. In: Proceedings of the 2nd Information Hiding Workshop (April 1998)
Wang, H., Wang, S.: Cyber warfare: Steganography vs. Steganalysis. Communications of the ACMÂ 47(10) (October 2004)
Johnson, N.F., Jajodia, S.: Steganalysis: The Investigation of Hidden Information. In: Proceedings of the IEEE Information Technology Conference (1998)
Krenn, R.: Steganography and Steganalysis, http://www.krenn.nl/univ/cry/steg/article.pdf
Morkel, T., Eloff, J.H.P., Olivier, M.S.: An overview of Image Steganography. In: Proceedings of the Information Security South Africa (ISSA) Conference (2005)
Rubin, A.D., Geer, D.E.: Mobile Code Security. IEEE Internet Journal (December 1998)
Linn, C., Debray, S.: Obfuscation of Executable Code to Improve Resistance to Static Disassembly. In: Proceedings of the 10th ACM Conference on Computer and Communications Security (2003)
Obfuscated code, Wikipedia online encyclopedia (accessed on July 6, 2007), http://www.wikipedia.org/wiki/Obfuscated_code
Tudor, J.K.: Information Security Architecture: An Integrated Approach to Security in the Organization. Auerbach Publications (2001)
Artz, D.: Digital Steganography: Hiding Data within Data. IEEE Internet Computing Journal (June 2001)
Conklin, A., White, G.B., Cothren, C., Williams, D., Davis, R.L.: Principles of Computer Security: Security+ and Beyond. McGraw-Hill Technology Education, New York (2004)
Schneier, B.: Security in the Real World: How to Evaluate Security Technology. Computer Security Journal 4 (1999)
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2006 Springer-Verlag Berlin Heidelberg
About this paper
Cite this paper
Morkel, T., Eloff, J.H.P., Olivier, M.S. (2006). Using Image Steganography for Decryptor Distribution. In: Meersman, R., Tari, Z., Herrero, P. (eds) On the Move to Meaningful Internet Systems 2006: OTM 2006 Workshops. OTM 2006. Lecture Notes in Computer Science, vol 4277. Springer, Berlin, Heidelberg. https://doi.org/10.1007/11915034_56
Download citation
DOI: https://doi.org/10.1007/11915034_56
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-540-48269-7
Online ISBN: 978-3-540-48272-7
eBook Packages: Computer ScienceComputer Science (R0)