A Simple Mobile Plausibly Deniable System Using Image Steganography and Secure Hardware

Xia, Lichen; Liao, Jinghui; Chen, Niusen; Chen, Bo; Shi, Weisong

A Simple Mobile Plausibly Deniable System Using Image Steganography and Secure Hardware

Files

A Simple Mobile Plausibly Deniable System Using Image.pdf (1.22 MB)

Date

2024-06-19

Authors

Publisher

Proceedings of the 2024 ACM Workshop on Secure and Trustworthy Cyber-Physical Systems

Abstract

Traditional encryption methods cannot defend against coercive attacks in which the adversary captures both the user and the possessed computing device, and forces the user to disclose the decryption keys. Plausibly deniable encryption (PDE) has been designed to defend against this strong coercive attacker. At its core, PDE allows the victim to plausibly deny the very existence of hidden sensitive data and the corresponding decryption keys upon being coerced. Designing an efficient PDE system for a mobile platform, however, is challenging due to various design constraints bound to the mobile systems. Leveraging image steganography and the built-in hardware security feature of mobile devices, namely TrustZone, we have designed a Simple Mobile Plausibly Deniable Encryption (SMPDE) system which can combat coercive adversaries and, meanwhile, is able to overcome unique design constraints. In our design, the encoding/decoding process of image steganography is bounded together with Arm TrustZone. In this manner, the coercive adversary will be given a decoy key, which can only activate a DUMMY trusted application that will instead sanitize the sensitive information stored hidden in the stego-image upon decoding. On the contrary, the actual user can be given the true key, which can activate the PDE trusted application that can really extract the sensitive information from the stego-image upon decoding. Security analysis and experimental evaluation justify both the security and the efficiency of our design.

Description

This article was originally published in Proceedings of the 2024 ACM Workshop on Secure and Trustworthy Cyber-Physical Systems SaT-CPS ’24, June 21, 2024, Porto, Portugal. The version of record is available at: https://doi.org/10.1145/3643650.3658607. © 2024 Copyright held by the owner/author(s). This work is licensed under a Creative Commons Attribution International 4.0 License (https://creativecommons.org/licenses/by/4.0/).

Keywords

plausibly deniable encryption, mobile devices, TrustZone, image steganography

Citation

Lichen Xia, Jinghui Liao, Niusen Chen, Bo Chen, and Weisong Shi. 2024. A Simple Mobile Plausibly Deniable System Using Image Steganography and Secure Hardware. In Proceedings of the 2024 ACM Workshop on Secure and Trustworthy Cyber-Physical Systems (SaT-CPS ’24), June 21, 2024, Porto, Portugal. ACM, New York, NY, USA, 9 pages. https://doi.org/10.1145/ 3643650.3658607

URI

https://udspace.udel.edu/handle/19716/34500

Collections

Open Access Publications

Full item page