Hao Pan,Yi‐Chao Chen,Lanqing Yang,Guangtao Xue,Chuang-Wen You,Xiaoyu Ji

DOI: https://doi.org/10.1145/3300061.3345428

2019-01-01

Abstract:Quick response (QR) codes are becoming pervasive due to their rapid readability and the popularity of smartphones with built-in cameras. QR codes are also gaining importance in the retail sector as a convenient mobile payment method. However, researchers have concerns regarding the security of QR codes, which leave users susceptible to financial loss or private information leakage. In this study, we addressed this issue by developing a novel QR code (called mQRCode), which exploits patterns presenting a specific spatial frequency as a form of camouflage. When the targeted receiver holds a camera in a designated position (e.g., directly in front at a distance of 30 cm from the camouflaged QR code), the original QR code is revealed in form of a Moire pattern. From any other position, only the camouflaged QR code can be seen. In experiments, the decryption rate of mQRCode was > 98.6% within 10.2 frames via a multi-frame decryption method. The decryption rate for cameras positioned 20° off axis or > 10cm away from the designated location dropped to 0%, indicating that mQRCode is robust against attacks.

Hao Pan,Yi-Chao Chen,Guangtao Xue,Chuang-Wen You,Xiaoyu Ji

DOI: https://doi.org/10.1145/3267305.3267626

2018-01-01

Abstract:Quick Response (QR) codes are rapidly becoming pervasive in our daily life because of its fast readability and the popularity of smartphones with a built-in camera. However, recent researches raise security concerns because QR codes can be easily sniffed and decoded which can lead to private information leakage or financial loss. To address the issue, we present mQRCode which exploit patterns with specific spatial frequency to camouflage QR codes. When the targeted receiver put a camera at the designated position (e.g., 30cm and 0° above the camouflaged QR code), the original QR code is revealed due to the Moiré phenomenon. Malicious adversaries will only see camouflaged QR code at any other position. Our experiments show that the decoding rate of mQR codes is 95% or above within 0.83 seconds. When the camera is 10cm or 15° away from the designated location, the decoding rate drops to 0 so it's secure from attackers.

Yijie Li,Yi-Chao Chen,Xiaoyu Ji,Hao Pan,Lanqing Yang,Guangtao Xue,Jiadi Yu

DOI: https://doi.org/10.1145/3372224.3418165

2020-01-01

Abstract:Quick response (QR) codes have been widely used in mobile applications, due to its convenience and the pervasive built-in cameras on smartphones. Recently, however, QR codes have been reported suffering attacks for being sniffed just before the QR code is scanned, which lead to financial loss. In this study, we propose ScreenID, for enhancing the QR code security by identifying its authenticity, which embeds a QR code with information of unique screen fingerprint - PWM frequency. PWM frequencies are adjusted to different values by screen manufacturers, therefore can successfully differentiate screens. To improve the estimation accuracy of PWM frequency, ScreenID incorporates a model for the interaction between the camera and screen in the temporal and spatial domains. Extensive experiments demonstrate that ScreenID can differentiate screens of different models, types and manufacturers and thus improve the security of QR codes.

Hao Pan,Lanqing Yang,Yi-Chao Chen,Guangtao Xue,Chuang-Wen You,Xiaoyu Ji,Pai-Yen Chen

DOI: https://doi.org/10.1145/3300061.3343391

2019-01-01

Abstract:Quick response (QR) codes are becoming pervasive due to their rapid readability and the popularity of smartphones with built-in cameras. QR codes are also gaining importance in the retail sector as a convenient mobile payment method. However, researchers have concerns regarding the security of QR codes, which leave users susceptible to financial loss or private information leakage. In this study, we address this issue by developing a novel QR code (called mQR code), which exploits patterns presenting a specific spatial frequency as a form of camouflage. When the targeted receiver holds a camera in a designated position (e.g., directly in front at a distance of 30 cm from the camouflaged QR code), the original QR code is revealed in form of a Moiré pattern. From any other position, only the camouflaged QR code can be seen. In experiments, the decryption rate of mQR codes is $> 98%$. The decryption rate for cameras positioned $20\degree$ off axis or $> 10cm$ from the designated location drops to $0%$, indicating that any attackers will be unable to steal a usable image.

