Search

CN-122029528-A - Provenance data integrity protection

CN122029528ACN 122029528 ACN122029528 ACN 122029528ACN-122029528-A

Abstract

Storing the original metadata of the digital media file in a provenance storage area, such as in a JPEG application marker, allows for a greater or quantitatively appropriate editing of metadata while tracking the extent of the original metadata or metadata modification. Once a user, program, process, etc. is ready to submit a revised version of an original digital media file, a record of the changes made to the editable metadata may be deduced by comparing the current editable metadata with the original editable metadata stored in the provenance store. Thus, the editable metadata changes may be combined into a metadata changed provenance record and signed, and/or a new digital media file written and signed such that the provenance of the digital media file may be traced back to the original digital media file.

Inventors

  • Dennis James. Walker

Assignees

  • 卡梅拉比特公司

Dates

Publication Date
20260512
Application Date
20240906
Priority Date
20240905

Claims (20)

  1. 1. A method of managing metadata in signed or unsigned digital media, the method comprising: Receiving a digital media file comprising one or more metadata elements; Determining whether a digital signature associated with the digital media file exists, and if so, verifying the digital signature; storing the one or more metadata elements in a provenance store, the provenance store comprising a portion of the received digital media file; receiving at least one new or modified metadata element and storing said at least one new or modified metadata element to said digital media file, and Generating a new signed digital media file comprising said at least one new or modified metadata element and at least one digitally signed provenance record, said at least one digitally signed provenance record being a provenance record of one or more differences between said at least one new or modified metadata element and said one or more metadata elements received with said digital media file.
  2. 2. A method of managing metadata in signed or unsigned digital media according to claim 1 wherein said at least one digitally signed provenance record is derived from differences between metadata records in said provenance storage area and stored metadata of a current digital media file.
  3. 3. The method of managing metadata in signed or unsigned digital media of claim 1 wherein said one or more metadata elements comprises at least one of an author, a copyright, a description, a keyword, a time, a date, a location, a title, a topic, a rating, one or more other such metadata fields, or any combination thereof.
  4. 4. The method of managing metadata in signed or unsigned digital media according to claim 1, further comprising signing said new signed digital media file using public key cryptographic signature.
  5. 5. A method of managing metadata in signed or unsigned digital media according to claim 1 wherein said at least one digitally signed provenance record is signed using public key encryption signing.
  6. 6. A method of managing metadata in signed or unsigned digital media according to claim 1 wherein said signed or unsigned digital media comprises a JPEG image file.
  7. 7. The method of managing metadata in signed or unsigned digital media of claim 1 wherein said provenance store comprises a metadata record.
  8. 8. The method of managing metadata in signed or unsigned digital media of claim 7 wherein said metadata record comprises an editable metadata record of an exchangeable image file format (Exif) and/or extensible metadata platform (XMP).
  9. 9. A method of managing metadata in signed or unsigned digital media according to claim 6 wherein images encoded in said JPEG image file remain unchanged between a received digital media file and a new signed digital media file.
  10. 10. A method of managing metadata in signed or unsigned digital media according to claim 1 wherein generating a new signed digital media file comprises submitting said at least one modified metadata element stored in said digital media file.
  11. 11. A method of managing metadata in signed or unsigned digital media according to claim 1 wherein generating a new signed digital media file comprises saving the new signed digital media file using a save as operation.
  12. 12. A method of managing metadata in signed or unsigned digital media as described in claim 11 wherein said signed digital media comprises a resized, compressed, and/or cropped version of a digital image that is a received digital media file.
  13. 13. An apparatus, the apparatus comprising a computing device, the apparatus comprising: a memory comprising one or more storage devices, and One or more processors coupled to the memory, the one or more processors operable to execute instructions stored in the memory to, for at least one signed or unsigned digital media file: Receiving a digital media file comprising one or more metadata elements, and optionally verifying a digital signature associated with the digital signed media file; storing the one or more metadata elements in a provenance store, the provenance store comprising a portion of the received digital media file; Receiving at least one modified metadata element and storing the at least one modified metadata element to the digital media file, and Generating a new signed digital media file comprising said at least one altered metadata element and at least one digitally signed provenance record, said at least one digitally signed provenance record being a provenance record of said at least one digital signature of one or more differences between said at least one altered metadata element and said one or more metadata elements received with said digital media file.
  14. 14. The apparatus of claim 13, wherein the provenance record of the at least one digital signature is to be derived from differences between metadata records in the provenance storage area and stored metadata of a current digital media file.
  15. 15. The apparatus of claim 13, wherein the provenance store comprises a metadata record.
  16. 16. The device of claim 13, wherein generating a new signed digital media file includes submitting the at least one altered metadata element stored in the digital media file.
  17. 17. A method of recovering an original signed or unsigned digital media file, the method comprising: Receiving an inoculated digital media file, the inoculated digital media file comprising a provenance store comprising one or more writable metadata elements of the original signed or unsigned digital media file; generating the original signed or unsigned digital media file by writing the one or more writable metadata elements of the original signed or unsigned digital media file to the inoculated digital file, and The generated original signed or unsigned media file is stored.
  18. 18. A method of recovering an original signed or unsigned digital media file as recited in claim 17, further comprising verifying a digital signature of the original signed or unsigned media file.
  19. 19. The method of recovering an original signed or unsigned digital media file as recited in claim 17, further comprising removing said provenance storage area from said inoculated digital media file to generate said original signed or unsigned media file.
  20. 20. The method of recovering an original signed or unsigned digital media file according to claim 17, wherein said provenance store comprises one or more metadata records for said inoculated digital media file.

