On Tuesday, Google announced that it is taking out the box a new Google Pixel 10 phone with a standard coalition of content origins and reliability (C2PA) to examine the origins and history of digital content.
Therefore, C2PA content credential support has been added to the Pixel Camera and Google Photos apps for Android. According to Google, the move is designed to further enhance transparency in digital media.
C2PA Content Credentials are tamper-proof, encrypted digital manifesto that provides a verifiable source of digital content, such as images, videos, and audio files. According to Adobe, the metadata type acts as a “digital nutrition label” and provides information about the creator, how it was created, and whether it was generated using artificial intelligence (AI).
“The Pixel Camera App has achieved Assurance Level 2, the highest security rating currently defined by the C2PA Compliant Program,” says Google’s Android Security and C2PA Core Team. “Mobile app guarantee level 2 is currently only available on Android platforms.”
“Even if a Pixel 10 phone is captured when the device goes offline, it ensures that images captured by the native camera app are reliable after the certificate expires.”
This feature is possible using a combination of Google Tensor G5, Titan M2 security chip, and hardware-assisted security features built into the Android operating system.
Google has implemented C2PA for secure, verifiable and offline use, ensuring that the source data is reliable, and the process is not personally identifiable and works even when the device is not connected to the internet.
This is used –
- Proof of Android Keys that allows Google C2PA Certified Authority (CAS) to verify that it is communicating with a real physical device
- The hardware-backed Android Key certificate includes the package name and signing certificate associated with the app that requested the generation of the C2PA signing key to check for requests originating from the trusted enrollment app
- C2PA Generation and Storage Claim Key Signing Key Using Android Strongbox on Titan M2 Security Chip for Tamper Resistance
- Proof of anonymous hardware assistance to certify new encryption keys generated without knowing who is using it
- Unique certificates to sign each image, make it “encryptically impossible” to praise the creator
- Offline Time Stamp Authority (TSA) components on devices in the tensor chip to generate encrypted timestamps when the camera shutter is pressed
“C2PA content credentials are not the only solution to identify the source of digital media,” Google said. “But they are concrete steps towards more media transparency and trust as we continue to unravel more human creativity with AI.”