Yijie Li,Yi-Chao Chen,Xiaoyu Ji,Hao Pan,Lanqing Yang,Guangtao Xue,Jiadi Yu

DOI: https://doi.org/10.1109/infocom42981.2021.9488859

2021-01-01

Abstract:Quick response (QR) codes have been widely used in mobile applications due to its convenience and the pervasive built-in cameras on smartphones. Recently, however, attacks against QR codes have been reported that attackers can capture a QR code of the victim and replay it to achieve a fraudulent transaction or intercept private information, just before the original QR code is scanned. In this study, we enhance the security of a QR code by identifying its authenticity. We propose SCREENID, which embeds a QR code with information of the screen which displays it, thereby the QR code can reveal whether it is reproduced by an adversary or not. In SCREENID, PWM frequency of screens is exploited as the unique screen fingerprint. To improve the estimation accuracy of PWM frequency, SCREENID incorporates a model for the interaction between the camera and screen in the temporal and spatial domains. Extensive experiments demonstrate that SCREENID can differentiate screens of different models, types, and manufacturers, thus improve the security of QR codes.

Guangtao Xue,Yijie Li,Hao Pan,Lanqing Yang,Yi-Chao Chen,Xiaoyu Ji,Jiadi Yu

DOI: https://doi.org/10.1109/tnet.2022.3203044

2022-01-01

IEEE/ACM Transactions on Networking

Abstract:Quick response (QR) codes have been widely used in mobile applications, especially mobile payments, such as Alipay, WeChat, PayPal, etc due to their convenience and the pervasive built-in cameras on smartphones. Recently, however, attacks against QR codes have been reported and attackers can capture a QR code of the victim and replay it to achieve a fraudulent transaction or intercept private information, just before the original QR code is scanned. In this study, we enhance the security of a QR code by identifying its authenticity. We propose ScreenID, which embeds a QR code with information of the screen which displays it, thereby the QR code can reveal whether it is reproduced by an adversary or not. In ScreenID, PWM frequency of screens is exploited as the unique screen fingerprint. To improve the estimation accuracy of PWM frequency, ScreenID incorporates a model for the interaction between the camera and screen in the temporal and spatial domains. Extensive experiments demonstrate that ScreenID can differentiate screens of different models, types, and manufacturers and thus improve the security of QR codes.

Peng-Cheng Huang,Yung-Hui Li,Chin-Chen Chang,Yanjun Liu

DOI: https://doi.org/10.1007/s11042-019-07795-8

IF: 2.577

2019-06-04

Multimedia Tools and Applications

Abstract:QR code is an important means for delivering information which has been widely used in our daily life. As an ISO international standard, the QR code encoding and decoding process are disclosed publicly, thus it is easy to decode a QR code then forge a new QR code with the same QR code public message. It can lead to the problems of information forgery and ease the spreading of fake news. To overcome this weakness, we propose a simple and efficient QR code authentication mechanism to embed the authentication information in the padding region of QR code based on the characteristics of Sudoku and Reed-Solomon code. Different from the previous scheme, the proposed scheme embeds the authentication information without consuming the QR code error correction capacity and is able to achieve a higher embedding capacity. Experimental results show that the proposed scheme has high security, low power consumption and is robust to common QR code attacks.

computer science, information systems, theory & methods,engineering, electrical & electronic, software engineering

Kang Fu,Jun Jia,Guangtao Zhai

DOI: https://doi.org/10.1007/978-3-030-88007-1_18

2021-01-01

Abstract:With the emergence of mobile networks and smartphones, Quick Response Code (QR Code) has been widely used in many scenes in life, e.g. mobile payments, advertisement, and product traceability. However, when the encoded information of QR Codes is leaked, the QR Codes can be easily copied, which increases the risk of mobile payment and the difficulty of product traceability. To solve these problems, this paper proposes a novel approach to expand the information channels of QR Code based on invisible data hiding. The proposed architecture consists of an information encoder to hide messages into QR Codes while maintaining the original appearances of the QR codes and an information decoder to extract the hidden messages. To make the hidden messages detectable by smartphones, we use a series of noise layers to process the encoder output between the end-to-end training of the encoder and the decoder. The noise layers simulate the general distortions caused by camera imaging, e.g. noise, blur, JPEG compression, and light reflection. Experimental results show that the proposed method can achieve a high decoding accuracy of the hidden messages without affecting the decoding rate of the QR Codes used as the containers.

