Home > cryptography > Protection of online image file (ancient manuscript)

Protection of online image file (ancient manuscript)

July 4Hits:1

This question already has an answer here:

  • Steganograpjy or Digital Watermarking [closed] 2 answers

I am going to protect an image file (ancient manuscript) which will be available online for everyone to download. I want to protect the file in these situations:

  1. When it's on the server, I need to protect the file from any alteration (I mean should previously apply digital watermarking to the file and digital signature or MAC to provide the copyright, data integrity and authenticity)
  2. When the receiver downloads a copy of my file (I want to ensure no alteration done by an adversary in the way from the sender to the receiver)

Will a digital signature and digital water mark provide such a service?

Any better suggestions to protect the online image file?


There is no way any cryptographic tool of any kind will protect a file against alterations. At best, such tools will make alteration detectable in a way that an hostile entity will not be able to hid.

"Detectable" means that it will be detected by somebody. Depending on who you want that somebody to be, various tools are to be applied. A MAC is computed with a secret key, and the same key is used to verify it; so, if you use a MAC, then whoever can verify that the file is unaltered also has all the technical power need to actually alter the file and still avoid detection. If you want verifiers to be distinct from provers (the "prover" is the one who states "this is the correct file" in the first place), then you will need digital signatures.

None of this would prevent a hacker who has taken control of your server from modifying the file on the server. At best, users who download the file and verify the signature may notice that something is amiss. Moreover, signatures on files require some tools to verify them. This can be done relatively easily in PDF files because the PDF format includes provisions for signatures and the usual PDF reader, namely Acrobat Reader from Adobe, includes the necessary code. It still requires some user education, so that the users get alarmed if the PDF they download turns out not to be signed.

TO prevent a hacker from modifying the file on the server, then forget all this talk about signatures and MAC and whatsnot; just make sure that your server cannot be hijacked by outsider. This is the realm of system administration, vulnerabilities and patches, and firewalls. To avoid alterations in transit, just make your server use SSL (i.e. "HTTPS").

If you will accept the compromise that "Any alterations to the image are detectable" then both of your requirements can be achieved by distributing a hash of the image through a different channel as the image itself.

The reason for using a different channel is to prevent someone who can alter the image either on the server or as it travels across the network from being able to also alter the hash in the same way.

This is exactly how many open-source software projects are delivered. The source code and/or the compiled binaries are mirrored by anyone who wants to support the project and anyone downloading from a potentially untrusted source can verify that they have download exactly the same file by downloading just the hash from the project creator's website, calculating the hash of the downloaded file and comparing the two.

On Linux this can be done with the md5sum and shasum tools. On Mac, the tools are md5 and shasum.

Distributing two different types of hash (such as md5 and sha256) can help protect against collisions.

Related Articles

  • Protection of online image file (ancient manuscript) July 4

    This question already has an answer here: Steganograpjy or Digital Watermarking [closed] 2 answers I am going to protect an image file (ancient manuscript) which will be available online for everyone to download. I want to protect the file in these s

  • What is this ".protect" folder and ".pemhtaccess" file?October 9

    On my host, I've got a directory named ".protect" containing a ".pemhtaccess" file generated (by my server?) when I setup my domain. I'm running an Apache server. Any guess what it does and whether I can delete it? I asked my hosting c

  • How can I protected my sitemap index file and sitemap.xml files from leechers?February 8

    I have a "content" website that some leechers and 419 scammers love to crawl agressively which also generates costs and performance issue. :( I have no choice: I need to prevent them to access the sitemap files and index. :( I am doing the same

  • iOS 7 app to create a password protected PDF or DOC file

    iOS 7 app to create a password protected PDF or DOC fileOctober 25

    I would like to create a file on my iPad, password protect it, and email it to a colleague. Is there a way to do this? It would have to be in a format that is readable by others, like a password protected PDF file or a password protected Word file. -

  • How to protect the loaded json file name and location using html5 and javascript?May 8

    The data of markers (not the map) is stored in a json/csv/js file. We want to show all data as markers on the map. But how to protect the raw data file from public access? Following the example on leaflet website, the name and location of the data fi

