Slashdot Mirror

← Back to Stories (view on slashdot.org)

First Steganographic Image Found In The Wild

Posted by timothy on from the monkeying-with-images dept.

Niels Provos writes: "After months of searching for steganographic content on eBay and elsewhere -- downloading millions of images, we were finally able to find an image with a stegangraphic message hidden in it. Stegdetect and Stegbreak made short process with it. It took less than a second to compute the secret key necessary to extract the hidden message. Two commands at the prompt, and we found the hidden message to be an image of B-52 scrapyard. Right off Terraserver."

44 of 306 comments (clear)

  1. Yeah, except for... by Anonymous Coward · · Score: 5, Informative

    What about the Evil Bert picture? We didn't seem to have the flood of Anthrax here in the U.S. until after that poster came out.

    Hidden message?

    Hidden like a fox!

    1. Re:Yeah, except for... by stilwebm · · Score: 3, Offtopic

      While the above post was meant to be humorous, it brings up an important point. The Taliban doesn't always utilize the most high tech tools, and for good reasons - they are often easy to track and/or detect. Instead, they are likely to use low tech mothods to hide their messages. Certain phrases, for example, in bin Laden's statements quite possible are intended to send an additional pre-defined meaning. This is something that only human reconnaissance can effectively decode.

    2. Re:Yeah, except for... by Gallowglass · · Score: 4, Insightful
      "Certain phrases, for example, in bin Laden's statements quite possible are intended to send an additional pre-defined meaning."

      My only exception to stwilwebm's comment above is the phrase "quite possibly". IMNSHO, "not bloody likely" is the correct adverbial phrase.

      Let's all stop and think about this for a meaning. I wish to send an important secret message to my evil henchmen on another continent. Do I send an encrypted letter? Do I send a human messenger by plane to carry the message? Do I phone them and use secret phrases with hidden meanings to convey the message to them?

      Apparently not, if we are to believe the Security Experts who don't want us to hear Bin-Laden. Apparently the best way to send secret messages, is to tape yourself and hope that the corporate minions of the Great Satan will transmit your message, complete, clear (no poorly translated voice-overs, if you please) and in a timely fashion.

      Am I the only one who thinks that if Bin-Laden really is that stupid, that we have little to worry about?

    3. Re:Yeah, except for... by AJWM · · Score: 3, Interesting

      Code phrases hidden (and sometimes, not so hidden) in public broadcasts have a long history. Recall BBC's nightly broadcasts during WW-II, which frequently concluded with a long list of apparently nonsense phrases. Most of them were, in fact, nonsense, but some were "trigger phrases" aimed at groups like the Resistance to coordinate actions. The nonsense phrases were thrown in so that the Germans couldn't do traffic analysis.

      If the secret message is just "the target is X, the date is Y" where X and Y are a relatively small list of predefined targets and dates, you don't need a whole lot of code phrases -- or even signs, given a video tape (consider signals between catcher and pitcher in baseball, for example) -- to convey which X and Y you mean.

      Farfetched? Not really. But even if it is, why take the slightest chance on spreading the enemy's message for him?

      And to answer your questions: Do I send an encrypted letter? Do I send a human messenger by plane to carry the message? Do I phone them and use secret phrases with hidden meanings to convey the message to them? The answer is NO, not if you are being actively sought out and such communications might fall into the wrong hands, betray your location and/or not get delivered.

      --
      -- Alastair
    4. Re:Yeah, except for... by Reckless+Visionary · · Score: 3, Insightful
      Sure, but you don't have to trust American media to get your message across. Apparently Al Jahira (I forgot the exact name of the network, forgive me) is widely available via satellite. This network is the one the original broadcast was from.

      It's not implausible to assume that the terrorists were instructed to watch that channel to receive instructions after the first US attacks occured.

      --
      I think I'll stop here.
    5. Re:Yeah, except for... by kilgore_47 · · Score: 5, Insightful

      According to this, bin Laden is indeed using verbal codes to communicate with his people. What better way to get the message out than a public statement?

      I'm still bitter it's not getting played on US tv stations; how can a video taped statement from public enemy number one not be "newsworthy"? They say it "might contain a message". Well one message I heard was "infidels out". Is that the message they don't want us to hear? That his main demand is for us to stop occupying his 'homeland' and whatnot?

