Show HN: Hide Messages in Images with Steganography

I'm a bit drunk, so uh, yeah.<p>LSB steganography is trivially easy to detect. Do not use LSB steganography.<p>Steganography can be provably secure, with the correct amounts of plain text and "cover data".<p>Here's one PDF. (<a href="http://www.cs.cmu.edu/~biglou/PSS.pdf" rel="nofollow">http://www.cs.cmu.edu/~biglou/PSS.pdf</a>)<p>Some people need this kind of stuff to work to avoid torture or other serious consequences, but most implementations are toys to demonstrate proof of concept or to play with the ideas.<p>tl:dr a real cryptographer will be along to correct my mistakes and provide sensible links.

Interesting work. My own JS stego tool uses a similar technique, though I implemented encryption and message scattering as well:<p><a href="http://oakes.github.com/PixelJihad/" rel="nofollow">http://oakes.github.com/PixelJihad/</a>

and detect those messages in plain sight.<p><a href="http://www.outguess.org/detection.php/" rel="nofollow">http://www.outguess.org/detection.php/</a>

Related: Lenna <a href="http://en.wikipedia.org/wiki/Lenna" rel="nofollow">http://en.wikipedia.org/wiki/Lenna</a>

I wrote an essay/slides a while back which may be of interest to people wanting to know a bit more about basic steganographic image creation and detection: <a href="http://www.cl.cam.ac.uk/teaching/0910/R08/work/slides-at443-steganography.pdf" rel="nofollow">http://www.cl.cam.ac.uk/teaching/0910/R08/work/slides-at443-...</a> <a href="http://www.cl.cam.ac.uk/teaching/0910/R08/work/essay-at443-steganography.pdf" rel="nofollow">http://www.cl.cam.ac.uk/teaching/0910/R08/work/essay-at443-s...</a><p>Quick improvement to the LSB method: Use JPEG and embed the data in the LSB of the DCT coefficients (still detectable, but not as trivially)<p>Cool demo though - I'd add a disclaimer though. It's easy to think that it's obvious that people shouldn't use this to store their password in, say, their Facebook profile photo, but..

Actually a really cool way of storing passwords in plain sight.<p>EDIT: Though if you were really secure, you shouldn't be typing your passwords into a third party website in plaintext. Alas, I'll have to write my own.

Nice. I implemented it in Ruby once <a href="https://github.com/yankov/steganograph" rel="nofollow">https://github.com/yankov/steganograph</a>

LSB steganography works on PNG (lossless compression). Saving it as a jpg file causes data to be lost.

nice! we integrated this with FUSE for one of our class projects <a href="https://github.com/maksim-s/JKS-FS" rel="nofollow">https://github.com/maksim-s/JKS-FS</a>