Steganography in audio files – COTS software analysis
Abstract
The paper presents the analysis of the Commercial Off-The-Shelf (COTS) software regarding the ability to be used in audio steganography techniques. Such methods are a relatively new tool for hiding and transmitting crucial information, also being used by hackers. In the following work, the publicly available software dedicated to audio steganography is examined. The aim was to provide the general operating model of the information processing in the steganographic effort. The embedding method was analyzed for each application, providing interesting insights and allowing classifying the methods.The results prove that it is possible to detect the hidden message within the specific audio file and identify the technique that was used to create it. This may be exploited further during the hacking attack detection and prevention.
References
@article{Pilania2021,
title = {{A roadmap of steganography tools: conventional to modern}},
year = {2021},
journal = {Spatial Information Research},
author = {Pilania, Urmila and Tanwar, Rohit and Gupta, Prinima and Choudhury, Tanupriya},
publisher = {Springer Singapore},
url = {https://doi.org/10.1007/s41324-021-00393-7},
doi = {10.1007/s41324-021-00393-7},
issn = {23663294},
keywords = {Carrier files, Performance Analysis, Spatial Domain, Transform Domain, Watermarking Tools}
}
@article{Das2014,
title = {{An Investigation on Information Hiding Tools for Steganography}},
year = {2014},
journal = {International Journal of Information Security Science},
author = {Das, Resul and Karadogan, Ismail},
number = {3},
pages = {200--208},
volume = {3},
issn = {2147-0030},
keywords = {Information security, information hiding, steganography, steganography tools}
}
@misc{REF-Camouflage,
title = {{Camouflage}},
author = {{Twisted Pear Productions}},
url = {http://camouflage.unfiction.com/}
}
@misc{REF-Clotho,
title = {{Clotho}},
author = {Nugraha, Henry},
url = {https://www.softpedia.com/get/Security/Encrypting/Nugraha-Clotho.shtml}
}
@article{Djebbar2012,
title = {{Comparative study of digital audio steganography techniques}},
year = {2012},
journal = {Eurasip Journal on Audio, Speech, and Music Processing},
author = {Djebbar, Fatiha and Ayad, Beghdad and Meraim, Karim Abed and Hamam, Habib},
number = {1},
pages = {1--16},
volume = {2012},
doi = {10.1186/1687-4722-2012-25},
issn = {16874714}
}
@misc{REF-DeEggerEmbedder,
title = {{DeEgger Embedder}},
author = {{Z.A.Software}},
url = {https://www.softpedia.com/get/Security/Encrypting/DeEgger-Embedder.shtml}
}
@misc{REF-DeepSound,
title = {{DeepSound}},
author = {B{'{a}}tor, Jozef},
url = {http://jpinsoft.net/deepsound}
}
@article{Gong2020,
title = {{Detecting fingerprints of audio steganography software}},
year = {2020},
journal = {Forensic Science International: Reports},
author = {Gong, Chen and Zhang, Jinghong and Yang, Yunzhao and Yi, Xiaowei and Zhao, Xianfeng and Ma, Yi},
number = {December 2019},
pages = {100075},
volume = {2},
doi = {10.1016/j.fsir.2020.100075},
issn = {26659107}
}
@misc{Alsabhany2020,
title = {{Digital audio steganography: Systematic review, classification, and analysis of the current state of the art}},
year = {2020},
booktitle = {Computer Science Review},
author = {Alsabhany, Ahmed A. and Ali, Ahmed Hussain and Ridzuan, Farida and Azni, A. H. and Mokhtar, Mohd Rosmadi},
month = {11},
volume = {38},
publisher = {Elsevier Ireland Ltd},
doi = {10.1016/j.cosrev.2020.100316},
issn = {15740137},
keywords = {Audio steganography, Classification, Data hiding, Embedding, LSB substitution}
}
@article{Pope2012,
title = {{Digital Steganography—An Introduction to Techniques and Tools}},
year = {2012},
journal = {Communications of the Association for Information Systems},
author = {Pope, Michael Brian and Warkentin, Merrill and Bekkering, Ernst and Schmidt, Mark B.},
volume = {30},
doi = {10.17705/1cais.03022},
issn = {1529-3181}
}
@book{Ingemar2008,
title = {{Digital Watermarking and Steganography}},
year = {2008},
booktitle = {Digital Watermarking and Steganography},