      Sure, there might be a hidden message too. But people waiting to get the hidden message will undoubtedly obtain it from some foriegn news source that DOES deem it "newsworthy".

      Censorship will only hide the message from joe sixpack & friends, and I think thats exactly the goal.

      --
      ___
      The way to see by faith is to shut the eye of reason. --Ben Franklin
    6. Re:Yeah, except for... by GreyPoopon · · Score: 3, Interesting
      My only exception to stwilwebm's comment above is the phrase "quite possibly". IMNSHO, "not bloody likely" is the correct adverbial phrase.

      Actually, it's highly likely. Winston Churchill did it during WWII with his radio announcements. They contained a predefined trigger to coordinate the release of toops during certain battle arrangements.

      Let's all stop and think about this for a meaning. I wish to send an important secret message to my evil henchmen on another continent. Do I send an encrypted letter? Do I send a human messenger by plane to carry the message? Do I phone them and use secret phrases with hidden meanings to convey the message to them?

      All of these are immediately noticeable if you are under surveillance. It's best to use something that is "not quite what it seems" as a method of communication.

      hope that the corporate minions of the Great Satan will transmit your message, complete, clear (no poorly translated voice-overs, if you please) and in a timely fashion.

      Actually, a voice over won't matter. If they use the same basic imagery when translated to English, the message would still be clear. It has been noted that Bin Laden frequently uses interesting combinations of imagery in his words during the few public releases he has. As far as timely release? Come on. Our news hounds are constantly striving to be the first to release such things. I would say that Osama could absolutely count on it being delivered almost immediately.

      The most clever way to plan during a "war" is to act with utter simplicity.

      --

      GreyPoopon
      --
      Why is it I can write insightful comments but can't come up with a clever signature?

    7. Re:Yeah, except for... by TheCarp · · Score: 3, Insightful

      Actually... it seems to me that this is a fine way to send a message. The "not bloody likely" part is the idea that censoring this will stop the information from getting to its intended recipients.

      The message could be conveyed in something as simple as manner of dress or a key phrase. It could be "encoded" in where Bin Ladens gun rests in the background behind him in the shot.... or the even who sits to his right or left.

      The plans were made a long time ago. Messages from Bin Laden to his people are likely of no more granulairty than "continue as planned" or "halt and wait" or "go with plan B"

      Or even more specific... "transmit orders for plan B"... I think its very likely that Bin Laden, being a figurehead, has probably delegated the actual planning and coordination to someone else, so anything from him only has to be very very high level...which is where this sort of messahe excells.

      That said... I think its silly to believe that they don't have operations setup such as to continue even if the communication channel is cutoff. All that censoring him does is stop americans from hearing what he has to say.

      -Steve

      --
      "I opened my eyes, and everything went dark again"
    8. Re:Yeah, except for... by srvivn21 · · Score: 3, Insightful

      Amazingly, showing Osama on the TV is not likely going to result in a massive outpouring of sympathy for him or his cause. A more likely result is a rise in TV repair business.

      The media (as encouraged by the US government) has whipped the masses into a hateful frenzy, with Osama as the target.

      Forget looking for the cause of his actions. Let's just label him a "mad man", and state that his goal is "the end of the free world".

      Showing, or not showing his press releases is not going to make a whit of difference in this "war". Just like my posting my views is not going to change the mind of someone who wishes to believe the rhetoric and absolute crap that is spewing forth from the main stream media.

      Overall, I enjoy being a U.S. citizen, but I am completely embarrassed, and even mortified by some of the actions that we (as a country) condone, and those that we perpetrate.

    9. Re:Yeah, except for... by srvivn21 · · Score: 4, Flamebait
      Let me clarify my stance. I don't condone the killing of innocents. I don't even really know what the definition of an innocent is. Hell, I don't condone killing at all. The best embodiment of my feelings can be found in this living article.

      Here are some of the things that make me embarrassed to be a U.S. citizen:

      Killing hundreds of thousands of innocent unsuspecting people, both through our actions, and our inaction.

      Claiming to be the "land of the free and home of the brave" but supporting dictatorships, and refusing cease producing land mines.

