John Navitsky
Well-known member
i think that it's going to be pretty transparent, but with hardware limitations. from a practical perspective, your camera is going to have a cert and it's going to mix it with the image and image metadata to provide the needed authentication signature. this should be transparent, but it will require hardware capable of doing this fingerprint fast enough to not interfere with the performance. this means that it's probably only going to be available on high end cameras that have the horsepower needed to do this until the technology can trickle down.I think what it will come down to is that there is probably going to be a need for some kind of compromise between a truly difficult to spoof or crack system and one that can function with the sort of agility across multiple platforms and a lot of different sorts of standalone devices. You could make an extremely difficult to beat system, but I'm not so sure you can do so in a way that works within the sorts of practical realities necessary for working photographers.
yes, it's going to be a standard. this is where the CAI comes in. and in general transparency only helps cryptographic integrity. most strong encryption technologies are open standards based.The other issue is this: if this is going to work, it's going to mean there will have to be a standard for how these authentication keys or whatever work - but if there's a standard then that means that anyone with the sufficient coding skills could just create software to create keys that follow that standard.
if you look at how Adobe has talked about CAI, the process should apply to sites like social media companies. my understanding (and admittedly, i only glanced at new releases is the way it work) is there's basically a chain of custody, sort like:Another issue here is with social media sites and the way they handle images. Facebook, Instagram, presumably Twitter (or X, or whatever it is), etc. don't just post the original files people upload, but take them and process them into altogether different photos, stripping the metadata in the process. This is probably true of most media sites as well. They could in theory change the way things work so that metadata is preserved, but this then gets into all sorts of questions about whether any functional authentication system would be able to allow "transfers" or the authentication.
original photo (fingerprint1) ----> lightroom made this change (fingerprint2) ----> photoshop made this change (fingerprint3)
and thus, when you look at fingerprint3, you can trace it back to photoshop modifying fingerprint2
so there is no reason it can't be:
original photo (fingerprint1) ----> lightroom made this change (fingerprint2) ----> photoshop made this change (fingerprint3) ---> fb resized (fingerprint4)
of course, this would require them to do it, but i do think it can happen. i don't know if folks remember, but fb used to strip the copyright, and they caught a lot of flack for that and now they no longer do that.
ymmv.