2 leyer security system for
play

2-Leyer Security System for Hiding Sensitive Text Data on Personal - PowerPoint PPT Presentation

Jul 09, 2023 •117 likes •330 views

2014 The 3rd International Conference on Advancements in Information Technology (ICAIT 2014) Dubai, UAE, 22-23 August 2014 2-Leyer Security System for Hiding Sensitive Text Data on Personal Computers Nouf Al-Otaibi and Adnan Gutub Umm Al-Qura

  1. 2014 The 3rd International Conference on Advancements in Information Technology (ICAIT 2014) Dubai, UAE, 22-23 August 2014 2-Leyer Security System for Hiding Sensitive Text Data on Personal Computers Nouf Al-Otaibi and Adnan Gutub Umm Al-Qura University (UQU) Makkah, Saudi Arabia 1 Saturday 23 rd August 2014

  2. 2-Leyer Security System for Hiding Sensitive Text Data on Personal Computers Outline • Introduction Motivation & Methods • • Cryptography & Steganography • System Overview System Implementation Interface • • Testing Results & Comparison • Adnan Gutub Saturday 23 rd August 2014 2 ICAIT 2014, Dubai, UAE

  3. 2-Leyer Security System for Hiding Sensitive Text Data on Personal Computers Motivation: • Secure Text Storge on Personal Computer (PC) • Use 2-layers ▫ PC independent (Cryptography Layer) ▫ PC data dependant (Steganography Layer) Adnan Gutub Saturday 23 rd August 2014 3 ICAIT 2014, Dubai, UAE

  4. 2-Leyer Security System for Hiding Sensitive Text Data on Personal Computers Methods • Cryptography ▫ Converting secret data to unreadable forms... Unconverting it back to the readable form • Steganography ▫ Hiding existence of a secret data (from observation) Adnan Gutub Saturday 23 rd August 2014 ICAIT 2014, Dubai, UAE

  5. 2-Leyer Security System for Hiding Sensitive Text Data on Personal Computers Cryptography • Encryption & decryption keys are known Hiding Retrieve • They are usually related (if not identical) Key = Z Same Key = Z ▫ easy to derive the decryption key once the encryption key is known Z Secret Data • DES, AES (Rijndael) Secret Data Lock • A secret must be known (agreed upon) to hide and retrieve Z ▫ So can generate encryption and decryption keys • Key distribution and/or management problem Adnan Gutub Saturday 23 rd August 2014 5 ICAIT 2014, Dubai, UAE

  6. 2-Leyer Security System for Hiding Sensitive Text Data on Personal Computers Steganography model Basic Steganography System Cover Object Input Communication Channel Steganography Stego Algorithm Output Object (Embedding Part) Secret Object Input Cover Object Output Communication Channel Steganography Stego Algorithm Input Object (Detection Part) Secret Object Output Adnan Gutub Saturday 23 rd August 2014 6 ICAIT 2014, Dubai, UAE

  7. 2-Leyer Security System for Hiding Sensitive Text Data on Personal Computers Steganography & Cryptography • Overlapping usages for information hiding • Steganography security hides the knowledge that there is information in the cover medium • cryptography revels this knowledge but encodes the data as cipher-text and disputes decoding it without permission • cryptography concentrate the challenge on the decoding process while steganography adds the search of detecting if there is hidden information or not. Adnan Gutub Saturday 23 rd August 2014 7 ICAIT 2014, Dubai, UAE

  8. 2-Leyer Security System for Hiding Sensitive Text Data on Personal Computers Process flow graph of the 2-Layer security system Storing sensitive secret text data Retrieving back secret text data Adnan Gutub Saturday 23 rd August 2014 8 ICAIT 2014, Dubai, UAE

  9. 2-Leyer Security System for Hiding Sensitive Text Data on Personal Computers Overview : 2-leyer security system Cover Stego Image Secret Encryption/ Sensitive Secret Decryption Key Text Data 2-Layer Security System Image Base AES Symmetric Steganography Cryptography Layer Layer Output: Stego-Image Hiding Sensitive Secret Text Data on Personal Computers Adnan Gutub Saturday 23 rd August 2014 9 ICAIT 2014, Dubai, UAE

  10. 2-Leyer Security System for Hiding Sensitive Text Data on Personal Computers Cryptography: AES Adnan Gutub Saturday 23 rd August 2014 10 ICAIT 2014, Dubai, UAE