      Patting ourselves on the back and proclaiming what a great nation we are, while letting much of the world suffer without electricity, reliable sources of food, clean water to drink, etc. (No, I'm not a socialist, but I do believe in giving a fair opportunity for success.)

      My personal favorite. Supporting Osama and his "freedom fighters" in their fight against the communists of the (former) Soviet Union, and then dropping funding when we no longer gain anything from it. Not that this was a isolated or singular event. This is a recurring activity. Do you have any concept of the government (or living conditions) in Kuwait right now? To forstall any questions, I don't. That's the point. Our interests were served, so we feel no obligation to pay any more attention.

      In the end, the root of all violence is violence. I wish no ill will on you, or the terrorists. I hope that they are in a place where they can reflect upon the actions they commited, and see the pain and suffering that it caused. I don't wish them to feel shame, just that they might grow, and if faced with the same choice again, make a more peaceful one. As for myself, I live with the daily struggle of not flipping the bird to those motorists that feel no remorse in cutting me off. We all have to start somewhere.

    10. Re:Yeah, except for... by kilgore_47 · · Score: 3, Insightful

      You mean stuff like *gasp* SPEAKING? Oh my god!

      Sorry, I used the wrong link before. I meant to link to the actual interview with bin Laden's son.
      He says "My father believes American spies have joined the Taliban He talks in a code that even I can't understand".

      It's not that he's speaking, it's that he's (likely) conveying another message besides the obvious one.

      --
      ___
      The way to see by faith is to shut the eye of reason. --Ben Franklin
  2. Not exactly "in the wild" by wiredog · · Score: 5, Informative

    It was shown on ABC news during a discussion of, guess what, steganography. The key was "abc". The person who created it said that it had a message hidden in it. An image "in the wild" would be one that was found at images. that wasn't known beforehand to have steganographic content.

    --

    Best Slashdot Co
    1. Re:Not exactly "in the wild" by Quizme2000 · · Score: 3, Interesting

      What about images attached to emails? I can see it now:
      new abc worm scans users hard drive for images with secret messages, sends email to FBI

      --
      "Get them before they get....
    2. Re:Not exactly "in the wild" by sulli · · Score: 3, Informative

      Right, but it was a good demonstration that their steganography detection tools work.

      --

      sulli
      RTFJ.
  3. I found the message! by garcia · · Score: 5, Funny

    It says "host cannot be reached, click OK to continue"

    yay. It only took me 10s w/Netscape to find the message :)

  4. Oh great... by RedOregon · · Score: 4, Funny

    ...now we're going to need federal registration to download images off the web... all for the greater cause of fighting terrorism, of course!

    --
    Skivvy Niner? Email me!
    HEY! Look left just ONE MORE TIME!
    1. Re:Oh great... by ackthpt · · Score: 5, Funny
      now we're going to need federal registration to download images off the web... all for the greater cause of fighting terrorism, of course!

      Now I'm beginning to see how evil and subversive those Find the Hidden Picture's were in Highlights Magazine I read as a child! See what diabolical effect it's had on my effort to draw a picture of a simple emoticon!

      cccccccccccccccccccc
      cccccc/ccccccccEcccc
      ccccc/ccc====ccAcJcc
      cccc|ccccccccccTcOcc
      cccc|cccc====ccccEcc
      ccccc\cccccccccAc'cc
      cccccc\ccccccccTcScc
      cccccccccccccccccccc

      The horror, the horror!

      --

      A feeling of having made the same mistake before: Deja Foobar
  5. Preview is my friend by wiredog · · Score: 3, Informative

    images.

    --

    Best Slashdot Co
  6. Super Troll by Outland+Traveller · · Score: 4, Redundant

    The linked page says that the steg. image found "in the wild" was intentionally done as a demo of steganography and publicized on TV.

    Someone please take this article out. It's an embarassment.

  7. No suprise by Lumpy · · Score: 5, Insightful

    That it was the planted image from ABC. This is not what I would call a real detection of "in the wild" Show me an image that wasn't part of a media company stunt, or other reporter activity on the very technology of stenaography. Any of the supposed bin-laden images? How about a simple script-kiddie or cracker/thief communication?

    In the wild denotes actual use by thrid parties.. A virus in the wild means it's out there looking to do damage and infect, This image is the equilivant of a hello world program on a how to program website.

