Published on May 2nd,2011 at 9:16 AM
By >Ike

Nikon’s Image authentication system cracked

ElecomSoft, a privately owned company in the heart of Russia (Moscow) has fiddled around with Nikon’s Image authentication software and managed to let a forged photo pass for a genuine one.  Nikon originally created their authentication system to inhibit an uneditted image to be manipulated and being sold for original/raw.

Forged photos are nowadays so common for  false political statements, legal evidence & business affairs that can define or totally destroy an individual or company’s name and/or carreer. So Nikon thought it invented the perfect software to validate if a photo was taken with their camera and if it was modified in any way.

Affected Cameras

All past and current digital SLR cameras manufactured by Nikon and supporting Image Authentication are affected, including Nikon D3X, D3, D700, D300S, D300, D2Xs, D2X, D2Hs, and D200 digital SLRs.

Official press release from Elecom:

It is hard to underestimate the importance of photographic evidence in today’s world. Political, legal and business users rely on images captured with modern digital cameras to base important decisions. The credibility of such evidence thus becomes vital.

The Impact of Fake Photographic Evidence

Some of that evidence has been proven to be a fake. Manipulated images have been used to make false political statements in more than once case. ElcomSoft has published a brief abstract on some of the world’s most famous fakes that made impact on public opinion, resulted in terminated careers and loss of reputation.

Digital Image Authentication

Major manufacturers of photographic equipment including Canon and Nikon introduced image authentication systems aimed to streamline the validation of image originality and guarantee that the image appears exactly as captured. A secure digital signature is calculated for each capture immediately after a shot.

The Flaw in Nikon’s Implementation

Nikon’s implementation of image authentication has a major design weakness. ElcomSoft researchers discovered a flaw in the way the secure image signing key is being handled in camera. The vulnerability allowed the researchers to actually extract the original signing key from a Nikon camera. This, in turn, made it possible to produce manipulated images with a fully valid authentication signature. By using the signing key, ElcomSoft has prepared a set of hoax images that successfully pass validation with Nikon Image Authentication Software.

ElcomSoft is providing more information on image authentication background and technical implementation in the «Nikon Image Authentication System: Compromised» blog entry

Nikon’s Response

ElcomSoft made the issue known to Nikon and CERT as a trusted third party. At the time of this writing, ElcomSoft received no response from Nikon.

Affected Cameras

All past and current digital SLR cameras manufactured by Nikon and supporting Image Authentication are affected, including Nikon D3X, D3, D700, D300S, D300, D2Xs, D2X, D2Hs, and D200 digital SLRs.

Category Cameras
              
Related Articles


 

1

Casio introduces a new “Rally” ready GW-9300 Mudman G-Shock

3

Square Enix's cute smartphone girls will teach you english

Comments
 

 

0

Panasonic - Massager that relaxes your muscles and warms them gently

1

World's lightest and thinnest circuits pave the way for 'imperceptible electronics'

0

Panasonic - Smartphone-sized portable full body massager

0

Nestlé - KitKat - 2013 summer seasonal special flavors

0

Turn your iPhone 4/4s or 5 into a real pocket camcorder thanks to Donya

0

Japanese Technology from the Future Friday!

0

LG - Pink-colored model will be added to Pocket photo

3

Sharp - Electronic handwriting notebook that can save 2000 pages data

0

LG - Ultra-wide LCD monitor with a cinematic 21:9 aspect ratio

0

Panasonic – DMC-XS3 – Slim & classic designed Lumix camera

0

Panasonic - DMC-FZ70 - Lumix camera with the world's first 60X optical zoom

0

Japanese Robots: The Seemingly Least Cool Robotics Story of July is a Must-Read!

1

Sony - α58 - DSLR camera with interchangeable lenses

0

Thanko - 7.5mm biz card sized portable battery - Increased in battery capacity by 1200mAh over the previous model

0

JVC Kenwood - ADIXXION "GC-XA2" - dustproof, shockproof, waterproof, low-temperature resistant action camera

0

NTT docomo - Disney Mobile on docomo F-07E - Disney official smartphone