  11. 2-Leyer Security System for Hiding Sensitive Text Data on Personal Computers Steganography: Image based • Hiding in LSBs • Example: embedding 200 => (11001000) • Pixel 1: 0010110 1 0001110 1 1101110 0 • Pixel 2: 1010011 0 1100010 1 0000110 1 • Pixel 3: 1101001 0 1010110 0 01100011 Adnan Gutub Saturday 23 rd August 2014 11 ICAIT 2014, Dubai, UAE

  12. 2-Leyer Security System for Hiding Sensitive Text Data on Personal Computers System interface showing: bits statistics process of hiding sensitive text: AES encryption image based steganography Adnan Gutub Saturday 23 rd August 2014 12 ICAIT 2014, Dubai, UAE

  13. 2-Leyer Security System for Hiding Sensitive Text Data on Personal Computers retrieve sensitive data Adnan Gutub Saturday 23 rd August 2014 13 ICAIT 2014, Dubai, UAE

  14. 2-Leyer Security System for Hiding Sensitive Text Data on Personal Computers Image changes cannot be observed Original image Stego image Adnan Gutub Saturday 23 rd August 2014 14 ICAIT 2014, Dubai, UAE

  15. 2-Leyer Security System for Hiding Sensitive Text Data on Personal Computers Stego Tests: Capacity Improvement Changing: 1-LSB 7-LSB Steganography acceptable number of bits = 1-LSB & 2-LSB Adnan Gutub Saturday 23 rd August 2014 15 ICAIT 2014, Dubai, UAE

  16. 2-Leyer Security System for Hiding Sensitive Text Data on Personal Computers Testing: 30 images security relation to data dependency Compare: 1LSB and 2LSB. Adnan Gutub Saturday 23 rd August 2014 16 ICAIT 2014, Dubai, UAE

  17. 2-Leyer Security System for Hiding Sensitive Text Data on Personal Computers Testing Results: 30 images security relation to data dependency Compare: 1LSB & 2LSB. Adnan Gutub Saturday 23 rd August 2014 17 ICAIT 2014, Dubai, UAE

  18. 2-Leyer Security System for Hiding Sensitive Text Data on Personal Computers Remarks • Implemented visual basic platform of 2-layer security system ==> hiding sensitive text data on personal computers (PC) • AES Crypto layer: PC independent security • Image Based Stego layer: fully dependant on the PC data available • Capacity improved by Stego layer accepting security of 2LSB as well as 1LSB Adnan Gutub Saturday 23 rd August 2014 18 ICAIT 2014, Dubai, UAE

  19. 2-Leyer Security System for Hiding Sensitive Text Data on Personal Computers Adnan Gutub Saturday 23 rd August 2014 19 ICAIT 2014, Dubai, UAE

  20. 2014 The 3rd International Conference on Advancements in Information Technology (ICAIT 2014), Dubai, UAE, 22-23 August 2014 Thanks for the opportunity Questions? 2-Leyer Security System for Hiding Sensitive Text Data on Personal Computers Nouf Al-Otaibi and Adnan Gutub Umm Al-Qura University (UQU), Makkah, Saudi Arabia 20

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Linux System Security Tunables Linux System Security Tunables Linux System Security Tunables

Linux System Security Tunables Linux System Security Tunables Linux System Security Tunables

Linux System Security Tunables Linux System Security Tunables Linux System Security Tunables http://outflux.net/slides/2013/drupal/tunables.pdf R0Ng DrupalCon Portland 2013 Kees Cook <keescook@google.com> (pronounced Case) Who is

474 views • 33 slides
System Security I: Introduction TDDD17 Information Security, Second Course Ulf Kargn

System Security I: Introduction TDDD17 Information Security, Second Course Ulf Kargn

System Security I: Introduction TDDD17 Information Security, Second Course Ulf Kargn Department of Computer and Information Science Linkping University System Security 2 Security in computer systems Hardware (System)

838 views • 56 slides
Protection and Security Threat is potential security violation Attack is attempt to breach

Protection and Security Threat is potential security violation Attack is attempt to breach

CSC 4103 - Operating Systems The Security Problem Spring 2007 Security must consider external environment of the system, and protect the system resources Lecture - XX Intruders (crackers) attempt to breach security Protection and

195 views • 4 slides
System Security System Security Aurlien Francillon francill@eurecom.fr Administrativa...

System Security System Security Aurlien Francillon francill@eurecom.fr Administrativa...

System Security System Security Aurlien Francillon francill@eurecom.fr Administrativa... Administrativa... About me Assistant professor at Eurecom since 2011 Doing security research Embedded systems (MCU, smart phones,...)

