this post was submitted on 17 Jul 2023
163 points (98.8% liked)

Technology

59135 readers
6622 users here now

This is a most excellent place for technology news and articles.

Our Rules

  1. Follow the lemmy.world rules.
  2. Only tech related content.
  3. Be excellent to each another!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, to ask if your bot can be added please contact us.
  9. Check for duplicates before posting, duplicates may be removed

Approved Bots

founded 1 year ago
MODERATORS
L3s@lemmy.world
L4s@lemmy.world
L3s@fry.gs
L4s@fry.gs
enu@lemmy.world
163
TIL that Adobe, Intel and Microsoft want to attach an audit trail to pictures to curb disinformation (c2pa.org)
submitted 1 year ago by AccidentalLemming@lemmy.world to c/technology@lemmy.world
37 comments fedilink hide all child comments
 

According to Wikipedia:

The goal of the C2PA is to define and establish an open, royalty-free industry standard that allows reliable statements about the provenance of digital content, such as its technical origin, its editing history or the identity of the publisher.

Has anyone explored this standard before? I'm curious about privacy implications, whether it's a truly open standard, whether this will become mandatory (by law or because browsers refuse to display untagged images), and if they plan on preventing people from reverse engineering their camera to learn how to tag AI-generated photos as if they were real.

you are viewing a single comment's thread
view the rest of the comments
[โ€“] Osa-Eris-Xero512@kbin.social 1 points 1 year ago (1 children)

What I don't understand is why having every smartphone or DSLR sign every image captured couldn't solve this problem better and faster than something like this.

[โ€“] eth0p@iusearchlinux.fyi 5 points 1 year ago

From what I can tell, that's basically what this is trying to do. Some company can sign a source image, then other companies can sign the changes made to the image. You can see that the image was created by so-and-so and then manipulated by so-and-other-so, and if you trust them both, you can trust the authenticity of the image.

It's basically git commit signing for images, but with the exclusionary characteristics of certificate signing (for their proposed trust model, at least. It could be used more like PGP, too).