Utilizza questo identificativo per citare o creare un link a questo documento: http://elea.unisa.it:8080/xmlui/handle/10556/903
Titolo: Steganographic methods for information hiding in MS-Office files
Autore: Bonaventura, D'Alessio
Persiano, Giuseppe
De Santis, Alfredo
Parole chiave: Steganography
Information hiding
Data: 20-apr-2013
Editore: Universita degli studi di Salerno
Abstract: The simplest container of digital information is “the file" and among the vast array of files currently available, MS-Office files are probably the most widely used. These files, starting from MS-Office 2007, respect the standards “Office Open XML" (OOXML). One of the benefits of the new format is that it lowers the risk of information leakage. Infact, before MS-Office 2007 was used binary files, called “Microsoft Document File Format" (MCDFF), were often used to host secret information. In this work, starting from the classification of information hiding adapted from Bauer, methods for embedding data into the OOXML file format are analyzed. It also includes four novel methods. The first one, “Data Hiding by Different Compression Algorithm in ZIP", is based on the characteristic that the new MS-Office documents are container of compressed files. The second one, “Data Hiding by Office Macro", uses modified macro to store secret messages. The third one, “Data Hiding by Zero Dimension Image", is based on the characteristic that it is possible to create invisible images, setting the width and height both equal to zero. The last one, “Data Hiding by Revision Identifier Value" hides data by storing it in some attributes of XML elements (rsid). The methods presented can be combined in order to extend the amount of data to be hidden in a single cover file. Analyzing a scenario composed of about 50; 000 MS-Office files, we show how the proposed methods can be helpful in real applications. We have calculated the capacity of all stegosystem described, verifying the amount of information that can be hidden. After that, an evaluation of the limits of the proposed methods is carried out by comparing them with the tool introduced by Microsoft to sanitize MS-Office files. This tool, called Document Inspector, was projected to help the users to find and remove hidden data and personal information in MS-Office documents. [edited by author]
Descrizione: 2011 - 2012
URI: http://hdl.handle.net/10556/903
È visualizzato nelle collezioni:Teorie, metodologie e applicazioni avanzate per la comunicazione, l'informatica e la fisica

File in questo documento:
File Descrizione DimensioniFormato 
tesi B. D'Alessio.pdftesi di dottorato24.93 MBAdobe PDFVisualizza/apri
abstract in inglese B. D'Alesssio.pdfabstract in inglese a cura dell’autore70.5 kBAdobe PDFVisualizza/apri
abstract in italiano B. D'Alesssio.pdfabstract in italiano a cura dell’autore70.76 kBAdobe PDFVisualizza/apri

Tutti i documenti archiviati in DSpace sono protetti da copyright. Tutti i diritti riservati.