Presentation is loading. Please wait.

Presentation is loading. Please wait.

Securing JPEG2000 (J2K) - The Next Generation Image Compression Standard Robert H. Deng, Yongdong Wu, Di Ma Institute for Infocomm Research Singapore.

Published byBranden Powers Modified over 8 years ago

Similar presentations

Presentation on theme: "Securing JPEG2000 (J2K) - The Next Generation Image Compression Standard Robert H. Deng, Yongdong Wu, Di Ma Institute for Infocomm Research Singapore."— Presentation transcript:

1 Securing JPEG2000 (J2K) - The Next Generation Image Compression Standard Robert H. Deng, Yongdong Wu, Di Ma Institute for Infocomm Research Singapore

2 JPEG2000 (J2K) is an emerging standard for image compression –Achieves state-of-the-art low bit rate compression and has a rate distortion advantage over the original JPEG. –Allows to extract various sub-images from a single compressed image codestream, the so called “Compress Once, Decompress Many Ways”. –ISO/IEC JTC 29/WG1 Security Working Setup in 2002 Background

3 “Compress Once, Decompress Many Ways” A Single Original Codestream By resolutions By layers Region of Interest

4 Outline Data Structure of J2K Image Codestreams The Authentication Scheme The Access Control Scheme Prototype Demo

5 Data Structure of J2K Image Codestreams

6 Components Each image is decomposed into one or more components, such as R, G, B. Denote components as C i, i = 1, 2, …, n C.

7 Resolution & Resolution-Increments 1-level DWT J2K uses 2-D Discrete Wavelet Transformation (DWT)

8 Resolution and Resolution-Increments 2-level DWT 1-level DWT

9 Resolution and Resolution-Increments 2-level DWT Resolution-increments: R0R0 R1R1 R2R2 Resolution 0 = R 0 Resolution 1 = {R0, R 1 } Resolution 2 = {R0, R 1, R 2 }

10 Precincts Each resolution level is further partitioned into rectangular regions known as Precincts, P i, i = 1, 2, …, n P

11 Layers & Layer-Increments L0L0 L2L2 L nL … L1L1 J2K encodes quantized wavelet coeffieicnts from MSB bit-plane to LSB Bit- plane Bit-planes are truncated some points. Data between two truncation points form a quality layer-increment, L i, i = 1, 2, …, n L

12 Layers & Layer-Increments L0L0 {L 0, L 1 } {L 0, L 1, L 2 } All layer- increments

13 Packet (Cont.)

14 Packets & Progression Orders A J2K codestream can be viewed as a set of series of packets; they are the most fundamental building blocks of a codestream. A packet is uniquely identified by four parameters C, R, P and L, all the packets in a codestream can be sorted with respect to these four parameters in some orders, called Progression Orders. There are five Progression Orders which are LRCP, RLCP, RPCL, CPRL and PCRL respectively.

15 Progression Order Packets in a codestream with progression order LRCP:

16 J2K Authentication

17 Third-Party Publication Image Source A single codestream Client1 Client2 Client3 Owner 3 rd Party Publisher (Signing key) + signature Signature + & SIT1 Signature Signature + & SIT3 “Sign Once, Verify Many Ways”

18 The Merkle Tree Root A B h(n1)h(n1) h(n2)h(n2)h(n3)h(n3) h(n4)h(n4) haha hbhb hrhr n 1 n 2 n 3 n 4 Sig(h r )

19 A Codestream Example 4 resolutions: R 0, R 1, R 2, R 3 2 layers: L 0, L 1 2 precincts: P 0, P 1

20 The Merkle Tree For the Example Root R3R3 L0L0 R0R0 P0P0 L1L1 P1P1 P0P0 P1P1 L0L0 P0P0 L1L1 P1P1 P0P0 P1P1 L0L0 R2R2 P0P0 L1L1 P1P1 P0P0 P1P1 L0L0 R1R1 P0P0 L1L1 P1P1 P0P0 P1P1 y 1 y 2 y 3 y 4 y 5 y 6 y 7 y 8 y 9 y 10 y 11 y 12 y 13 y 14 y 15 y 16 1 2 User asks for resolution 1, Publisher sends y1, …, y8, signed root, 1 2 SIT= { }

21 Authentication & Verification Authentication –Owner constructs a Merkle tree of a codestream and signs the root value. Passes data to a publisher –Upon request of a user, publisher sends packets of requested sub-image, signature and SIT. Verification –The user re-computes the root value, and verifies it based on the signature.