Description

Provenance data integrity protection Cross Reference to Related Applications The present application claims priority and benefit from U.S. patent application Ser. No. 18/825,951, entitled "Producer data integrity PROTECTION (PROVENANCE DATA INTEGRITY PROTECTION)" filed on month 9 of 2024, and U.S. provisional application Ser. No. 63/581,498, entitled "digital media asset authentication (DIGITAL MEDIA ASSET AUTHENTICATION), filed on month 9 of 2023, the disclosures of which are incorporated herein by reference in their entireties. Technical Field The art relates generally to electronic content or data protection, which may include digital media or similar assets, and more particularly to provenance data (provenance data) integrity protection, which may include authentication of digital media or similar assets, such as metadata and the like. Background Digital media or similar assets, such as photographs, voice recordings, video, etc., are evolving and may be expected to surpass or replace their historically analog counterparts. The rapid popularity of camera devices on smartphones and other such technological advances have prompted an exponential increase in the amount of such digital media or similar assets created. For example, media sharing websites such as TikTok, youTube, instagram allow anyone to set up an account and become a media creator, producing content with a technical quality that only professionals have reached just a couple of decades ago. From news institutions and professional broadcasting teams, to bloggers, instragram models, and video channel creators or netbooks, everyone can see the popularity of their digital media content to grow explosively if it is attractive enough to encourage millions of people to compose such content each year. This or similar ability to create, modify, or forge this or similar electronic content using commonly available tools, such as ChatGPT for creating generated text, the generated stuffing of Adobe FIREFLY AI engine in Adobe Photoshop for creating or modifying photo content, and DALL-E for creating artificial realistic images with simple text cues, etc., is also synchronized to the explosive growth. As the capabilities of such tools continue to evolve at a rapid pace, it has become increasingly difficult to determine whether an image that appears to be a digital photograph is an actual photograph or has been modified greatly to change its appearance or content. Some tools use digital signatures so that a content creator (such as a digital video device) can sign a photo, allowing a subsequent user of the photo to verify its authenticity. Tracking changes to signed or authenticated photos can be a more complex task, often requiring the storage of several versions of the same image, or the creation of an "attached (sidecar)" file, such as an XMP file of Adobe Photoshop, that stores detailed information of image edits and metadata changes made to the original real photo. Such accompanying files may become very large and these changes may be lost if the accompanying files are separated from the original image file. Furthermore, the process of cryptographically signing an image file after image editing and metadata modification is a computationally expensive operation and can increase the size of the asset. Thus, there is a need for more efficient and/or effective management of changes to digital signatures or authenticated media assets. Drawings FIGS. 1A and 1B are flowcharts of a process for repeatedly editing metadata in a digital media file prior to submitting or saving a change file with a new digital signature, according to example embodiments. Fig. 2A and 2B are block diagrams of a process for managing metadata provenance in a signed JPEG file, according to example embodiments. Fig. 3 is a block diagram of a process of managing metadata information in a vaccinated JPEG according to an example embodiment. Fig. 4 is a block diagram of a process of managing metadata information when recovering original JPEG from vaccinated JPEG according to an example embodiment. Fig. 5 is a flowchart of a process for storing metadata of a digitally signed digital media file in a provenance store (store) according to an example embodiment. FIG. 6 is a flowchart of a process for extracting an original digitally signed digital media file from an inoculated digital media file, according to an example embodiment. FIG. 7 is an implementation of an example operating or computing environment. The figures are provided to assist in understanding the various examples provided in the specification and do not limit the scope of the claims or their equivalents. Not all figures are drawn to scale and portions or features may be omitted or enlarged to better illustrate some features of the illustrated examples. Detailed Description In the following detailed description of example embodiments, reference is made to specific example embodiments by way of the accompanying drawings and figures.