    It's not in the wild, It's an example placed by ABC news.

    --
    Do not look at laser with remaining good eye.
  8. Not a very good algorithm / implementation by Tassach · · Score: 5, Insightful
    If it only took "a couple of seconds" to find the secret key, it couldn't be very good. There's a big difference between "hide a message in the low bits of an image" grade stego and cryptographically secure stego. If you "encrypt" a message by XORing it with 0xDEADBEEF, don't be suprised when your super-secret encryption is broken.


    Good stego should be undetectable -- first off, the hidden message should be encrypted, and therefore nearly indistinguishable from any other set of random numbers. Also, the message needs to be several orders of magnitude smaller than the carrier image -- if you want to hide a 1K message, you ideally want a ~1M image to put it in. Isolating 1K of signal out of 1M of noise would be very computationally difficult.

    --
    Why is it that the proponents of "one nation under God" are so eager to get rid of "liberty and justice for all"?
    1. Re:Not a very good algorithm / implementation by Lumpy · · Score: 5, Interesting

      Exactly, a 1st year C programming student could re-write a cheezt stego program to hide that 1 to 2 K message at a Certian byte offset or at a repeating offset.

      Stego detection software makes me laugh, it will only detect morons and idiots, and if you really worry about detection increast the Signal to noise ratio. stego EVERY image you come across with the contents of /dev/random. If you saturate the detectors then you can slide what you want through un-noticed.

      I dont care what they develop for detection or interception, anyone with 1/2 a brain can get past them without effort. The difference between a madman and a genius is that a genius won't use his/her knowlege to kill people for sport (or any other reason) The madman looks for any excuse to use his/her knowlege to kill maim or destroy.

      --
      Do not look at laser with remaining good eye.
    2. Re:Not a very good algorithm / implementation by cs668 · · Score: 5, Informative

      That is the problem. Sometimes stego can be detected because it is more random than the surrounding data.

      If you have an image and you store the encrypted message in the low order bits of the image then they will look too random when compared to typical images.

    3. Re:Not a very good algorithm / implementation by Tom7 · · Score: 3, Informative

      I think it takes more than half a brain. Some of those statistical stega ("stego"?) detectors are pretty clever, and I would imagine that my first try would be caught. I think you'd need to at least sit down and do statistical analysis in order to write a successful tool.

      Before you berate the clueless programmers, let's see your solution...

  9. Re:at the risk of sounding stupid. by sphealey · · Score: 5, Interesting
    what exactly is the purpose of this. After perusing the site i'm not exactly sure what the purpose of this is. at first i thought it was related to terrorist hiding information in images on the internet. can someone shed some light of this situation.
    Based on my pre-9/11 reading, bin Laden's bunch pass messages via the spoken word, face-to-face, using messengers who are personally known to them and who usually have some sort of family tie.

    Therefore, we are going to get very worried about, and pass lots of laws concerning, ultra-sophisticated encryption technology that no evil-doer would ever touch due to (a) complexity (b) potential to stand out like a sore thumb.

    Clear now?

    sPh

  10. Matter of opinion of course, by trilucid · · Score: 5, Insightful


    but I'm kinda bothered by this sort of thing, not in the way some might think. I don't have any problem at all with the research being conducted (actually I support it, good stuff!), but I hate that gobs of bandwidth are wasted by this sort of thing.

    I mean, how much bandwidth is taken from companies with large numbes of images on their sites (EBay for example) as a results of stuff like this? It's not exactly something you can say adheres to purely ethical use of their bandwidth.

    There's got be lots of projects out there attempting this stuff, especially given recent press coverage on the topic. Who's picking up the tab for the network usage?

    Perhaps a permission-based scheme would be better, or better yet a volunteer-supported test server pool dedicated to hosting images. That way, people could test out steganography techniques by posting their images to the pool for the community at large to take a crack at. Thoughts? Flames? Oranges?

    1. Re:Matter of opinion of course, by saridder · · Score: 3, Insightful

      It's a PUBLIC internet and a PUBLIC web site. There is a "risk-analysis" companies make in doing business on and being connected to the Internet, whether it's virii, hackers and script kiddies, just plain web browses.

      I admit there may be a huge glut bandwidth being used in the research, but it's just a fact of life on the internet.

