| Author(s) | Shawn D. Dickman |
| TR-Number | JMU-INFOSEC-TR-2007-002 |
| Abstract |
Steganography is a useful tool that allows covert transmission of
information over an overt communications channel. Combining
covert channel exploitation with the encryption methods of
substitution ciphers and/or one time pad cryptography,
steganography enables the user to transmit information masked
inside of a file in plain view. The hidden data is both difficult to
detect and when combined with known encryption algorithms,
equally difficult to decipher.
This paper provides a general overview of the following subject areas: historical cases and examples using steganography, how steganography works, what steganography software is commercially available and what data types are supported, what methods and automated tools are available to aide computer forensic investigators and information security professionals in detecting the use of steganography, after detection has occurred, can the embedded message be reliably extracted, can the embedded data be separated from the carrier revealing the original file, and finally, what are some methods to defeat the use of steganography even if it cannot be reliably detected. |
| Sponsor | Prof. Florian Buchholz |
| Contact | e-mail techreports@cs.jmu.edu |