Jonathan Weir,WeiQi Yan

DOI: https://doi.org/10.1007/978-3-642-32205-1_17

2011-01-01

Abstract:One of the problems pertinent with many visual cryptography (VC) schemes is that of authentication. VC provides a way of sharing secrets between a number of participants. The secrets are in the form of an image that is encoded into multiple pieces known as shares. When these shares are physically superimposed, the secret can be instantly observed. A known problem is that of authentication. How is it possible to know that the secret being recovered is genuine? There has been some work devoted to this using so called cheating prevention schemes which attempt to provide a means of traceability or authentication via a set of additional shares that are used to check authenticity. This paper proposes a scheme that attempts to alleviate this suspicion by using 2D barcodes as a means of authentication which may have more practicality in terms of real world usage. Results are provided using an application that is available on mobile devices for portable barcode reading.

Xiaomei Liu,Xin Tang

DOI: https://doi.org/10.1109/trustcom50675.2020.00217

2020-12-01

Abstract:The rapid development of multimedia technology has brought huge challenges regarding the security of multimedia content. Digital watermarking is a widely-used form of protection, but it has proved hard to improve the robustness of digital watermarks and to find ways of preventing copy-based attacks. This paper proposes a new image authentication method that combines digital signatures and digital watermarking in the form of QR codes. Moving away from existing techniques, the proposed method uses image segmentation to exploit the error-correction capability of QR codes by converting the digital signature of each sub-block into a QR code before embedding it into the image. The digital signature is then saved as a watermark, which offsets the disadvantages of signature storage and is difficult to copy. Experiments show that the method is effective in terms of image noise and that the watermarks are robust and secure against copy-based attacks.

Bo Jiang,Xinguo Liu

DOI: https://doi.org/10.1145/2668975.2668993

2014-01-01

Abstract:QR code is a kind of two-dimensional barcode which has been widely used in many fields. Traditional QR code that strictly complies with the international standard contains only regular black/white modules. These QR codes could be recognized solely by machine reader and contain no human readable information. In recent years, both commercial companies and research community try to beauty and enrich the expression capability of QR code under the framework of the standard. There are mainly three ways for QR code decoration, i.e. module colorization, module/QR code shape variation and image embedding. Most of these work utilize the Error Correction mechanism of QR code, modify moderate amount of modules and achieve target embellishment design. In order to convey more information as well as beautification, image embedding is the best choice. Existing methods either embed small image into the center of QR codes or use half-tone technique to handle input images. However, both methods heavily rely on the Error Correction mechanism, thus will reduce the readability. Moreover, small color image is not clear enough for zooming out/distance view and half-tone image has limited visual effects. Inspired by the work of Wakahara and Yamamoto [Wakahara and Yamamoto 2011], we propose a novel method that utilizes the redundancy of encoding for facial image embedding into the QR code. The Error Correction ability will not be sacrificed.

Somdip Dey

DOI: https://doi.org/10.48550/arXiv.1205.4829

2012-05-22

Abstract:In this paper the author present a new technique of using QR Codes (commonly known as 'Quick Respond Codes') in the field of Cryptography. QR Codes are mainly used to convey or store messages because they have higher or large storage capacity than any other normal conventional 'barcodes'. In this paper the primary focus will be on storing messages in encrypted format with a password and send it to the required destination hiding in a QR Code, without being tracked or decrypted properly by any hacker or spyware. Since QR Codes have fast response time and have large storage capacity, QR Codes can be used perfectly to send encrypted data (messages) to the receiver. This method will be suitable in any business house, government sectors, communication network to send their encrypted messages faster to the destination. Or a person can even use this method to keep his important documents, like passport number, pan-card id, social security number, perfectly secured with him all the time, without the information getting leaked to outside world. The new method is achieved by entering the message along with a password. This password will generate a secret code, which will be added to each digit or alphabet in the numbers or text entered in the message (which is needed to be encrypted) and generate the first phase of encryption. That newly generated encrypted message will again be encrypted using various other methods to generate the final encrypted message.