  • How to protect data in a file geodatabase (make read-only)October 2

    What kind of steps can I take to protect data in a file gdb, or even the entire gdb, so that it can't be modified inadvertently? (e.g. by a tool like Rubbersheet that modifies data in place.) I understand the file-gdb does not have the concept of use

  • Apache avoid password protection for a single fileJuly 1

    I want to protect an entire virtual host in Apache, but I still want to allow public access to a single file. The virtual host proxies all requests to a Tomcat server on the back end. What's the best way to do this? I tried setting up my virtual host

  • Which binary bits tells the file is password protected zip or rar file?July 30

    I am looking for the bit flags to detect the file is password-protected, not a regular .zip or .rar. --------------Solutions------------- You can use zipinfo and unrar to test whether a ZIP file is encrypted. E.g.: zipinfo -v file.zip |grep 'file sec

  • How to password protect multiple Excel 2007 files with multiple passwords using a Macro?April 23

    I'm new here so please let me know if my post is incorrect or anything like that. I currently have a macro that splits out one excel file into multiple files and saves them separately. This step I have found an answer to and am quite happy with. I ne

  • Removing write-protected'ness of a file system from terminal in LinuxMay 23

    I recently saw that my 2GB SanDisk microSD card was mounting as read-only filesystem on my linux (Ubuntu 10.10). I tried changing its property through nautilus, but it went in vain. Also I tried manually editing /etc/mtab file where I edited "ro"

  • protecting a single .exe-file for downloading with htaccess and htpasswd?July 5

    I have this, and only this, in a .htaccess file inside my downloads folder: <FilesMatch "\.(exe)$"> AuthType Basic AuthName "Downloads" AuthUserFile path/to/.htpasswd Require valid-user </FilesMatch> Once I click the link t

  • Decrypting a password protected LibreOffice Calc .ods file (forgotten password)November 28

    Sometime ago I created an .ods file with Libreoffice Calc which I password protected. I have now forgotten the password and as a result I am unable to access the file. Is there any way of bypassing or recovering the password, e.g. as root using the t

  • How to protect Adobe Acrobat XI files?April 5

    I want to protect the content of some PDF files (copy, edit, print). I tried to use password protection but it can be broken easily using tools like this. Looks like they use standard encryption algorithms. Is there any way to protect my files from e

  • How to lock/protect tags of mp3 files from being edited?May 14

    Is there a way to lock/protect the mp3 tags from being edited again after me? I know that the "read-only" feature in the windows properties can do it. but anyone can right click and unchecked it so I need any another way. Thanks e? -------------

  • DocumentRoot is password protected but no htaccess file?May 21

    At some point I pw protected /var/www/ for security purposes (my actual hosted websites are located in a different path), now I would like to host something publicly in /var/www/ but do not know how to remove the pw protection. There is no .htaccess

  • IIS Basic Authentication only protects directories, not individual files?May 21

    I really hope this isn't a duplicate, but I wasn't able to find anything like this on here. My issue is: I have a subdirectory on a Windows (not sure if 2008 R2 or 2012) server with IIS 8.5 that I want to protect with basic authentication. I've talke

  • Can I remove write protection for all Drupal files?October 25

    Just to prevent hacks, can I remove write protection in all files and directories in my installation, except for in sites/default/files? I mean I want to chmod to 555 and chown them all to root:root except for files within sites/default/files. For in

  • Protect local copy of file from server-side deletionMarch 11

    For several cloud storage providers, when you use the desktop application, your local copy of the files is synced with the 'online' version (actually stored on cloud provider servers). This means that if my account is hijacked or if the server for so

  • Is it not secure if we use weak passwords to protect exported PKCS #12 files with private keys?September 18

    Consider a practical scenario as described in Microsoft's Expand Export a Certificate with the Private Key. We can see a certificate with private key can be exported as a PKCS #12 file, where the private key can be protected by a password (in Step 7)

  • Using .htaccess to protect direct access of filesFebruary 11

    We need to prevent direct access of files on our site from someone just entering a URL in their browser. I got this to work by using an htaccess file and it is fine in IE & Safari, but for some reason Firefox doesn't cooperate. I think it has somethi

Copyright (C) 2018 ceus-now.com, All Rights Reserved. webmaster#ceus-now.com 14 q. 0.903 s.