22 Resolution and Resolution-Increments 2-level DWT Resolution-increments: R0R0 R1R1 R2R2 Resolution 0 = R 0 Resolution 1 = {R0, R 1 } Resolution 2 = {R0, R 1, R 2 }

23 Layers & Layer-Increments L0L0 {L 0, L 1 } {L 0, L 1, L 2 } All layer- increments

24 The Optimized Merkle Tree R0R0 R1R1 P 0 P 1 L0L0 L1L1 L0L0 L1L1 L0L0 L1L1 L0L0 L1L1 R3R3 R2R2 Root 1 y 1 y 2 y 3 y 4 y 5 y 6 y 7 y 8 y 9 y 10 y 11 y 12 y 13 y 14 y 15 y 16 User asks for resolution 1, Publisher sends y1, …, y8, signed root, SIT={ } 1 In J2K, max resolutions 33, max layers 65535

25 J2K Access Control

26 The Super-Distribution Model Publisher Encrypted Codestream Client1Client2Client3 Key Server Encrypt every packet will a different key? Too many keys are needed. “Encrypt Once, Decrypt Many Ways”

27 A Codestream Example 3 resolutions: R 0, R 1, R 2, 3 layers: L 0, L 1, L 2 2 precincts: P 0, P 1

28 Security Classes in a Codestream Security Classes of Resolution-Increments –R 2 > R 1 > R 0 (total ordering) Security Classes of Layer-Increments –L 2 > L 1 >L 0 (total ordering) Security Classes of Precincts –P 1 and P 0 are incomparable (i.e., isolated classes) Form combined hierarchy, the resulting lattice is a Directed Acyclic Graph, not a rooted tree!

29 Access Control Scheme 1 Master Key K k R2 =h(k|R) k L2 =h(k|L) k P1 =h(k|P|1) k R1 =h(k R2 ) k L1 =h(k L2 ) k R0 =h(k R1 ) k L0 =h(k L1 )k P0 =h(k|P|0) Packet key: k rlp =h(k Rr |k Ll |k Pp ), (1) for r = 0, 1, 2; l =0, 1, 2, p = 0, 1

30 Encryption & Decryption Encryption –Owner generates a master key, and the packet keys for all the packets. Uses packet keys to encryption the corresponding packets. Distributes ciphertext to users. Decryption –To access a sub-image, user requests intermediate keys from a server, derives packet keys to decrypt packets corresponding to the sub-image.

31 User1 asks resolution 2, layer 0, gets k R2, k L0, k P0, k P1 User2 asks resolution 0, layer 2, gets k R0, k L2, k P0, k P1 User1 & User2 collude, k R2, k R0  k R2 k L0, k L2  k L2 k P0 & k P1 Get resolution 2 & layer 2 Collusion Attack

32 Access Control Scheme 2 Assuming the preferred progression order is RLP P 0 (k 220 ) L 2 (k 22 ) R2 (k2)R2 (k2) R1 (k1)R1 (k1) R 0 (k 0 ) Root (master key) P0P0 P 1 (k 221 )P 0 (k 210 ) P 1 (k 211 ) L 1 (k 21 ) L 0 (k 20 ) P 0 (k 200 ) P 1 (k 201 ) P 0 (k 120 ) L 2 (k 12 ) P 1 (k 121 ) P 0 (k 110 ) P 1 (k 111 ) L 1 (k 11 ) L 0 (k 10 ) P 0 (k 100 ) P 1 (k 101 ) P 0 (k 020 ) L 2 (k 02 ) P 1 (k 021 ) P 0 (k 010 ) P 1 (k 011 ) L 1 (k 01 ) L 0 (k 00 ) P 0 (k 000 ) P 1 (k 001 )

33 Conclusions J2K codestream: “compress once, decompress many ways” Authentication scheme: “Sign once, Verify many ways” (has been incorporated in the standard document) Access Control scheme: “Encrypt once, Decrypt many ways” (under evaluation)

34 Thank you!

Download ppt "Securing JPEG2000 (J2K) - The Next Generation Image Compression Standard Robert H. Deng, Yongdong Wu, Di Ma Institute for Infocomm Research Singapore."

Similar presentations

An Introduction to Secure Sockets Layer (SSL). Overview Types of encryption SSL History Design Goals Protocol Problems Competing Technologies.

An Introduction to Secure Sockets Layer (SSL). Overview Types of encryption SSL History Design Goals Protocol Problems Competing Technologies.
Digital Watermarking for Telltale Tamper Proofing and Authentication Deepa Kundur, Dimitrios Hatzinakos Presentation by Kin-chung Wong.

Digital Watermarking for Telltale Tamper Proofing and Authentication Deepa Kundur, Dimitrios Hatzinakos Presentation by Kin-chung Wong.
SECURITY IN E-COMMERCE VARNA FREE UNIVERSITY Prof. Teodora Bakardjieva.

