memes

17653 readers

3281 users here now

Community rules

1. Be civil

No trolling, bigotry or other insulting / annoying behaviour

2. No politics

This is non-politics community. For political memes please go to !politicalmemes@lemmy.world

3. No recent reposts

Check for reposts when posting a meme, you can only repost after 1 month

4. No bots

No bots without the express approval of the mods or the admins

5. No Spam/Ads/AI Slop

No advertisements or spam. This is an instance rule and the only way to live. We also consider AI slop to be spam in this community and is subject to removal.

A collection of some classic Lemmy memes for your enjoyment

Sister communities

!tenforward@lemmy.world : Star Trek memes, chat and shitposts
!lemmyshitpost@lemmy.world : Lemmy Shitposts, anything and everything goes.
!linuxmemes@lemmy.world : Linux themed memes
!comicstrips@lemmy.world : for those who love comic stories.

founded 2 years ago

MODERATORS

Tenthrow@lemmy.world

The_Picard_Maneuver@lemmy.world

The_Picard_Maneuver@startrek.website

2217

Benefit of the hindsight (sub.wetshaving.social)

submitted 4 months ago by weird@sub.wetshaving.social to c/memes@lemmy.world

197 comments fedilink hide all child comments

you are viewing a single comment's thread
view the rest of the comments

[–] drathvedro@lemm.ee 1 points 4 months ago (1 children)

This is a very legit concern. But to my understanding, it is possible to make the the camera that's very hard to crack, by putting security enclave or whatever it is that makes phones hard to unlock, right inside the CCD chip. Even if somebody manages to strip off the top layer, chart out the cryptographic circuit, probe the ROM inside, etc and extract the private key, it should be possible upon finding it to revoke the key to that camera or even the entire model and make it even more painful in further models.

Another concern is of camera being pointed to the screen with a fake image, but I've searched and yet to find a convincing shot that doesn't look like, well, a photo of a screen. But for this concern I think the only counter-measure would be to add photographer and publisher signatures to the mix, so that if anyone is engaging in such practice is caught, their entire library goes untrusted upon revocation. Wouldn't be completely foolproof, but better than nothing, I guess.

[–] Saledovil@sh.itjust.works 2 points 4 months ago (1 children)

That's security by obscurity. Given time, an attacker with physical access to the device will get every bit data from it. And yes, you could mark it as compromised, but then there's nothing stopping the attacker from just buying another camera and stripping the key from that, too. Since they already know how. And yes, you could revoke all the keys from the entire model range, and come up with a different puzzle for the next camera, but the attacker will just crack that one too.

Hiding the key on the camera in such a way that the camera can access it, but nobody else can is impossible. We simply need to accept that a photograph or a video is no longer evidence.

The idea in your second paragraph is good though, and much easier to implement than your first one.

[+] MotoAsh@lemmy.world 0 points 4 months ago* (last edited 3 weeks ago) (1 children)

[deleted]

[–] Saledovil@sh.itjust.works 1 points 4 months ago (1 children)

No, it is not security through obscurity. It’s a message signature algorithm, which are used in cryptography all the time.

Yes it is. The scheme is that when you take a picture, the camera signs said picture. The key is stored somewhere in the camera. Hence the secrecy of the key hinges on the the attacker not knowing how the camera accesses the key. Once the attacker knows that, they can get the key from the camera. Therefore, security hinges on the secrecy of the camera design/protocol used by the camera to access the key, in addition to the secrecy of the key. Therefore, it is security by obscurity.