[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Standard for Stenography?

To: Eli Brandt <[email protected]>
Subject: Re: Standard for Stenography?
From: Jef Poskanzer <[email protected]>
Date: Thu, 03 Mar 94 17:54:08 PST
Cc: cypherpunks list <[email protected]>
In-Reply-To: Your message of Thu, 03 Mar 94 17:18:22 PST.
Sender: [email protected]

Eli makes a reasonable case for leaving out the length field
altogether.  The desteg program would produce a file of width*height
bits, and it would be up to the next layer to produce text from that.
However, I'm not sure it's a *compelling* case.  If adding the length
doesn't actually hurt security, I'm inclined to keep it.

>Tangentially, why choose bit permutation for your second-level
>encryption?  There are plenty of schemes that will be a lot faster
>than doing all that bitmangling.

Slowness is not necessarily bad - it also makes it harder for
attackers to search through large numbers of images for ones
with hidden data.  But the main thing that the permutation
gives you is that it spreads out the data bits among unmodified
bits, making statistical tests harder.  For a 1000 byte message
in a 640x480 image, only 2% of the bits will be changed.  If that
2% was all jammed into the first 80000 pixels of the file, it
might be detectable; if it's spread evenly throughout the file,
it's probably safer.
---
Jef

Follow-Ups:
- Standard for Stenography?
  - From: [email protected] (Eric Hughes)

Prev by Date: Re: Standard for Stenography?
Next by Date: Re: Newbies on the List
Prev by thread: Re: Standard for SteGAnography
Next by thread: Standard for Stenography?
Index(es):
- Date
- Thread