      --
      --- RFC 1149 Compliant.
  11. Publicity from first search salted the earth by DrXym · · Score: 4, Insightful
    Given the publicity that the first stego search got, I wouldn't be surprised if you ran the test again that it would find thousands of stego messages out there.


    No doubt a fair proportion of them contain spook words too.

    1. Re:Publicity from first search salted the earth by DrXym · · Score: 3, Insightful
      You misunderstand my meaning. I'm saying "salted the earth" because presumably the purpose of these stego searches is to expose or at least disprove how stego is being used to nefariously hide terrorist communications and so on.


      Future searches will find that very difficult because publicity from the first search has meant (in all likelihood) that thousands of new stego images have sprung up, effectively making new searches pointless. Yes you'll find stego but it wouldn't prove or disprove anything except that people are having fun downloading and trying out stego software. In other words, the publicity from the first search has salted the earth for future searches.

  12. DMCA by Spankophile · · Score: 5, Funny
    For you 'merkins out there, as long as you own the copyright on the information you "hide" in pictures, wouldn't it be illegal for people to circumvent the protection you used to hide it (i.e. steganography etc)..


    Unless of course they have a warrant, or the US government implements some more 1984 laws.

  13. And this proves what, precisely? by Simon+Brooke · · Score: 5, Insightful
    They search for steganographic images on eBay and have found none. Quel surprise.

    Eventually they get told that yes, there is a steganographic image on ABC, and they look at it, and guess what? They prove that it is a steganographic image and they can really desteg it. Quel surprise!

    Of course, this particular image was very simply constructed as an example for a mass entertainment news channel intended for a general, non-specialist, audience. It was not constructed by someone concerned about secrecy or desperate to conceal a secret message. On the contrary it was constructed using handy, freely available steganographic image tools, not special purpose custom written ones.

    Great!

    This doesn't prove that there aren't staganographic images on eBay which their software can't detect. It doesn't prove there aren't steganographic images on alt.sex.binaries.fluffy-bunnies. It doesn't prove there aren't steganographic images on your favourite pr0n site.

    It doesn't even prove that some spook agency somewhere can't detect all these steganographic messages, desteg them, and read the payload. All it proves is that these two academics can only detect a steganographic image it they're told where it is and what it is, and even then only if it's produced with a small range of well known, freely available tools.

    Incidentally, there is a steganographic payload in this post. Care to scan all Slashdot posts for steganographic payload? All Usenet? No, thought not.

    --
    I'm old enough to remember when discussions on Slashdot were well informed.
  14. Distributed Computing Project? by idonotexist · · Score: 3, Interesting

    Recently, I have been frustrated by 1) not really doing something (other than donating) related to the recent events, and 2) the government's accusations that technology is actively utilized for terrorism without providing an example.

    Considering the importance of this project and the number of images provided on the web, would it be possible for this project, or maybe another, to go to a distributed computing model (@home) ?

    --
    "There ought to be limits to freedom"
  15. MOD PARENT UP! by fmaxwell · · Score: 3, Informative

    I am sorry to see the above post modded down as "troll". The poster makes some very good points. Here's eBay's own 'acceptable use policy' excerpt that covers this:

    Access and Interference.
    Our web site contains robot exclusion headers and you agree that you will not use any robot, spider, other automatic device, or manual process to monitor or copy our web pages or the content contained herein without our prior expressed written permission. You agree that you will not use any device, software or routine to bypass our robot exclusion headers, or to interfere or attempt to interfere with the proper working of the eBay site or any auction being conducted on our site. You agree that you will not take any action that imposes an unreasonable or disproportionately large load on our infrastructure. Much of the information on our site is updated on a real time basis and is proprietary or is licensed to eBay by our users or third parties. You agree that you will not copy, reproduce, alter, modify, create derivative works, or publicly display any content (except for Your Information) from our website without the prior expressed written permission of eBay or the appropriate third party.

    I think that this very clearly shows that eBay does take a dim view of these things and that such abuses of their network are prohibited. Whether it would stand up in a court of law is another matter, but trying to predict the court system in the U.S. is about as easy as winning at roulette.

