Abstract:
Organizations are handling huge amounts of data on daily basis. This data includes
passenger name records (PNR), patient’s medical information, financial statements,
State level secrets i.e. watch list of terrorist/spy, exit control list, etc. In case secret
data is leaked, it could cause huge losses in term of legal proceedings, financial
penalties and reputation loss. As same data is being shared to and processed by
multiple organizations, it very important to identify exact party from where data has
been breached so that responsibility of data loss can be fixed.
Public key encryption can be helpful to map identity of any party (originator or
recipient) to the encrypted data, but once data is decrypted, the identity is lost. Digital
watermarking is a technique, which embeds hidden code or secret information inside
data in decrypted or readable form. However, watermarking alone cannot guarantee
non-repudiation as watermarked data is visible to other parties as well i.e. originator.
If both techniques are used i.e. public key encryption and text watermarking through
a controlled framework or flow, data can be securely shared to multiple parties with
an embedded unique identity (watermark code).
In this project, a complete framework is proposed to provide data integrity,
confidentiality and non-repudiation of delivery of data, which is being shared, to
multiple parties of the system. In case data is leaked the watermark code can be
extracted to identify exact location or party of data breach
