Group 2 - Desinformation and Geomedia Project
Combating disinformation through cryptographically secure, location-verified photography
- About the Project
- Key Features
- Work Flow
- Technology Stack
- Installation & Usage
- API Documentation
- License
- Contributing
- Team
GeoCam is a comprehensive platform designed to combat digital disinformation by providing cryptographically secure, location-verified photography. In an era where deepfakes and manipulated media threaten information integrity, GeoCam ensures photo authenticity through advanced cryptographic techniques and geographic verification.
To provide journalists, researchers, legal professionals, and citizens with tools to capture and verify authentic, tamper-proof photographic evidence with verifiable location data.
- Digital Manipulation: Easy photo editing tools make content manipulation trivial
- Location Spoofing: GPS data can be easily falsified or removed
- Chain of Custody: Difficult to prove photo authenticity in legal/journalistic contexts
- Disinformation Spread: Manipulated images fuel misinformation campaigns
GeoCam combines multiple security layers:
- Cryptographic Signatures: secp256k1 elliptic curve signatures
- Steganographic Embedding: Hidden metadata within image data
- Device Registration: Unique device fingerprinting
- Real-time Verification: Instant authenticity checking
- Geographic Anchoring: Tamper-evident location data
- Modern Camera Interface: Theme-aware UI with advanced gesture controls
- Enhanced User Experience: Haptic feedback, smooth animations, and intuitive navigation
- Real-time GPS Integration: High-accuracy location embedding with metadata
- Advanced Camera Features: Timer, grid lines, zoom controls, tap-to-focus
- Cryptographic Key Management: Secure device-specific key generation and storage
- Offline Capability: Full functionality without internet connectivity
- Gallery Management: Organized photo storage with comprehensive metadata viewing
- Image Verification: On-device authenticity checking with detailed results
- Comprehensive Theme Support: Dynamic dark/light mode with consistent styling
- Cross-platform: Optimized for both iOS and Android devices
- Administrative Dashboard: Device and photo management
- Verification Portal: Public image authenticity checking
- Interactive Architecture Diagram: System visualization
- Statistics Dashboard: Usage analytics and insights
- Responsive Design: Mobile and desktop optimized
- Real-time Updates: Live status monitoring
- RESTful API: Comprehensive endpoint coverage
- Steganography Engine: Advanced metadata embedding
- Database Management: PostgreSQL with migration support
- Device Registration: Secure device onboarding
- Image Processing: Multi-format support
- Verification Engine: Cryptographic validation
Signing Process:
- Image Capture: User takes a photo through the GeoCam mobile application
- Metadata Collection: System automatically collects GPS location, timestamp, device information and other metadata
- Backend Initial Processing: Mobile app sends JPEG image, metadata, and public key to backend
- Turning the Jpeg image into PNG image by adding an alpha channel
- Encodes basic metadata into alpha channels using LSB steganography(excluding last row)
- Generates hash from the image
- Device Signing: Mobile app receives hash from backend, then signs hash using private key stored in device
- Backend Final Assembly: Mobile app sends signature back to backend, then backend embeds signature and public key into last row of alpha channels using LSB steganography
- Secure Storage: Final signed PNG is returned to mobile app and saved to device local gallery
Verification Process:
- Image Upload: Mobile app sends PNG image to backend verification service
- Steganographic Extraction: Backend extracts metadata, public key, and signature from image using steganography
- Signature Removal: Backend removes public key and signature from the last row of the alpha channel
- Hash Generation: Backend computes hash of the cleaned image
- Cryptographic Verification: Backend uses extracted hash, public key, and signature to verify image authenticity
