Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Risk

7/18/2012
03:03 PM
Connect Directly
Google+
LinkedIn
Twitter
RSS
E-Mail
50%
50%

YouTube Adds Face Blurring For Privacy

Tool addresses need to protect activists and others caught on camera against their will, but is not a guarantee, say experts.

Google Nexus 7 Tablet: 10 Coolest Features
Google Nexus 7 Tablet: 10 Coolest Features
(click image for larger view and for slideshow)
Six months after Google introduced an optional facial recognition technology called Find my Face, the company's YouTube subsidiary, home of millions of videos created to promote, publicize, share, or disclose, has unveiled a way to hide faces.

In May, Victoria Grand, YouTube director of global communications and policy, said the company was working on software to blur faces in posted videos, in answer to requests from the human rights community and as an option to deal with privacy complaints from those captured on video against their will.

On Wednesday, YouTube made its face blurring system available through its Video Enhancements tool.

"Whether you want to share sensitive protest footage without exposing the faces of the activists involved, or share the winning point in your 8-year-old's basketball game without broadcasting the children's faces to the world, our face blurring technology is a first step towards providing visual anonymity for video on YouTube," said Amanda Conway, YouTube policy associate, in a blog post.

[ For more background read YouTube Tool Blurs Faces To Protect Privacy. ]

As InformationWeek recently noted, videos of significant events posted to YouTube have become an important element in professionally produced video news segments and as standalone reportage. Having an easy way to protect the privacy of individuals shown in such videos should help reduce the chance that human rights protesters caught on camera also will be caught by authorities.

YouTube's face blurring system creates a new copy of the video in question with the blur effect, and provides an option to delete the original, unaltered video. This prevents authorities from seeking the original raw footage from YouTube, although the person posting the video must make sure he or she hasn't retained a local copy.

YouTube says it would be difficult to bypass its blurring technology. "We can't say it's impossible to unblur, but we have made it incredibly difficult through pixelating the blurred regions and adding noise," a company spokeswoman said in an email. "In fact, we feel we've made it so difficult that it's not worth the immense effort required to try."

Security researcher Ashkan Soltani observed via Twitter that although face blurring is helpful, it's not a panacea for the privacy risks that confront human rights advocates. He points to research related to Bertillonage, a system for identifying people based on physical characteristics such as height, weight, eye color, and the like--biometrics, in other words.

Grand, in a blog post, makes just that point, noting that voices, names said on camera, and details captured even briefly might reveal information about the location or identity of people on-screen or off.

Conway offers even more reason to be cautious: This is emerging technology and it might not adequately conceal a person's identity. "It's possible that certain faces or frames will not be blurred," she says. "If you are not satisfied with the accuracy of the blurring as you see it in the preview, you may wish to keep your video private."

New apps promise to inject social features across entire workflows, raising new problems for IT. In the new, all-digital Social Networking issue of InformationWeek, find out how companies are making social networking part of the way their employees work. Also in this issue: How to better manage your video data. (Free with registration.)

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
PJS880
50%
50%
PJS880,
User Rank: Ninja
7/19/2012 | 5:56:16 PM
re: YouTube Adds Face Blurring For Privacy
I like that idea, sort of like tagging in Facebook. It would and could also help with your personal branding if you find that you are in a number of videos GǣuntaggedGǥ.

Paul Sprague
InformationWeek Contributor
Tom LaSusa
50%
50%
Tom LaSusa,
User Rank: Apprentice
7/19/2012 | 2:40:56 PM
re: YouTube Adds Face Blurring For Privacy
Interesting...not perfect...but a good start.

What would be a nice additional feature is if someone spots a video that they are in but they didn't film themselves, they click a button to request their face be blurred. This in turn sends a notification to the originator of the video which they could then approve -- or reject.

Granted this may not account for multiple versions of a video, and if the creator says no, then you're out of luck. Still might be something to consider.

Tom LaSusa
InformationWeek Community Manager
dboyd222
50%
50%
dboyd222,
User Rank: Apprentice
7/19/2012 | 2:29:54 PM
re: YouTube Adds Face Blurring For Privacy
This is the perfect solution to independent filming. You can capture a scene in the streets and blur the faces of people that do not want their images to go public...for a variety of reasons. Nobody active in security or the military, outside of political executives, want to go public because it could end their career and even get them or their friends killed.
PJS880
50%
50%
PJS880,
User Rank: Ninja
7/18/2012 | 7:58:27 PM
re: YouTube Adds Face Blurring For Privacy
I was unaware that this project was underway, I am glad I had the opportunity to read it. It sound like it will be a useful tool for anonymity on the web. I am not saying that this is the solution to video privacy in the web but it is definitely addressing the situation and is a positive step in the right direction. Soltani makes a great point that there are other ways of identifying people based on their features. I am wondering if that technology would be or is as accurate as facial recognition.

Paul Sprague
InformationWeek Contributor
7 Tips for Infosec Pros Considering A Lateral Career Move
Kelly Sheridan, Staff Editor, Dark Reading,  1/21/2020
For Mismanaged SOCs, The Price Is Not Right
Kelly Sheridan, Staff Editor, Dark Reading,  1/22/2020
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Current Issue
IT 2020: A Look Ahead
Are you ready for the critical changes that will occur in 2020? We've compiled editor insights from the best of our network (Dark Reading, Data Center Knowledge, InformationWeek, ITPro Today and Network Computing) to deliver to you a look at the trends, technologies, and threats that are emerging in the coming year. Download it today!
Flash Poll
How Enterprises are Attacking the Cybersecurity Problem
How Enterprises are Attacking the Cybersecurity Problem
Organizations have invested in a sweeping array of security technologies to address challenges associated with the growing number of cybersecurity attacks. However, the complexity involved in managing these technologies is emerging as a major problem. Read this report to find out what your peers biggest security challenges are and the technologies they are using to address them.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2015-3154
PUBLISHED: 2020-01-27
CRLF injection vulnerability in Zend\Mail (Zend_Mail) in Zend Framework before 1.12.12, 2.x before 2.3.8, and 2.4.x before 2.4.1 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via CRLF sequences in the header of an email.
CVE-2019-17190
PUBLISHED: 2020-01-27
A Local Privilege Escalation issue was discovered in Avast Secure Browser 76.0.1659.101. The vulnerability is due to an insecure ACL set by the AvastBrowserUpdate.exe (which is running as NT AUTHORITY\SYSTEM) when AvastSecureBrowser.exe checks for new updates. When the update check is triggered, the...
CVE-2014-8161
PUBLISHED: 2020-01-27
PostgreSQL before 9.0.19, 9.1.x before 9.1.15, 9.2.x before 9.2.10, 9.3.x before 9.3.6, and 9.4.x before 9.4.1 allows remote authenticated users to obtain sensitive column values by triggering constraint violation and then reading the error message.
CVE-2014-9481
PUBLISHED: 2020-01-27
The Scribunto extension for MediaWiki allows remote attackers to obtain the rollback token and possibly other sensitive information via a crafted module, related to unstripping special page HTML.
CVE-2015-0241
PUBLISHED: 2020-01-27
The to_char function in PostgreSQL before 9.0.19, 9.1.x before 9.1.15, 9.2.x before 9.2.10, 9.3.x before 9.3.6, and 9.4.x before 9.4.1 allows remote authenticated users to cause a denial of service (crash) or possibly execute arbitrary code via a (1) large number of digits when processing a numeric ...