Steganography

TECHNICAL DEFINITION

Steganography is a covert communication technique involving the embedding of secret data (e.g., messages, files) within innocuous digital media (e.g., images, audio, video) to avoid detection, thereby concealing the very presence of information, in contrast to cryptography which only obfuscates content.

BACKGROUND

This is a list of cybersecurity information technologies. Cybersecurity concerns all technologies that store, manipulate, or move computer data, such as computers, data networks, and all devices connected to or included in said networks, such as routers and switches. All information technology devices and facilities need to be secured against intrusion, unauthorized use, and vandalism. Users of information technology are to be protected from theft of assets, extortion, identity theft, loss of privacy, damage to equipment, business process compromise, and general disruption. The public should be protected against acts of cyberterrorism, such as compromise or denial of service.

SYNONYMS & ALIASES

• data hiding
• covert embedding
• hidden writing
• information hiding

USAGE NOTE

It is often employed in intelligence operations, digital watermarking, and by malware to evade detection.

DEVELOPERS

Organizations developing technology related to Steganography.

• Magnet Forensics

  Magnet Forensics develops digital forensics software (e.g., Magnet AXIOM) used by law enforcement, government, and corporations to recover and analyze evidence from computers, mobile devices, and cloud sources. Their tools include advanced capabilities for detecting hidden data and potential steganographic content within various file types, crucial for cybersecurity investigations and intelligence.

• OpenText (EnCase)

  OpenText, through its EnCase Forensic product (formerly Guidance Software), provides a widely used platform for digital forensics and e-discovery. EnCase is a robust tool for analyzing digital media, including features to identify and extract hidden information, locate artifacts of steganography, and scrutinize files for anomalies relevant to national security and cyber investigations.

• Belkasoft

  Belkasoft develops comprehensive digital forensics and incident response software (Belkasoft Evidence Center) for investigators. Their solutions incorporate advanced features for artifact extraction, including specific modules for steganography detection and analysis across various file formats, which are vital for uncovering covert communications and hidden data in cyber defense scenarios.

• Cellebrite

  Cellebrite provides digital intelligence solutions primarily for mobile devices, but also for computers and cloud sources. Their tools are used by law enforcement and intelligence agencies worldwide to extract, decode, and analyze digital evidence. Detecting hidden data and potential steganography on mobile devices is a critical capability addressed by their forensic platforms like UFED and Physical Analyzer.

• MIT Lincoln Laboratory

  MIT Lincoln Laboratory is a federally funded research and development center for the U.S. Department of Defense. They conduct advanced research and develop technology solutions for national security challenges, including information security, signal processing, and covert communications, which encompass state-of-the-art steganography and steganalysis techniques.

• Georgia Tech Research Institute (GTRI)

  GTRI is a non-profit applied research organization that works with government and industry clients to solve complex technical problems. They conduct extensive research in cybersecurity, intelligence, and information systems, including the development of advanced algorithms and tools for detecting and analyzing hidden information, vital for national defense and intelligence operations.

• Arsenal Recon

  Arsenal Recon develops specialized digital forensics tools and hardware, offering solutions that aid in examining digital evidence. Their software provides deep analysis capabilities for disk images and other digital artifacts, often uncovering hidden partitions, encrypted data, and other forms of data concealment, including potential steganographic implementations.