SECURITY IN E-COMMERCE VARNA FREE UNIVERSITY Prof. Teodora Bakardjieva.
Public Key Infrastructure (PKI) Providing secure communications and authentication over an open network.

Public Key Infrastructure (PKI) Providing secure communications and authentication over an open network.
1 Outline  Introduction to JEPG2000  Why another image compression technique  Features  Discrete Wavelet Transform  Wavelet transform  Wavelet implementation.

1 Outline  Introduction to JEPG2000  Why another image compression technique  Features  Discrete Wavelet Transform  Wavelet transform  Wavelet implementation.
Public-key based. Public-key Techniques based Protocols –may use either weak or strong passwords –high computation complexity (Slow) –high deployment.

Public-key based. Public-key Techniques based Protocols –may use either weak or strong passwords –high computation complexity (Slow) –high deployment.
CSCI283 Fall 2005 GWU All slides from Bishop’s slide set Public Key Infrastructure (PKI)

CSCI283 Fall 2005 GWU All slides from Bishop’s slide set Public Key Infrastructure (PKI)
MATCHSLIDE : INT contribution

MATCHSLIDE : INT contribution
Mohamed Hefeeda 1 School of Computing Science Simon Fraser University, Canada End-to-End Secure Delivery of Scalable Video Streams Mohamed Hefeeda (Joint.

Mohamed Hefeeda 1 School of Computing Science Simon Fraser University, Canada End-to-End Secure Delivery of Scalable Video Streams Mohamed Hefeeda (Joint.
JPEG2000 Overview By L A Rønningen, Item, NTNU 2008 Presentation based on: [4] Lecture notes on JPEG2000, by prof. M Fowler, Binghamton University, New.

JPEG2000 Overview By L A Rønningen, Item, NTNU 2008 Presentation based on: [4] Lecture notes on JPEG2000, by prof. M Fowler, Binghamton University, New.
1 Wavelets and compression Dr Mike Spann. 2 Contents Scale and image compression Signal (image) approximation/prediction – simple wavelet construction.

1 Wavelets and compression Dr Mike Spann. 2 Contents Scale and image compression Signal (image) approximation/prediction – simple wavelet construction.
1 Authenticated key agreement without using one-way hash functions Harn, L.; Lin, H.-Y. Electronics Letters, Volume: 37 Issue: 10, 10 May 2001 Presented.

1 Authenticated key agreement without using one-way hash functions Harn, L.; Lin, H.-Y. Electronics Letters, Volume: 37 Issue: 10, 10 May 2001 Presented.
Secure Multicast Xun Kang. Content Why need secure Multicast? Secure Group Communications Using Key Graphs Batch Update of Key Trees Reliable Group Rekeying.

Secure Multicast Xun Kang. Content Why need secure Multicast? Secure Group Communications Using Key Graphs Batch Update of Key Trees Reliable Group Rekeying.
Cryptography Basic (cont)

Cryptography Basic (cont)
1/88 DCT Transform Decoder. 2/88 Image (512x512) Subsample (128x128) Manipulation Reposition : (256,256)-(384,384) Compress (JPEG) 167123 84200 2D array.

1/88 DCT Transform Decoder. 2/88 Image (512x512) Subsample (128x128) Manipulation Reposition : (256,256)-(384,384) Compress (JPEG) D array.
Dept. of Computer Science & Engineering, CUHK1 Trust- and Clustering-Based Authentication Services in Mobile Ad Hoc Networks Edith Ngai and Michael R.

Dept. of Computer Science & Engineering, CUHK1 Trust- and Clustering-Based Authentication Services in Mobile Ad Hoc Networks Edith Ngai and Michael R.
1 Identity-Based Encryption form the Weil Pairing Author : Dan Boneh Matthew Franklin Presentered by Chia Jui Hsu Date : 2008-06-03.

1 Identity-Based Encryption form the Weil Pairing Author : Dan Boneh Matthew Franklin Presentered by Chia Jui Hsu Date :
Practical Techniques for Searches on Encrypted Data Author: Dawn Xiaodong Song, David Wagner, Adrian Perrig Presenter: 紀銘偉.

Practical Techniques for Searches on Encrypted Data Author: Dawn Xiaodong Song, David Wagner, Adrian Perrig Presenter: 紀銘偉.
Privacy-Preserving Cross-Domain Network Reachability Quantification

Privacy-Preserving Cross-Domain Network Reachability Quantification
ITIS 6200/8200. time-stamping services Difficult to verify the creation date and accurate contents of a digital file Required properties of time-stamping.

ITIS 6200/8200. time-stamping services Difficult to verify the creation date and accurate contents of a digital file Required properties of time-stamping.

Similar presentations

Ads by Google