Cryptography and Security

Guangyu Wang,Feng Liu,Wei Qi Yan

DOI: https://doi.org/10.1007/s11042-014-2365-8

IF: 2.577

2016-01-01

Multimedia Tools and Applications

Abstract:The basic idea of Visual Cryptography (VC) is to divide a secret image into several partitions which are called VC shares. With various categories of VC schemes having been developed to enhance the maturity of VC since its emergence, one of obsessions in current investigations of VC is that each VC share lacks authentication. In this paper, we analyze VC authentication methods using 2D barcodes and embed binary codes into VC shares for authentication purpose. The objective of this paper is to present a method of improving the authentication of traditional VC scheme. Our contribution of this paper is to propose a scheme of embedding 2D barcodes into given VC shares to prevent cheating, we search the best region of a given share where the 2D barcode could be embedded into so as to keep the visual quality of the revealed secret.

Jianfeng Lu,Zaorang Yang,Lina Li,Wenqiang Yuan,Li Li,Chin-Chen Chang

DOI: https://doi.org/10.1155/2017/4356038

2017-01-01

Mobile Information Systems

Abstract:QR code (quick response code) is used due to its beneficial properties, especially in the mobile payment field. However, there exists an inevitable risk in the transaction process. It is not easily perceived that the attacker tampers with or replaces the QR code that contains merchant’s beneficiary account. Thus, it is of great urgency to conduct authentication of QR code. In this study, we propose a novel mechanism based on visual cryptography scheme (VCS) and aesthetic QR code, which contains three primary schemes for different concealment levels. The main steps of these schemes are as follows. Firstly, one original QR code is split into two shadows using VC multiple rules; secondly, the two shadows are embedded into the same background image, respectively, and the embedded results are fused with the same carrier QR code, respectively, using XOR mechanism of RS and QR code error correction mechanism. Finally, the two aesthetic QR codes can be stacked precisely and the original QR code is restored according to the defined VCS. Experiments corresponding to three proposed schemes are conducted and demonstrate the feasibility and security of the mobile payment authentication, the significant improvement of the concealment for the shadows in QR code, and the diversity of mobile payment authentication.

computer science, information systems,telecommunications

Jiahe Zhang,Duo Li,Jun Jia,Wenjie Sun,Guangtao Zhai

DOI: https://doi.org/10.1109/VCIP47243.2019.8966044

2019-01-01

Abstract:Quick Response (QR) Code is extensively used due to its advantages in fast readability as well as large capacity. However, when using QR codes, users may suffer from loss of private information because of peeping and scanning by unauthorized attackers. In this paper, we propose a novel algorithm to hide and protect the QR code based on multichannel visual masking. With our algorithm, the appearance of the QR code is dramatically changed while it maintains the original secret information. Unauthorized users can not extract any information from the protected QR code with the standard QR code reader. For authorized users, we design a truth table based decoder that works with the standard QR code reader. Extensive experiments are performed to evaluate the robustness and effectiveness of our method. The codes of this paper are published at https://github.com/JiaheZhang/Protection- QR-Code-MVM.

Jiamei Lv,Yuxuan Zhang,Wei Dong,Yi Gao,Chun Chen

DOI: https://doi.org/10.1109/iwqos49365.2020.9212963

2020-01-01

Abstract:With the continued proliferation of smart mobile devices, Quick Response (QR) code has played an important role in daily life. They may be distorted and partially invisible due to bright spots, folding and stains When they are printed on soft materials such as plastic bags. Existing scanners may fail in detecting and decoding QR codes due to distortion. In this paper, we propose a simple but effective approach to decoding distorted and partial QR codes. First, we improve an existing QR code detection algorithm to extract QR codes. Then based on the structural features of QR codes that white and black modules are staggered, we propose a novel distortion correction mechanism that uses an adaptive window to match each module. In order to tackle the problem of invisibility, we print multiple QR codes and capture them in an image. Considering confidence of each module in separate, we reconstruct a relatively complete QR code. Extensive experiments have been conducted to evaluate the performance of our approach. The results show that our approach improves the decoding rate by 50% – 60% compared to the other two baselines.

