• ∟⊔⊤∦∣≶@lemmy.nz
    link
    fedilink
    English
    arrow-up
    18
    ·
    1 year ago

    Maybe I am misunderstanding here, but what is going to stop anyone from just editing the photo anyway? There will still be a valid certificate attached. You can change the metadata to match the cert details. So… ??

    • lolcatnip@reddthat.com
      link
      fedilink
      English
      arrow-up
      11
      ·
      1 year ago

      I don’t know about this specific product but in general a digital signature is generated based on the content being signed, so any change to the content will make the signature invalid. It’s the whole point of using a signature.

    • aidan@lemmy.world
      link
      fedilink
      English
      arrow-up
      3
      ·
      1 year ago

      I’m not expert in encryption, but I think you could store a key in the device that encrypts the hash, then that encrypted hash is verified by Leica servers?