1.21k views • 100 slides
Module 20: Security The Security Problem Authentication Program Threats System

Module 20: Security The Security Problem Authentication Program Threats System

Module 20: Security The Security Problem Authentication Program Threats System Threats Threat Monitoring Encryption Silberschatz and Galvin 1999 Operating System Concepts 20.1 The Security Problem Security must

155 views • 11 slides
Network and Certificate System Security Requirements Network and Certificate System Security

Network and Certificate System Security Requirements Network and Certificate System Security

Network and Certificate System Security Requirements Network and Certificate System Security Requirements (NCSSR) Effective 1 January 2013 No amendments since passed Included in WebTrust Principles and Criteria for Certification

253 views • 7 slides
Roadmap for Section 7.1 The Security Problem - a Definition Program & System Threats

Roadmap for Section 7.1 The Security Problem - a Definition Program & System Threats

Unit OS7: Security 7.1. The Security Problem Windows Operating System Internals - by David A. Solomon and Mark E. Russinovich with Andreas Polze Roadmap for Section 7.1 The Security Problem - a Definition Program & System Threats Security

518 views • 6 slides
Security Security as term, Possible Security violations Authentication Criteria for

Security Security as term, Possible Security violations Authentication Criteria for

BS1 WS19/20 topic-based slides Security Security as term, Possible Security violations Authentication Criteria for Trust in Computer Systems Three hearts of Windows Security DACLs A Look at Security System is secure if

988 views • 20 slides
Module 19: Security The Security Problem Authentication Program Threats System

Module 19: Security The Security Problem Authentication Program Threats System

Module 19: Security The Security Problem Authentication Program Threats System Threats Securing Systems Intrusion Detection Encryption Windows NT Operating System Concepts Silberschatz, Galvin and Gagne 2002

425 views • 9 slides
System Aware Cyber Security Barry M. Horowitz, PI University of Virginia November, 2012 System

System Aware Cyber Security Barry M. Horowitz, PI University of Virginia November, 2012 System

System Aware Cyber Security Barry M. Horowitz, PI University of Virginia November, 2012 System Aware Cyber Security Operates at the system application-layer , For security inside of the network and perimeter protection provided for the

164 views • 3 slides
Chapter 9: Security Security The security environment Basics of cryptography User

Chapter 9: Security Security The security environment Basics of cryptography User

Chapter 9: Security Security The security environment Basics of cryptography User authentication Attacks from inside the system Attacks from outside the system Protection mechanisms Trusted systems Chapter 9: Security

801 views • 65 slides
Roadmap for Section 7.2. Windows Security Features Components of the Security System Windows

Roadmap for Section 7.2. Windows Security Features Components of the Security System Windows

Unit OS7: Security 7.2. Windows Security Components and Concepts Windows Operating System Internals - by David A. Solomon and Mark E. Russinovich with Andreas Polze Roadmap for Section 7.2. Windows Security Features Components of the Security

453 views • 14 slides
Security in an Operating System Operating systems need to protect against two types of security

Security in an Operating System Operating systems need to protect against two types of security

H Security Security in an Operating System Operating systems need to protect against two types of security violations: Accidental security violations, e.g.: a program accidentally overwrites a file; a user issues rm -rf *,

6.18k views • 28 slides
Overview System Security Scanning Security Scanning and Discovery Important Security Web

Overview System Security Scanning Security Scanning and Discovery Important Security Web

Overview System Security Scanning Security Scanning and Discovery Important Security Web Sites Fingerprinting OS FingerPrinting IP Stacks Share Scans Chapter 14 SNMP Vulnerabilities FingerPrinting TCP/IP Services

439 views • 8 slides
OS Security Thierry Sans Security is a wide topic CSCD27 Computer and Network Security covers

OS Security Thierry Sans Security is a wide topic CSCD27 Computer and Network Security covers

OS Security Thierry Sans Security is a wide topic CSCD27 Computer and Network Security covers Cryptography Network security System security Web security (recap) Protection File systems implement a protection system Who

800 views • 30 slides
CIP 101 Training CIP-007-3a Cyber Security System Security Management Overview September

CIP 101 Training CIP-007-3a Cyber Security System Security Management Overview September

Eric Weston Wally Magda, CISSP, PSP, CISA Compliance Auditor, Cyber Compliance Auditor, Cyber Security Security CIP 101 Training CIP-007-3a Cyber Security System Security Management Overview September 24-25, 2013 Salt Lake City, UT No