Sijia Liu,Zhengxin Fu,Bin Yu

DOI: https://doi.org/10.1109/access.2019.2922259

IF: 3.9

2019-01-01

IEEE Access

Abstract:As a kind of machine readable symbol, the Quick Response (QR) code is widely used in all walks of life due to its large information capacity, strong error correction ability and fast read speed. However, the public encoding of the QR code makes its contents unsafe. In this paper, we introduce a novel rich QR code with three-layer information that utilizes the characteristics of the Hamming code and the error correction mechanism of the QR code to protect the secret information. The first layer information, that is, the public information, can be decoded by any standard QR reader. The XOR operation is performed on all shares to obtain the second layer information. Finally, the pixels of the same position in all shares are taken as a set of Hamming codes, respectively, and the third layer information is extracted by a matrix multiplication operation. Compared to other related schemes, the proposed scheme has the advantage of high information embedding efficiency and strong robustness against common image post-processing attacks.

computer science, information systems,telecommunications,engineering, electrical & electronic

Somdip Dey,Asoke Nath,Shalabh Agarwal

DOI: https://doi.org/10.48550/arXiv.1808.05827

2018-08-17

Cryptography and Security

Abstract:Now, security and authenticity of data is a big challenge. To solve this problem, we propose an innovative method to authenticate the digital documents. In this paper, we propose a new method, where the marks obtained by a candidate will also be encoded in QR CodeTM in encrypted form, so that if an intruder tries to change the marks in the mark sheet then he can not do that in the QR CodeTM, because the encryption key is unknown to him. In this method, we encrypt the mark sheet data using the TTJSA encryption algorithm. The encrypted marks are entered inside QR code and that QR code is also printed with the original data of the mark sheet. The marks can then be retrieved from the QR code and can be decrypted using TTJSA decryption algorithm and then it can be verified with marks already there in the mark sheet.

M. Bala Krishna,Arpit Dugar

DOI: https://doi.org/10.1007/s11277-016-3374-x

IF: 2.017

2016-08-01

Wireless Personal Communications

Abstract:AbstractCounterfeiting is one of the biggest challenges for the authenticity of genuine products. An estimated average of 8–9 % trade consists of counterfeit goods that create a loss of revenue. To combat this situation, the product manufacturers use hologram and barcodes. The issue of genuine product remains the primary challenge in the market. With emerging trends in mobile and wireless technology, Quick Response (QR) codes provide a robust technique to fight the practice of counterfeiting the products. Apart from being used extensively in marketing and information transfer applications, the QR codes and encrypted QR codes are primarily used in security and privacy applications. Many web applications use QR codes for secure login where the user need not remember his/her login ID and password. The encrypted unique user ID is verified at the server using QR codes. Our proposed approach uses QR codes based on 2-dimensional codes (such as 19 Aztec, Data Matrix, etc.) to authenticate the product. This approach simplifies the size of QR code, and minimizes the complexity of encoding and decoding in QR code.

telecommunications

Yanfei Sun,Mengyuan Yu,Junyu Wang

DOI: https://doi.org/10.1109/ICSICT49897.2020.9278285

2020-01-01

Abstract:Using steganography for data hiding is becoming a main subject to ensure both information security and picture quality. Traditional steganography algorithms usually convert secret information into a binary string and embed it in the pixel data of the cover image. In order to ensure the information security as well as convenient transmission, this work studies the steganography algorithm of embedding the QR code containing secret information into the cover image, based on the JSteg algorithm. Secret messages with different sizes have been tested by many cover images and standard parameters have adopted to verify the efficiency. According to the experimental results, all the PSNR in a value that is greater than 47.6 dB. The proposed method has high security and more imperceptibility.