1994-03-01 - Re: standard for stegonography?????!!!!??

Header Data

From: Sergey Goldgaber <sergey@delbruck.pharm.sunysb.edu>
To: Arsen Ray Arachelian <rarachel@prism.poly.edu>
Message Hash: 1e7458fc7dbf4faefcd211067bf31aaf08c9455e66f2adeba79934409a8ab018
Message ID: <Pine.3.89.9402282226.C11533-0100000@delbruck.pharm.sunysb.edu>
Reply To: <9402282245.AA05746@prism.poly.edu>
UTC Datetime: 1994-03-01 04:25:16 UTC
Raw Date: Mon, 28 Feb 94 20:25:16 PST

Raw message

From: Sergey Goldgaber <sergey@delbruck.pharm.sunysb.edu>
Date: Mon, 28 Feb 94 20:25:16 PST
To: Arsen Ray Arachelian <rarachel@prism.poly.edu>
Subject: Re: standard for stegonography?????!!!!??
In-Reply-To: <9402282245.AA05746@prism.poly.edu>
Message-ID: <Pine.3.89.9402282226.C11533-0100000@delbruck.pharm.sunysb.edu>
MIME-Version: 1.0
Content-Type: text/plain



On Mon, 28 Feb 1994, Arsen Ray Arachelian wrote:

> Guys, I thought the whole point of stego was to hide the fact that
> you're hiding data in a file.  Having a "standard" for this is
> a bad idea i the sense that if you have a standard, you make it
> that much easier for the bad guys to intercept and find what
> you are trying to hide!
> 

That is correct.  The standard should be to have no standard!  :)
But, if you must have a standard, some variability would help.  I outlined
a "variable standard" in another recent message in this thread.

A fictional example of a legitimate need for standardization and a possible 
solution follows:


  Feb. 1998

  Jack and Jill are both readers of cypherpunks and long-time users of PGP.
"Stealth PGP" and "Stego+" have become very popular.  Unfortunately, 
Clipper is a legal necessity for all computer communication.  

  Jack wants to send Jill a _truely_ private message.  Using only Clipper is 
not an option; neither is "Stealth PGP", on its own; as, meerly owning 
non-Clipper encrypted files has recently been successfully used as grounds 
for search warrants, equipment confiscations, and miscellaneous court 
sanctions.

  Luckily, it has become particularly popular to use "Stealth 
PGP" in combination with "Stego+" to hide messages in PictureCD files.  
Knowledgeable users regularly scan alt.videos.binaries.misc for messages.  
Although Jack would like additional security that he would obtain from 
using a non-standard stegonagraphy program, this is his first message to 
Jill.  He can not simply send plain-text email to Jill telling her to use 
the new "SuperStego", for obvious reasons.

  Jack therefore uses the standard, relatively secure, method and 
sends the message via "Stealth PGP" & "Stego+" in TEST.CD on 
alt.videos.binaries.misc; thereby evading the ClipperCops.



Sergey

Thread

• Return to February 1994

• Return to March 1994

• Return to “Jef Poskanzer <jef@ee.lbl.gov>”
• Return to “Jeremy Cooper <jeremy@crl.com>”
• Return to “mgream@acacia.itd.uts.edu.au (Matthew Gream)”
• Return to “rarachel@prism.poly.edu (Arsen Ray Arachelian)”
• Return to “Sergey Goldgaber <sergey@delbruck.pharm.sunysb.edu>”

• Return to “tcmay@netcom.com (Timothy C. May)”

• 1994-02-27 (Sun, 27 Feb 94 11:16:12 PST) - standard for stegonography? - Jef Poskanzer <jef@ee.lbl.gov>
  • 1994-02-27 (Sun, 27 Feb 94 13:58:21 PST) - Re: standard for stegonography? - Jeremy Cooper <jeremy@crl.com>
    • 1994-02-28 (Sun, 27 Feb 94 17:30:37 PST) - Re: standard for stegonography? - tcmay@netcom.com (Timothy C. May)
      • 1994-02-28 (Sun, 27 Feb 94 18:00:33 PST) - Re: standard for stegonography? - tcmay@netcom.com (Timothy C. May)
      • 1994-02-28 (Sun, 27 Feb 94 21:48:57 PST) - Re: standard for stegonography? - mgream@acacia.itd.uts.edu.au (Matthew Gream)
        • 1994-02-28 (Sun, 27 Feb 94 22:11:45 PST) - Re: standard for stegonography? - Sergey Goldgaber <sergey@delbruck.pharm.sunysb.edu>
          • 1994-02-28 (Mon, 28 Feb 94 02:19:47 PST) - Re: standard for stegonography? - mgream@acacia.itd.uts.edu.au (Matthew Gream)
            • 1994-02-28 (Mon, 28 Feb 94 12:09:36 PST) - Re: standard for stegonography? - Sergey Goldgaber <sergey@delbruck.pharm.sunysb.edu>
              • 1994-02-28 (Mon, 28 Feb 94 14:43:21 PST) - Re: standard for stegonography? - mgream@acacia.itd.uts.edu.au (Matthew Gream)
                • 1994-02-28 (Mon, 28 Feb 94 15:32:45 PST) - Re: standard for stegonography? - Sergey Goldgaber <sergey@delbruck.pharm.sunysb.edu>
                  • 1994-03-01 (Mon, 28 Feb 94 16:11:23 PST) - Re: standard for stegonography? - mgream@acacia.itd.uts.edu.au (Matthew Gream)
                    • 1994-03-01 (Mon, 28 Feb 94 19:36:20 PST) - Re: standard for stegonography? - Sergey Goldgaber <sergey@delbruck.pharm.sunysb.edu>
                      • 1994-03-01 (Mon, 28 Feb 94 23:15:34 PST) - Re: standard for stegonography? - mgream@acacia.itd.uts.edu.au (Matthew Gream)
                        • 1994-03-01 (Tue, 1 Mar 94 01:07:59 PST) - Re: standard for stegonography? - Sergey Goldgaber <sergey@delbruck.pharm.sunysb.edu>
                  • 1994-03-01 (Mon, 28 Feb 94 22:38:25 PST) - Re: standard for stegonography? - Jeremy Cooper <jeremy@crl.com>
                    • 1994-03-01 (Mon, 28 Feb 94 22:52:06 PST) - Re: standard for stegonography? - Sergey Goldgaber <sergey@delbruck.pharm.sunysb.edu>
            • 1994-02-28 (Mon, 28 Feb 94 14:57:53 PST) - Re: standard for stegonography?????!!!!?? - rarachel@prism.poly.edu (Arsen Ray Arachelian)
              • 1994-03-01 (Mon, 28 Feb 94 20:25:16 PST) - Re: standard for stegonography?????!!!!?? - Sergey Goldgaber <sergey@delbruck.pharm.sunysb.edu>
              • 1994-03-01 (Mon, 28 Feb 94 22:29:40 PST) - Re: standard for stegonography?????!!!!?? - Jeremy Cooper <jeremy@crl.com>