- Result Response: Backend sends verification results back to mobile app with authenticity status and metadata
- π Private Key Isolation: Private keys never leave the device and are stored in secure hardware-backed storage
- π Public Key Distribution: Only public keys are transmitted to the backend for verification
- β Signature Verification: Backend uses stored public keys to cryptographically verify image signatures
- π‘οΈ Secure Storage: Private keys are protected by device secure storage (Android Keystore/iOS Keychain)
- π« No Key Transmission: The verification process never requires transmitting private keys
- Framework: React Native 0.79.3 with Expo 53.0.11
- Navigation: Expo Router 5.1.0 with file-based routing
- State Management: React Hooks + Context API with TypeScript
- Cryptography: @noble/curves (secp256k1) for secure signatures
- Device Integration: expo-location, expo-camera, expo-haptics
- Storage: expo-secure-store for keys, AsyncStorage for app data
- UI/UX: @expo/vector-icons, react-native-gesture-handler, react-native-safe-area-context
- Maps & Visualization: react-native-maps (mobile), react-native-svg
- Theme System: Custom context-based theme management
- Python Backend: Flask 3.0.3 + PostgreSQL
- Node.js Service: Express + TypeScript
- Image Processing: Sharp, PNGJS
- Cryptography: @noble/curves (secp256k1)
- Database: PostgreSQL with migrations
- API Documentation: RESTful endpoints
- Framework: Vue.js 3.5.13
- Build Tool: Vite 6.2.4
- State Management: Pinia 3.0.3
- Routing: Vue Router 4.5.1
- HTTP Client: Axios 1.10.0
- Visualization: D3.js 7.9.0, OpenLayers 10.6.1
- Containerization: Docker + Docker Compose
- Version Control: Git
- Package Management: npm/yarn
- Build Tools: Expo CLI, TypeScript, Babel
Before getting started, ensure you have the following installed on your system:
- Node.js 18+ and npm/yarn - Download Node.js
- Python 3.8+ - Download Python
- Git - Download Git
- Expo CLI - Install globally:
npm install -g @expo/cli - Android Studio (for Android development) - Download Android Studio
- Xcode (for iOS development, macOS only) - Download from App Store
- Docker & Docker Compose (optional, for containerized deployment) - Download Docker
The fastest way to get GeoCam running is using Docker Compose:
# 1. Clone the repository
git clone https://github.com/whlan02/Desinformation_and_Geomedia_Green.git
cd Desinformation_and_Geomedia_Green
# 2. Start all services with Docker
cd Web_Backend
docker-compose up -d
# 3. Access the applications
# Web Frontend: http://localhost:3000
# Python Backend API: http://localhost:5000
# Node.js Steganography Service: http://localhost:3001# Clone the repository
git clone https://github.com/whlan02/Desinformation_and_Geomedia_Green.git
cd Desinformation_and_Geomedia_GreenPython Backend (Flask API):
# Navigate to backend directory
cd Web_Backend
# Create virtual environment (recommended)
python -m venv venv
# Activate virtual environment
# On Windows:
venv\Scripts\activate
# On macOS/Linux:
source venv/bin/activate
# Install Python dependencies
pip install -r requirements.txt
# Create environment file
cp .env.example .env
# Edit .env file with your configuration if needed
# Start Python backend
python app.py
# Backend will run on http://localhost:5000Node.js Steganography Service:
# In a new terminal, navigate to backend directory
cd Web_Backend
# Install Node.js dependencies
npm install
# Build the TypeScript service
npm run build
# Start the steganography service
npm start
# Service will run on http://localhost:3001# In a new terminal, navigate to frontend directory
cd Web_Frontend
# Install dependencies
npm install
# Start development server
npm run dev
# Frontend will run on http://localhost:3000# In a new terminal, navigate to mobile app directory
cd geoCamApp
# Install dependencies
npm install
# Start Expo development server
npm start
# or
expo startFor iOS Development:
# Run on iOS simulator (macOS only)
npm run ios
# or
expo run:iosFor Android Development:
# Run on Android emulator or device
npm run android
# or
expo run:android-
Access the Web Dashboard:
