Slashdot Mirror

← Back to Stories (view on slashdot.org)

Digital Camera Image Verification

Posted by michael on from the signed-sealed-and-delivered dept.

Polo writes "While reading dpreview, I noticed that among several new products, Canon has announced a Digital Image Verification Kit to prove that an image taken by a particular camera has not been modified. It's disturbing to think about the conditions that would allow digital images to be accepted in a courtroom. I guess one defense would be to figure out how to 'verify' a photo of shark attack..."

21 of 255 comments (clear)

  1. It's called MD5 (?) by Shakrai · · Score: 4, Interesting

    The kit consists of a dedicated SM (secure mobile) card reader/writer and verification software. When the appropriate function (Personal Function 31) on the EOS-1D Mark II or EOS-1Ds is activated, a code based on the image contents is generated and appended to the image. When the image is viewed, the data verification software determines the code for the image and compares it with the attached code. If the image contents have been manipulated in any way, the codes will not match and the image cannot be verified as the original.

    So it's basically an MD5 (or equiv hashing method) of the image at the time it's taken? Too bad -- I thought they had a unique idea to verify images that had already been taken.

    Two or three questions I suppose:

    The article states that they are pursing ISO 15408 certification (evaluation criteria for IT security). Do they have to open up any source code to obtain that certification?

    What's to stop me from editing the MD5sum on the image and the smart media (it's presumably read/write)?

    In the mostly-serious-but-with-a-little-sarcasm dept -- does this take into account rotating the images if the camera doesn't automatically do it when you take a portrait vs a landscape? ;)

    All in all I suppose it's a neat idea -- hope it actually works before somebody is on trial for his life though...

    --
    I want peace on earth and goodwill toward man.
    We are the United States Government! We don't do that sort of thing.
    1. Re:It's called MD5 (?) by filtersweep · · Score: 4, Informative

      "All in all I suppose it's a neat idea -- hope it actually works before somebody is on trial for his life though..."

      Well, the camera is only one step in the chain. Are they going to keep a bunch of these presumably more expensive memory cards lying around, or are "they" going to archive them on a CDR or hard drive? Once the image is out of the card, the verification is meaningless (if it wasn't already meaningless in the first place).

      I provide "expert testimony" in court on a semi-regular basis in a completely different field. I always submit "photostatic replicas" of original documents and sign a notarized affidavit of their authenticity. Overall, it is simply the sworn testimony of the authenticity of any evidence that holds more weight than some "technological solution."

      Photoshoppers be dammed! Long live fark.com

      --


      Those that suggest you "dance like no one is watching" really want to see you make a complete fool of yourself.
    2. Re:It's called MD5 (?) by jdbarillari · · Score: 5, Interesting
      So it's basically an MD5 (or equiv hashing method) of the image at the time it's taken? Too bad -- I thought they had a unique idea to verify images that had already been taken.

      [snip]

      What's to stop me from editing the MD5sum on the image and the smart media (it's presumably read/write)?

      Obviously, just storing the checksum of the image in the EXIF headers (or somewhere else) won't work -- you could just modify the image and calculate a new checksum. One variant on that scheme that would work (reasonably well) would be the following: each camera would be assigned a RSA private key. Canon would keep a record of which key was assigned to which camera (by associating it with the camera's serial number). The private key would be stored in a tamper-resistant chip on the camera's logic board. The camera could then digitally sign all of the images it captures. If the camera saved both its serial number and the digital signature in the EXIF headers of each image (or the JPEG comments, or whatever), a third party who wanted to verify the image could go to the Canon website, get the public key for that serial number, and verify the digitial signature.

      The weak point is in the 'tamperproof' chip -- research on smart cards has shown that virtually any so-called 'tamperproof' security system can be cracked. A court could demand to see one's camera (to ascertain that it had not been altered), but some smartcard attacks (such as those based on timing or power consumption) don't even need to modify the card to get at the key -- some of these attacks might translate to cameras, as well. It would be possible to provide pretty good image verification with this system. But a determined attacker could break it.

