🆕 Software Suggestion | Expand metadata removal page to include suggestions for mobile operating systems #1842

New Issue

jonah · 2020-04-20T11:25:38Z

dngray commented

2020-04-20 11:25:38 +00:00

(Migrated from github.com)

So far I only know of Scrambled Exif available in both Android and F-Droid.

We should consider some options for mobile platforms as suggested in this category.

So far I only know of [Scrambled Exif](https://gitlab.com/juanitobananas/scrambled-exif) available in both Android and F-Droid. We should consider some options for [mobile platforms as suggested](https://old.reddit.com/r/privacytoolsIO/comments/g4p6kn/best_metadata_remover/) in this category.

👍 1

gary-host-laptop commented

2020-04-20 13:21:37 +00:00

(Migrated from github.com)

I can think of ImagePipe but it also changes the size of your image so it is not so nice, and I don't think there's any application for iOS.

I can think of [ImagePipe](https://f-droid.org/en/packages/de.kaffeemitkoffein.imagepipe/) but it also changes the size of your image so it is not so nice, and I don't think there's any application for iOS.

jonah commented

2020-04-20 15:23:20 +00:00

ViewExif and iVerify work well on iOS. iVerify is also cool as it has a lot of security tips and will can your device for exploits/jailbreaks, but that may be out of scope for this issue.

👍 1

Dizhonoured commented

2020-04-20 18:09:27 +00:00

(Migrated from github.com)

Unsure about whether they can be considered within the scope of this issue, but two more things to consider...

Given that there is recent / active research into most forms of hardware fingerprinting (uniquely identifying a device through acoustic properties, cameras, motion sensors etc. ) I wonder if it is appropriate to look into some form of obfuscation or filtering of image and audio content. Facebook, for example, has an active patent for associating cameras with users and objects in a social networking system - using camera fingerprinting as context for linkability, identification and social interest. Controlling this, in combination with metadata removal or editing- means you're in reasonable control of identifying information with any given piece of media you put out.
There was an interesting (IMO) recent reddit thread about steganography which makes a very good case for security practice when compelled to give images out online or elsewhere for any particular reason. After stripping metadata and filtering out uniquely identifying data, it makes sense to then watermark your images so you have a good idea of how (if) they propagate/migrate through the internet.

I think these are related directly enough to metadata manipulation to be in the same section of the guides.

Unsure about whether they can be considered within the scope of this issue, but two more things to consider... 1. Given that there is recent / active [research](https://www.buffalo.edu/content/dam/www/news/photos/2017/12/ndss18-paper99.pdf) into most forms of **hardware fingerprinting** (uniquely identifying a device through acoustic properties, cameras, motion sensors etc. ) I wonder if it is appropriate to look into some form of obfuscation or filtering of image and audio content. Facebook, for example, has an active patent for [associating cameras with users and objects in a social networking system](https://patents.google.com/patent/US20150124107) - using camera fingerprinting as context for linkability, identification and social interest. Controlling this, in combination with metadata removal or editing- means you're in reasonable control of identifying information with any given piece of media you put out. 2. There was an interesting (IMO) recent [reddit thread about steganography](https://www.reddit.com/r/privacy/comments/g456za/looking_for_foss_steganographic_tools_to_secretly/) which makes a very good case for security practice when compelled to give images out online or elsewhere for any particular reason. After stripping metadata and filtering out uniquely identifying data, it makes sense to then **watermark** your images so you have a good idea of how (if) they propagate/migrate through the internet. I think these are related directly enough to metadata manipulation to be in the same section of the guides.

dngray commented

2020-04-22 07:45:29 +00:00

(Migrated from github.com)

Unsure about whether they can be considered within the scope of this issue, but two more things to consider...

I think we could have a warning about this.

If the threat model is simply to stop a passer-by from seeing sensitive information about GPS coordinates then this isn't required. If the threat model requires that the photo not be tracked to the original owner then simply removing EXIF data is not sufficient.

Removing that kind of fingerprint usually requires a gaussian blur or something alike which redacts the photo, and of course nothing in the photo that identifies the owner.

> Unsure about whether they can be considered within the scope of this issue, but two more things to consider... I think we could have a warning [about this](https://arstechnica.com/science/2006/04/3701/?comments=1). If the threat model is simply to stop a passer-by from seeing sensitive information about GPS coordinates then this isn't required. If the threat model requires that the photo not be tracked to the original owner then simply removing EXIF data is not sufficient. Removing that kind of fingerprint usually requires a [gaussian blur](https://en.wikipedia.org/wiki/Gaussian_blur) or something alike which redacts the photo, and of course nothing in the photo that identifies the owner.

👍 1 👀 1

subsys-R9boq8 commented

2020-08-16 13:05:28 +00:00

(Migrated from github.com)

Agreed. Ppl. nowadays tends to take pics and vids on their own handsets and share them directly on social media, so a metadata removal software that only works on personal computers just won't work.
Privacy-friendly platforms like Signal added functions like removing metadata in shared media automatically, but most platform won't go through that length to protect its users (in most cases they only want more), so a standalone metadata removal tools is in need.
This remind me of an application called Scrambled Exif (Fdroid) on Android which process image shared to itself to remove exif information. Maybe I shall make an software suggestion?

Agreed. Ppl. nowadays tends to take pics and vids on their own handsets and share them directly on social media, so a metadata removal software that only works on personal computers just won't work. Privacy-friendly platforms like Signal added functions like removing metadata in shared media automatically, but most platform won't go through that length to protect its users (in most cases they only want more), so a standalone metadata removal tools is in need. This remind me of an application called [Scrambled Exif](https://gitlab.com/juanitobananas/scrambled-exif) ([Fdroid](https://f-droid.org/en/packages/com.jarsilio.android.scrambledeggsif/)) on Android which process image shared to itself to remove exif information. Maybe I shall make an software suggestion?

jneplokh commented

2020-08-22 05:15:07 +00:00

(Migrated from github.com)

I also know of (and use) Metapho for iOS.

Not only can you remove and edit Metadata, but they also have a share sheet feature to share a photo without Metadata. Perhaps you want the GPS, etc. still on the original, but when uploading/sharing you want to strip it. There, you can use the share sheet functionality.

I also know of (and use) [Metapho](https://zininworks.com/metapho/) for iOS. Not only can you remove and *edit* Metadata, but they also have a share sheet feature to share a photo without Metadata. Perhaps you want the GPS, etc. still on the original, but when uploading/sharing you want to strip it. There, you can use the share sheet functionality.

This repo is archived. You cannot comment on issues.