Go to:
Previous Item
Current News
Next Item

ElcomSoft's logo. Click here to visit the ElcomSoft website! Exploit found in Nikon Image Authentication, claims ElcomSoft
(Saturday, April 30, 2011 - 00:10 EDT)

Last November, ElcomSoft Co. Ltd., a Russian company specializing in computer security, published information documenting what it claimed was a flaw in Canon's Original Data Security system, and just five months later, the company now claims to have discovered a similar exploit in Nikon's competing Image Authentication system.

As with Canon, ElcomSoft states that it has contacted Nikon to report the issue, and received no response, and as in the earlier case, the company has published a number of clearly retouched images that it says will pass authentication by the software as being unretouched. We must note that we have not independently verified ElcomSoft's claims, as we don't currently have either company's solution in-house. If the company's information is accurate, however, it would seem to present a major issue for both companies, as customers using either solution would be unable to rely on the authenticity of verified images past and present. When the claimed exploit in Canon's solution was announced last year, ElcomSoft suggested that it applied to both raw and JPEG files. We don't currently know whether the same is true of the claimed Nikon exploit, as ElcomSoft has yet to clarify this point.

To date, ElcomSoft states that Canon has yet to address the claimed flaw in its Original Data Security system, and it isn't clear whether a fix is possible from either company that could be applied to existing camera models. Should we receive any new information on either case, we will of course provide this information to readers on our news page. More details can be found on ElcomSoft's site.

Original Source Press Release:

ElcomSoft Claims to Have Discovered Vulnerability in Nikon's Image Authentication System

Moscow, Russia (PRWEB) April 28, 2011 -- ElcomSoft Co. Ltd. researched Nikon's Image Authentication System, a secure suite validating if an image has been altered since capture, and claims to have discovered a major flaw in the manner the secure image signing key is being handled. The original signing key was extracted from a Nikon camera; manipulated images with valid authentication signature were produced. The forged images successfully pass validation with Nikon Image Authentication Software. ElcomSoft asserts that all past and current Nikon cameras supporting Image Authentication are affected, including Nikon D3X, D3, D700, D300S, D300, D2Xs, D2X, D2Hs, and D200 digital SLRs. ElcomSoft notified Nikon and CERT about the issue. No response was received from the vendor.

About Nikon Image Authentication System
Nikon Image Authentication enables users to determine whether an image has been altered after being shot. According to Nikon, the system provides proof of image authenticity for the purpose of law enforcement, insurance, businesses, and media agencies.

Credibility of photographic evidence is vital. Courts, insurance companies and the media may accept digitally signed photographs as valid evidence. Many famous fakes were produced by enthusiast photographers, journalists, editors, political parties, and even the US Army.

To address the issue, Canon and Nikon developed image authentication systems. In 2010, ElcomSoft claimed to have found a major security flaw in Canon's image authentication system, which has not been addressed up to this day.

ElcomSoft believes that a similar vulnerability exists in Nikon's system, allowing image authentication data to be forged. As a consequence, they believe the system cannot be trusted, and that successful image verification by Nikon Image Authentication Software cannot be treated as proof of authenticity.

The Issue
ElcomSoft believes that the ultimate vulnerability lies in the way the image signing key is being handled. The signing cryptographic key can be extracted from the camera and used to sign any picture, genuine or not. The signed image successfully passes validation with Nikon Image Authentication Software.

About ElcomSoft Co.Ltd.
Founded in 1990, ElcomSoft Co.Ltd. develops state-of-the-art computer forensics tools, provides computer forensics training and consulting services. Since 1997, ElcomSoft has been providing support to businesses, law enforcement, military and intelligence agencies. ElcomSoft tools are used by most of the Fortune 500 corporations, multiple branches of the military all over the world, foreign governments, and all major accounting firms.

Manipulated images passing validation by Nikon Image Authentication Software are available at http://nikon.elcomsoft.com


Go to:
Previous Item
Current News
Next Item