author = {Ingemar, J. Cox and Miller, Matthew L. and Jeffrey, A. Bloom and Fridrich, Jessica and Kalker, Ton},
publisher = {Elsevier Inc.},
isbn = {9780123725851},
doi = {10.1016/B978-0-12-372585-1.X5001-3}
}
@misc{REF-Hide4PGP,
title = {{Hide4PGP}},
author = {Repp, Heinz},
url = {http://www.heinz-repp.onlinehome.de/Hide4PGP.htm}
}
@misc{REF-InvisibleSecrets,
title = {{InvisibleSecrets}},
author = {{East-Tec SRL}},
url = {https://www.east-tec.com/invisiblesecrets/}
}
@techreport{McAfeeLabs2017,
title = {{McAfee Labs Threats Report: June 2017}},
year = {2017},
author = {{McAfee Labs}},
number = {June},
pages = {1--83},
url = {https://www.mcafee.com/enterprise/en-us/assets/reports/rp-quarterly-threats-jun-2017.pdf},
institution = {McAfee Labs},
issn = {0884-0431}
}
@article{Zaturenskiy2013,
title = {{MP3 files as a steganography medium}},
year = {2013},
journal = {RIIT 2013 - Proceedings of the 2nd Annual Conference on Research in Information Technology},
author = {Zaturenskiy, Mikhail},
number = {630},
pages = {23--28},
volume = {1},
isbn = {9781450324946},
doi = {10.1145/2512209.2512215},
keywords = {steganography}
}
@misc{REF-MP3Stego,
title = {{MP3Stego}},
author = {Petitcolas, Fabien A.P.},
url = {https://www.petitcolas.net/steganography/mp3stego/}
}
@misc{REF-mp3stegz,
title = {{mp3stegz}},
author = {Achmad, Zaenuri},
url = {https://sourceforge.net/projects/mp3stegz/}
}
@article{JointTaskForce2020,
title = {{National Institute of Standards and Technology Special Publication 800-53, Revision 5 : Security and Privacy Controls for Information Systems and Organizations}},
year = {2020},
journal = {NIST Special Publication},
author = {{Joint Task Force}},
pages = {465},
url = {https://doi.org/10.6028/NIST.SP.800-53r5},
keywords = {"Assurance, FISMA, Privacy Act, availability, computer security, confidentiality, control, cybersecurity, information security, information system, integrity, personally identifiable information, privacy controls, privacy functions, privacy requirements"}
}
@misc{REF-OpenPuff,
title = {{OpenPuff}},
author = {{EmbeddedSW}},
url = {https://www.embeddedsw.net/OpenPuff_Steganography_Home.html}
}
@misc{REF-Steganos22,
title = {{Press Release Generation 22}},
year = {2020},
author = {{Steganos Software GmbH}},
url = {https://www.steganos.com/images/presse/pdfs/2020-09-10_Press_Release_Generation_22_EN.pdf}
}
@misc{REF-QuickCrypto,
title = {{QuickCrypto}},
author = {{Cybernescence Limited}},
url = {http://quickcrypto.com/}
}
@misc{REF-S-Tools,
title = {{S-Tools}},
author = {Brown, Andy},
url = {http://www.modemac.com/s-tools.html}
}
@misc{REF-S-Tools-2,
title = {{S-Tools Version 4.0}},
url = {https://www.cs.vu.nl/~ast/books/mos2/steg.zip}
}
@misc{REF-SilentEye,
title = {{SilentEye}},
author = {Chorein, Anselme},
url = {https://achorein.github.io/silenteye/}
}
@misc{REF-Steganos,
title = {{Steganos Privacy Suite}},
author = {{Steganos Software GmbH}},
url = {https://www.steganos.com/en/products/steganos-privacy-suite}
}
@misc{REF-StegoStick,
title = {{StegoStick}},
author = {Uma Mahesh, P.V. and Santhosh Kumar, V.},
url = {https://sourceforge.net/projects/stegostick/}
}
@inproceedings{Konakhovich2019,
title = {{The Research of Realization of Hidden Channel for Information Transmission with the Use of Steganographic Tools}},
year = {2019},
booktitle = {Proceedings of the International Workshop on Cyber Hygiene (CybHyg-2019)},
author = {Konakhovich, Georgiy and Symonychenko, Yaroslav and Symonychenko, Anna and Daradkeh, Yousef Ibrahim},
pages = {504--514},
keywords = {hidden channel of data transmission, information, protection, software steganographic tools, steganographic analysis, steganographic system}
}
@misc{REF-Xiao,
title = {{Xiao Steganography}},
author = {{Int21} and {nakasoft.net}},
url = {https://xiao-steganography.en.softonic.com/}
}
Downloads
Published
Issue
Section
License
Copyright (c) 2023 International Journal of Electronics and Telecommunications
This work is licensed under a Creative Commons Attribution-NonCommercial 4.0 International License.