    1. Re:MOD PARENT UP! by ethereal · · Score: 4, Funny

      But, eBay did grant permission for the download. Somebody's client said "GET http://www.ebay.com/image/something", and eBay said "OK, here it is, catch!". If they didn't want to spend the bandwidth to send it to you, they shouldn't have done so. At no point did eBay not have a choice.

      You may think I'm being needlessly literal here (and in a sense I am), but really this points out the fact that HTTP isn't a suitable protocol to use if you want to shape and/or limit your traffic in certain non-basic ways like eBay does. Not that I'm in favor of traffic limitations, though - anyone who can type a /. comment in less than 20 seconds will agree with me there :)

      --

      Your right to not believe: Americans United for Separation of Church and

    2. Re:MOD PARENT UP! by fmaxwell · · Score: 4, Insightful

      But, eBay did grant permission for the download. Somebody's client said "GET http://www.ebay.com/image/something", and eBay said "OK, here it is, catch!". If they didn't want to spend the bandwidth to send it to you, they shouldn't have done so. At no point did eBay not have a choice.

      What the agreement said was "prior expressed written permission", which the people conducting the study probably did not have.

      Granting an HTTP request does not constitute "permisssion" to use the service for whatever purpose you want. By analogy, the fact that Yahoo's FTP server accepts porn you upload does not mean that they have given you permission to post porn on your web page. If you send out 100,000 get-rich-quick e-mails, you cannot assume that you have "permission" from your ISP to do so because their SMTP server accepted them. The key point is intended use -- which eBay does not know. That's why they have an AUP.

    3. Re:MOD PARENT UP! by fmaxwell · · Score: 4, Insightful

      Granting an HTTP request constitutes permission for you to download the file you asked for.

      No, it does not. It does not represent a decision by the computer's owner as to whether you had a right to request the file and whether they should supply it to you. If I walked up to your computer and started deleting files, would the fact that your computer deleted the files mean that I had your permission to do so? That's what you are arguing: That the computer has power of attorney for its owner.

      If you enter a restaurant with self-serve soda dispensers, do you have "permission" to steal soda just because the automated machine will dole it out at the push of a button? Do you have "permission" to take all of the straws just because the dispenser will give them to you (Your honor, I had McDonalds' permission to take 2,372 straws because their machine gave me a straw each time I pushed the button...)?

      If Yahoo posts porn for you on their web site, then they didn't even have to give you permission since they already went ahead and did it.

      No one at Yahoo is posting the porn. They are not manually moves the files from the FTP server to the web site. It's an automatic process and does not mean that you have their permission to upload porn. A computer responding to a file transfer request is not equivalent to the company giving you permission to transfer the file.

      Just figure out the technology to lock your property down like you want, rather than relying on a crowd of mostly-anonymous, undisciplinable Internet users to follow your rules.

      Now you are arguing about the practicality of enforcing a policy rather than the legalities. The most effective way to get people to follow your rules is to identify someone who violated them, sue them for civil damages, and make an example of them.

    4. Re:MOD PARENT UP! by fmaxwell · · Score: 3, Insightful

      Of course, the eBay example is a little different than the gumball or "Delete" analogies, because eBay didn't run out of files, although they may have been marginally lower on server capacity and bandwidth at the time.

      Right. It's called a "trespass against chatels." It's a legal principle used by AOL for successfully suing spammers who send unwanted e-mail into their computer networks. Same principle. Open network, prohibited use.

      Ah, but that's exactly my point - one straw at a time is OK, it's the overall pattern of straw usage that McD's should worry about. They would want to either alter their straw dispensers, or more likely just toss you out if you started doing that.

      It's their property and I think that everyone, even you, recognizes that the dispenser giving you a straw when you press the button is not the same as McDonalds' corporation giving you permission to take 2,372 straws. Taking those would be theft -- a criminal matter -- regardless of the design of the straw dispenser or whether McDonalds employees caught you.

      I think of a server as sort of a secretary.

      Fine. When you are finished chasing your computer around the desk, consider the fact that computers do not have intelligence while people do.

      If you told your secretary to accept file submissions and store them on a global bulletin board, and she didn't know any better than to take pr0n too, then the failure is really in your instructions. What is needed is a more sophisticated way to describe to a web server what access patterns are acceptable, just like you would tell your secretary to only accept files with a legitimate business purpose.