  2. Run around by MacFury · · Score: 5, Funny

    1.) Take picture
    2.) Photoshop picture
    3.) Print picture
    4.) Take picture of printed picture :-)

  3. won't work by contrasutra · · Score: 5, Insightful

    It won't work. From everything I've seen, attempts to verify ANYTHING digital will be cracked within a week or three.

    1. Re:won't work by Anonymous Coward · · Score: 4, Insightful

      Really? When was the digital signature function of GnuPG cracked?

    2. Re:won't work by contrasutra · · Score: 5, Informative

      Haven't read the gnupg.org website? From the front page:

      GnuPG's ElGamal signing keys compromised (2003-11-27)
      A severe problem with ElGamal sign+encrypt keys has been found. This leads to a full compromise of the private key.

  4. Not just court rooms by evn · · Score: 4, Interesting

    I'm willing to be that one of the first customers for this software is the tabloid newspapers/magazines. They pay small fortunes of photos of celebrities in their most intimate and private moments and without a way to verify digital photographs they could be duped of millions of dollars.

    1. Re:Not just court rooms by S.Lemmon · · Score: 5, Funny

      Because, as we all know, tabloids have a unwavering commitment to the truth! :-)

    2. Re:Not just court rooms by Scrameustache · · Score: 4, Funny

      I'm willing to be that one of the first customers for this software is the tabloid newspapers/magazines.

      Time to sell you Weekly World News stock!

      I fear the days of Bat Boy and "face of satan in 'x'" are coming to an end : (

      --

      You can't take the sky from me...

  5. Courtroom. by dsb3 · · Score: 4, Insightful

    There's nothing concerning about digital images in the courtroom.

    Ask the photographer, under oath, "is this representative of what you saw?".

    If it was, he says so.

    It's really the same as with any other evidence that can be tampered with. If someone testifies under oath that it is what it is then there's no difference between a digital image and any (many?) other types of evidence.

    --

    Slashdot? Oh, I just read it for the articles.
  6. juries know images can be faked by kaltkalt · · Score: 4, Insightful

    any image, not just a digital one, can be changed, modified, or completely faked. Yes, digital technology makes it easier, but this is not a new phenomenon. Juries know (and should be told) that any image introduced into evidence might not be real and could have easily been altered by the other side. Depending on who took the image and the chain of possession, weighed against how believable the picture actually is, will determine how much weight the jury gives to a given photograph.

    These digital picture verifiers are nice but not the end of the question. A validation from one of these machines is just some more evidence that the picture is real. It's not conclusive and shouldn't be taken as so. In fact, the evidence of validation from one of these machines might not even be allowed into court if they're extremely unreliable. Daubert to the rescue.

    --

    Stupid people make stupid things profitable.
  7. Re:Canon by Shakrai · · Score: 5, Insightful
    To everyone out there: you are an idiot if you buy a camera that does not support CompactFlash. You'll end up paying twice as much for the media.

    We have that interesting problem at work (Insurance Agency, which is half the reason this article caught my eye) -- we need digicams to do photo inspections of property or automobiles. All of our CSR workstations have CompactFlash readers. Half the new digicams out there don't use CF anymore -- which automatically takes them off my shopping list when I need to get new cameras.

    I'd also add to your statement that you are an idiot if you buy a camera that doesn't take standard AA (or AAA) batteries. We also have several sets of NI-MH batts and chargers -- I refuse to buy a digicam with propriety batteries. I can't count how much money and aggravation the standard formats of CF and AA NI-MH batts have saved me -- both on a business and personal level.