1. License
The non-commercial use of the article will be governed by the Creative Commons Attribution license as currently displayed on https://creativecommons.org/licenses/by/4.0/.
2. Author’s Warranties
The author warrants that the article is original, written by stated author/s, has not been published before, contains no unlawful statements, does not infringe the rights of others, is subject to copyright that is vested exclusively in the author and free of any third party rights, and that any necessary written permissions to quote from other sources have been obtained by the author/s. The undersigned also warrants that the manuscript (or its essential substance) has not been published other than as an abstract or doctorate thesis and has not been submitted for consideration elsewhere, for print, electronic or digital publication.
3. User Rights
Under the Creative Commons Attribution license, the author(s) and users are free to share (copy, distribute and transmit the contribution) under the following conditions: 1. they must attribute the contribution in the manner specified by the author or licensor, 2. they may alter, transform, or build upon this work, 3. they may use this contribution for commercial purposes.
4. Rights of Authors
Authors retain the following rights:
- copyright, and other proprietary rights relating to the article, such as patent rights,
- the right to use the substance of the article in own future works, including lectures and books,
- the right to reproduce the article for own purposes, provided the copies are not offered for sale,
- the right to self-archive the article
- the right to supervision over the integrity of the content of the work and its fair use.
5. Co-Authorship
If the article was prepared jointly with other authors, the signatory of this form warrants that he/she has been authorized by all co-authors to sign this agreement on their behalf, and agrees to inform his/her co-authors of the terms of this agreement.
6. Termination
This agreement can be terminated by the author or the Journal Owner upon two months’ notice where the other party has materially breached this agreement and failed to remedy such breach within a month of being given the terminating party’s notice requesting such breach to be remedied. No breach or violation of this agreement will cause this agreement or any license granted in it to terminate automatically or affect the definition of the Journal Owner. The author and the Journal Owner may agree to terminate this agreement at any time. This agreement or any license granted in it cannot be terminated otherwise than in accordance with this section 6. This License shall remain in effect throughout the term of copyright in the Work and may not be revoked without the express written consent of both parties.
7. Royalties
This agreement entitles the author to no royalties or other fees. To such extent as legally permissible, the author waives his or her right to collect royalties relative to the article in respect of any use of the article by the Journal Owner or its sublicensee.
8. Miscellaneous
The Journal Owner will publish the article (or have it published) in the Journal if the article’s editorial process is successfully completed and the Journal Owner or its sublicensee has become obligated to have the article published. Where such obligation depends on the payment of a fee, it shall not be deemed to exist until such time as that fee is paid. The Journal Owner may conform the article to a style of punctuation, spelling, capitalization and usage that it deems appropriate. The Journal Owner will be allowed to sublicense the rights that are licensed to it under this agreement. This agreement will be governed by the laws of Poland.
By signing this License, Author(s) warrant(s) that they have the full power to enter into this agreement. This License shall remain in effect throughout the term of copyright in the Work and may not be revoked without the express written consent of both parties.