      So how is the FTP server at Yahoo supposed to know that 123456.jpg is porn and 234567.jpg is a picture of a Corvette?

      You need to get off of this juvenile kick that makes you claim that you are allowed to do anything to anyone else's computer unless they find a technical means to stop you. A company's computers are their property and they have every right to set the terms for the use of that property. Period. End of story.

      eBay has a robots.txt file that is a no-trespassing sign for robots. They have an acceptable use policy link on their home page. The purpose of the site is clear -- buying and selling via online auction. It is not intended as free bandwidth for anyone wanting to do research.

      It is not the responsibility of eBay, Yahoo, or any other firm to devise artificial intelligence systems to enforce their policies. McDonalds does not have to put retinal scanners and computerization into straw dispensers. There are long-standing legal principles that govern this and the basic fact is that people have a right to set the terms for the use of their property and services.

  16. Computing power by Anonymous Coward · · Score: 3, Interesting

    How much computing power does this type of decryption/investigation take? How much would it take to examine the large (ie > 1M) pictures? If it takes a non-trivial amount of computing power, it sounds like an excellent candidate for a seti-at-home or similar project: "Help us fight terrorism: download this program and help us crack images"...

  17. Wow! That is amazing by ellem · · Score: 4, Funny

    I looked at that picture for hours and I couldn't see those B-52s

    I just kept staring at it and staring at it....

    --
    This .sig is fake but accurate.
  18. Well.. by mindstrm · · Score: 3, Insightful

    the reason they 'cracked' the key was obviously because it wasn't really encrypted.

    Any real stego you wanted to hide would also be encrypted. Strongly. So all you would find is noise.

  19. Dont use naive implementations by Anonymous Coward · · Score: 5, Informative

    You can use spread spectrum techniques, you dont have to use the LSB. If an image has any uncorrelated noise at all you can always make sure the signal strength of your encrypted message is below the level of that noise ... and if the encryption algorithm can produce a sequence indistuingishable from noise if you dont know the key ...

  20. Detection Methods by Keeper+ofthe+Keys · · Score: 3, Informative

    Many are beginning to discredit the detection of steganographic images in the wild without learning the actual methods of detection!

    While it is very easy to change an algorithm by byte offset, this is NOT the method of detection being used.

    The method of detection exploits the characteristics of the JPEG compression algorithm to detect non-naturally occuring deviations in the image file. An example of this would be the gamma balance which is averaged over a certain number of pixels. In order to "hide" a change to a single bit, another bit would need to be inversely modified such that the balance of the image remains within or close to natural balance.

  21. Steganographic content in Pictures vs. Streams by friday2k · · Score: 5, Insightful

    I just find it very strange that somebody tries to make us believe that Steganographic content is limited to pictures and will be found on eBay. _IF_ you really want to hide something you might want to embedd a message at a certain time (time synching is not a problem) into an ever changing stream of data (like a webcam or an Internet radio station). The content has to be spread out over a certain amount of time. Maybe only chunks of a message per hour. This is not exactly emergency communication, orders, information, etc. can be received over several hours if needed. Now you spread the content over a pre-defined sequence and maybe start with a "wakeup" message to indicate that a new block of cipher information is about to come. This would be impossible to detect, because you have nothing to compare against (like a picture of a busy street is never the same). So I personally think that this "we scan on eBay and the pictures are evil" is something to put people at ease, but is not really helping a lot. Other than people will be forced into more stealthier methods ...

  22. More relevant than you think. by supabeast! · · Score: 3, Insightful

    Given that image based steganography has been around for a while, and there are probably at least a few thousand people online experimenting with it, they should be turning up a lot of these. That doesn't even begin to factor in that criminal organizations all over the world are probably playing with the stuff, especially given recent coverage of steganography in the news.

    What does this really mean? Perhaps finding well hidden messages is a hell of a lot harder than anyone expected- and it will only get harder. If criminals are using this to communicate, they may be justified in feeling safe doing so.

    Of course, it is probably a bad idea to put stock in anything that comes from guys trying to grab the spotlight by reporting an image created by abc news as a steganographic image found "in the wild." If nothing else it reminds me of idiots who try to get attention reposting known securiuty vulnerabilities to BuqTraq.