GRI

NSA Publishes Guidance on Content Credentials to Bolster Multimedia Integrity

News Cybersecurity Guidance
Date: 29th Jan, 2025 Source: National Security Agency (NSA) Country: USA Original Source

Brief

"On January 29, 2025, the National Security Agency (NSA) issued an update regarding NSA Publishes Guidance on Content Credentials to Bolster Multimedia Integrity. The release discusses how using Content Credentials can provide transparency for media provenance and counter threats such as AI-generated impersonations, fraudulent communications, and brand damage."

Press Release | Jan. 29, 2025

NSA Publishes Guidance on Content Credentials to Bolster Multimedia Integrity

FORT MEADE, Md. – The National Security Agency (NSA), through its Artificial Intelligence Security Center (AISC), is releasing joint guidance on Content Credentials, a rapidly evolving standard that can significantly increase the transparency of media.

The Cybersecurity Information Sheet (CSI), “Content Credentials: Strengthening Multimedia Integrity in the Generative AI Era,” discusses how using Content Credentials broadly across the information ecosystem can provide transparency for the provenance of media – including images, video, and audio.

Rapid advancement of tools that allow easy creation, alteration, and dissemination of digital content threatens organizations’ cybersecurity, according to the CSI. AI-generated media is being used for impersonations, fraudulent communications, and brand damage, eroding the prior inherent trust in media. The CSI offers information and guidance based on the current landscape of techniques and threats.

“We are experiencing a pivotal moment in time where our general instinct to believe what we see or hear is being challenged given the advancement and accessibility of Generative AI tools,” said Candice Rockell Gerstner, NSA Applied Research Mathematician who specializes in Multimedia Forensics. “Bolstering trust through transparency in multimedia has never been more critical. Secure and widespread adoption of content provenance standards is a ‘must’ to prepare us for the new reality where AI is everywhere, and seeing is no longer believing.”

Content Credentials are cryptographically signed metadata that allow creators to add information about themselves and their creative process directly to media content. Content Credentials can either be added to media at creation on hardware or at export from software, like generative AI technologies or traditional editing programs. It can also be made more durable by adding a digital watermark and a fingerprint matching system to the media.

The CSI explains how the Coalition for Content Provenance and Authenticity (C2PA) has developed an open specification for providing digital media provenance through Content Credentials. The C2PA is a coalition of technology companies and media organizations that aims to combat the spread of misleading information online by developing open technical standards for verifying the origin and history of digital content.

The CSI poses questions organizations should consider when preparing to implement Content Credentials and provides recommended practices to ensure the preservation of unaltered metadata throughout the media lifecycle.

Additional co-sealing agencies on the CSI are the Australian Signals Directorate’s Australian Cyber Security Centre (ACSC), Canadian Centre for Cyber Security (CCCS), and United Kingdom National Cyber Security Centre (NCSC-UK).

Read the full report here.

Visit our full library for more cybersecurity information and technical guidance.

NSA Media Relations
MediaRelations@nsa.gov

443-634-0721

SHARE

PRINT

Related Documents

CSI: Content Credentials: Strengthening Multimedia Integrity in the Generative AI Era

content credentials
AI
generative AI
deepfakes
deep
fakes
C2PA
CAI
provenance
multimedia manipulation

Highlights content goes here...

Purpose:
The National Security Agency (NSA) has published a joint guidance on Content Credentials, a rapidly evolving standard that can significantly increase the transparency of media. The aim is to provide information and guidance based on the current landscape of techniques and threats related to multimedia integrity in the generative AI era.

Effects on Industry:
The rapid advancement of tools that allow easy creation, alteration, and dissemination of digital content threatens organizations’ cybersecurity. The use of Content Credentials can increase transparency for the provenance of media – including images, video, and audio – which can help combat the spread of misleading information online. This guidance is expected to have a significant impact on industries that rely heavily on multimedia content, such as social media platforms, news outlets, and advertising agencies.

Relevant Stakeholders:
Organizations that handle multimedia content, such as media companies, educational institutions, government agencies, and private businesses, are affected by this update. The guidance is particularly relevant for those in the digital media industry, including creators of AI-generated content, social media platforms, and online news outlets. Individuals who consume and interact with multimedia content also stand to benefit from the increased transparency provided by Content Credentials.

Next Steps:
To comply with or respond to this update, organizations are advised to consider implementing Content Credentials in their workflows. This may involve using cryptographically signed metadata that allows creators to add information about themselves and their creative process directly to media content. The guidance also recommends preserving unaltered metadata throughout the media lifecycle.

Any Other Relevant Information:
The Coalition for Content Provenance and Authenticity (C2PA) has developed an open specification for providing digital media provenance through Content Credentials. This coalition aims to combat the spread of misleading information online by developing open technical standards for verifying the origin and history of digital content. The NSA’s guidance is part of a broader effort to promote the secure and widespread adoption of content provenance standards in preparation for the new reality where AI is everywhere, and seeing is no longer believing.

National Security Agency (NSA)

Quick Insight
RADA.AI
RADA.AI
Hello! I'm RADA.AI - Regulatory Analysis and Decision Assistance. Your Intelligent guide for compliance and decision-making. How can i assist you today?
Suggested
Related Documents
Medical device salesperson reporting procedure guide
Date: 5th Feb, 2025 Source: Ministry of Health and Welfare (MOHW) Country: South Korea
News Healthcare & Pharma Guidance
​The EBA issues an Opinion in response to the European Commission’s proposed amendments to the EBA draft technical standards on conflicts of interests for issuers of asset-referenced tokens
Date: 5th Feb, 2025 Source: European Banking Authority (EBA) Country: European Union
News Financial services Guidance
Low risk waste positions: electrical equipment, including constituent parts and accessories
Date: 5th Feb, 2025 Source: Environment Agency (EA) Country: United Kingdom
News Environment Guidance

Form successfully submitted. One of our GRI rep will contact you shortly

Thanking You!

Click here

Enter your Email

Enter your registered username/email id.

Enter your Email

Enter your email id below to signup.

Enter your Email

Enter your email id below to signup.
Individual Plan
  • Designed for Growing Compliance Teams
$125 / month OR $1250 / year
Features
  • • Coverage for 20 jurisdictions
  • • Monitoring from 500+ regulatory authorities
  • • AI compliance summaries
  • • RaDa.ai : Single-Role
Best for: Researchers, Legal professionals, Academics
Subscribe Now
Enterprise Plan
  • Perfect for Global Enterprises
Contact for Pricing
Features
  • • Custom jurisdictional coverage
  • • Custom monitoring of regulatory authorities
  • • RaDa.ai : Customizable multi-role
  • • Custom reporting and dashboard capabilities
  • • API access for seamless integration
Best for: Law Firms, Corporations, Government Bodies
Contact Sales