2.02k views • 198 slides
Matryoshka: Hiding Secret Communicatjon in Plain Sight Iris Safaka , Christjna Fragouli, Katerina

Matryoshka: Hiding Secret Communicatjon in Plain Sight Iris Safaka , Christjna Fragouli, Katerina

Matryoshka: Hiding Secret Communicatjon in Plain Sight Iris Safaka , Christjna Fragouli, Katerina Argyraki Free communicatjon systems Give away some privacy 2 Wanna play tennis today? Free communicatjon systems Give away some

252 views • 22 slides
A NEW VILLAIN: INVESTIGATING STEGANOGRAPHY IN SOURCE ENGINE BASED VIDEO GAMES Table of Contents

A NEW VILLAIN: INVESTIGATING STEGANOGRAPHY IN SOURCE ENGINE BASED VIDEO GAMES Table of Contents

May 2 nd ,2012 Christopher Hale Dr. Cihan Varol Graduate Advisor A NEW VILLAIN: INVESTIGATING STEGANOGRAPHY IN SOURCE ENGINE BASED VIDEO GAMES Table of Contents History behind platform Impact of platform Creating game levels with

486 views • 35 slides
The NASA Aeronautics Blueprint - Toward a Bold New Era of Aviation 1 Table of Contents 2.4 The

The NASA Aeronautics Blueprint - Toward a Bold New Era of Aviation 1 Table of Contents 2.4 The

The NASA Aeronautics Blueprint - Toward a Bold New Era of Aviation 1 Table of Contents 2.4 The Airspace System i. The NASA Aeronautics Blueprint Towards a Bold new Era of Aviation 2.4.1 Weather 2.4.2 Traffic Optimization ii. Table of

426 views • 39 slides
INFORMATION SECURITY AT COCC COCC created and filled the Information Security position within

INFORMATION SECURITY AT COCC COCC created and filled the Information Security position within

Subject Cybersecurity Strategic Plan Connection Institutional Efficiency: Goal Statement: Strengthen systems, policies and procedures to create more proactive, responsive and effective internal processes. Goal Intention: While the College has

178 views • 3 slides
CHALLENGE PROGRAM 2016-17 SEASON / ORGANIZING A TEAM TODAY 2 Agenda WHAT WE WILL SEE TODAY 1

CHALLENGE PROGRAM 2016-17 SEASON / ORGANIZING A TEAM TODAY 2 Agenda WHAT WE WILL SEE TODAY 1

NAMS- DI presents 1 CHALLENGE PROGRAM 2016-17 SEASON / ORGANIZING A TEAM TODAY 2 Agenda WHAT WE WILL SEE TODAY 1 2 3 4 5 WHO WE ARE FEES PROGRAM TEAM QUESTIONS OVERVIEW CHALLENGES ORGANIZING A INSTANT TEAM, CHALLENGES

607 views • 37 slides
Truecrypt The Joys Thereof. Truecrypt . Wh What ? Why ? Why ?

Truecrypt The Joys Thereof. Truecrypt . Wh What ? Why ? Why ?

Truecrypt The Joys Thereof. Truecrypt . Wh What ? Why ? Why ? How ? How ? What ? TrueCrypt is a software system for establishing and maintaining an on-the-fly-encrypted volume (data storage

325 views • 14 slides
V2X security, privacy and trust overview Dr. Jo s Ma ra de F ue nte s (jfue nte s@ inf.uc

V2X security, privacy and trust overview Dr. Jo s Ma ra de F ue nte s (jfue nte s@ inf.uc

V2X security, privacy and trust overview Dr. Jo s Ma ra de F ue nte s (jfue nte s@ inf.uc 3m.e s) COSE C L a b Unive rsity Ca rlo s I I I de Ma drid Agenda I ntro : Ve hic ula r c o mmunic a tio ns (V2X), wha t fo r? o Re a

497 views • 17 slides
ENGINEERING NEW FRONTIERS Mun Choi & Marty Wood 1 UCONN Faculty World Class Faculty

ENGINEERING NEW FRONTIERS Mun Choi & Marty Wood 1 UCONN Faculty World Class Faculty

ENGINEERING NEW FRONTIERS Mun Choi & Marty Wood 1 UCONN Faculty World Class Faculty Bryan Huey, Materials Science & Engineering B.S. Degree from Stanford Ph.D. Degree from U. Penn Atomic Force Microscopy allows nanoscale

453 views • 30 slides

More recommend