    --
    I want peace on earth and goodwill toward man.
    We are the United States Government! We don't do that sort of thing.
  8. What a joke by Rosco+P.+Coltrane · · Score: 5, Insightful

    When the appropriate function (Personal Function 31) on the EOS-1D Mark II or EOS-1Ds is activated, a code based on the image contents is generated and appended to the image. When the image is viewed, the data verification software determines the code for the image and compares it with the attached code. If the image contents have been manipulated in any way, the codes will not match and the image cannot be verified as the original.

    Note to self: run the signing software *after* altering the image. If the image was alrady signed, display it, take screenshot, alter the image, and re-run the signing software.

    --
    "A door is what a dog is perpetually on the wrong side of" - Ogden Nash
  9. 2D autocorrelation... by dargaud · · Score: 4, Interesting
    I've been wrestling with the idea of writing an image modification detector. The idea is that when you modify an image, you copy one part into another part (using the clone brush of Photoshop or such).

    By doing an autocorrelation of the image, you can detect parts that have been copied, but the mathematical part is not that easy, particularly if there are uniform noiseless areas (sky).

    I can still deal with 1D autocorrelation, but in 2D my maths skills are rusty...

    --
    Non-Linux Penguins ?
    1. Re:2D autocorrelation... by Rosco+P.+Coltrane · · Score: 4, Informative

      I've been wrestling with the idea of writing an image modification detector

      Forget it. Only amateurs copy/paste regions and leave them like that. Those who alter images to produce really credible results may copy/paste bits of images at first, but then will blur/sharpen/solarize/burn/lighten/brush slightly part of them, drop some noise in them to match the pizelization of an original jpeg for example, merge several together and modify gradiants to make the final patch blend in just right in the bit of background you want to mask or change. The final resulting altered regions usually doesn't have much to do with the original bits you copied.

      --
      "A door is what a dog is perpetually on the wrong side of" - Ogden Nash
  10. Digital Images and ghosts by paddlebot · · Score: 4, Interesting

    This is a funny article on why you shouldn't use your digital camera when trying to detect / prove the existance of ghosts. No not like a bad flat screen playing Quake, but like Casper the Friendly.

    He seems real serious about it too....

  11. Still does not by www.sorehands.com · · Score: 4, Informative
    Even when taking a photo, to have it admitted as evidence you must have the person taking it verify that they did take it. This goes with digital or film camera -- or any type of documentary evidence.

    This is just general, but there are many rules about entering photograghs and other documents.

    --
    Fight Spammers!
  12. it's targetted to a specific market by sir_cello · · Score: 4, Insightful


    I'm thinking this is for Canon to target the camera at a specific market where legal evidenciary issues come into play: crime scenes, insurance, autopsy, etc. This is likely not to be a feature that will appear for most consumer products.

    What it really shows is more about how the professional film camera market is facing realistic competition from digital cameras.

  13. What about SECURE photography? by Speare · · Score: 4, Interesting

    I would love to see the firmware write all photographs to the CompactFlash already encrypted to my public key. Of course, that would mean you'd have to (1) forego viewing the images on the LCD, or (2) require the private key and allow entering some kind of text phrase or biometrical key.

    It's not like I engage in some sort of espionage or porn market, but I want to see more publically available data devices support cradle-to-grave security.

    --
    [ .sig file not found ]
  14. EXIF, distortions by wotevah · · Score: 4, Informative

    The camera stores information about focus distance, focal length (zoom) and exposure parameters as well as other data in each image (in EXIF format, commonly). Example:

    Camera make : SANYO Electric Co.,Ltd
    Camera model : J1
    Date/Time : 2004:01:15 14:21:22
    Resolution : 2048 x 1536
    Flash used : No
    Focal length : 6.0mm
    Exposure time: 0.400 s (1/2)
    Aperture : f/2.9
    ISO equiv. : 113
    Metering Mode: center weight
    Exposure : program (auto)
    (focus distance is manufacturer-dependent and jhead couldn't get it).

    Also, you'd also have to account for the distortion effects that are measurable and reproducible with each camera model. For example, barrel or pincushion distortions compound if you take a shot of an existing picture.