- Open your browser and navigate to
http://localhost:3000 - The dashboard provides device management and image verification features
- Open your browser and navigate to
-
Device Registration:
- Use the web interface to view registered devices
- Monitor device activity and statistics
-
Image Verification:
- Upload images through the web portal to verify their authenticity
- View detailed verification results and metadata
-
Install the Mobile App:
- Use Expo Go app to scan the QR code from
expo start - Or build and install the app directly on your device
- Use Expo Go app to scan the QR code from
-
First Time Setup:
- Open the GeoCam app
- The app will automatically generate cryptographic keys
- Grant location and camera permissions when prompted
-
Taking Secure Photos:
- Tap the camera icon to open the camera interface
- Take photos with automatic GPS location embedding
- Photos are cryptographically signed and stored securely
-
Viewing Gallery:
- Access your secure photo gallery
- View metadata including location, timestamp, and verification status
-
Verifying Images:
- Select any image from your gallery or device
- Tap "Verify" to check authenticity
- View detailed verification results
Edit Web_Backend/.env file:
# Database configuration
DATABASE_URL=postgresql://username:password@localhost:5432/geocam_db
# API configuration
FLASK_ENV=development
FLASK_DEBUG=True
# CORS settings
CORS_ORIGINS=http://localhost:3000Edit geoCamApp/utils/backendConfig.ts:
export const BACKEND_CONFIG = {
PYTHON_API_URL: 'http://localhost:5000',
STEGANOGRAPHY_API_URL: 'http://localhost:3001',
// For physical device testing, use your computer's IP:
// PYTHON_API_URL: 'http://192.168.1.100:5000',
// STEGANOGRAPHY_API_URL: 'http://192.168.1.100:3001',
};-
Verify Backend Services:
# Test Python API curl http://localhost:5000/api/health # Test Node.js service curl http://localhost:3001/health
-
Test Web Frontend:
- Navigate to
http://localhost:3000 - Check that the dashboard loads correctly
- Navigate to
-
Test Mobile App:
- Open the app in Expo Go or on device
- Try taking a photo and verifying it
Common Issues:
- Port conflicts: If ports 3000, 3001, or 5000 are in use, modify the port configurations in the respective service files
- CORS errors: Ensure the backend CORS settings include your frontend URL
- Mobile app connection issues: Use your computer's IP address instead of localhost when testing on physical devices
- Permission errors: Ensure camera and location permissions are granted on mobile devices
Getting Help:
- Check the individual component READMEs for detailed troubleshooting
- Review the API documentation below for endpoint details
- Open an issue on GitHub if you encounter persistent problems
| Method | Endpoint | Description |
|---|---|---|
POST |
/api/register-device-secure |
Register new device with secp256k1 keys |
GET |
/api/devices-secure |
List registered devices |
POST |
/api/verify-image-secure |
Verify image authenticity |
GET |
/api/health |
API service health check |
GET |
/api/stats |
System statistics |
| Method | Endpoint | Description |
|---|---|---|
POST |
/process-geocam-image |
Process JPEG image and get hash to sign |
POST |
/complete-geocam-image |
Complete processing with signature |
POST |
/pure-png-verify |
Verify PNG image with embedded signature |
GET |
/health |
Steganography service health check |
- Fork the repository
- Create feature branch (
git checkout -b feature/amazing-feature) - Commit changes (
git commit -m 'Add amazing feature') - Push to branch (
git push origin feature/amazing-feature) - Open Pull Request
- JavaScript/TypeScript: ESLint + Prettier
- Python: PEP 8 + Black formatter
- Vue.js: Vue Style Guide
- Git: Conventional Commits
- β All specified criteria met and thoroughly tested
- β Code reviewed and approved by team members
- β Comprehensive documentation updated
- β No known bugs or critical issues
- β Unit and integration tests passing
- β Performance benchmarks met
- β Accessibility standards compliance
- β Successfully deployed and verified
This project is licensed under the MIT License - see the LICENSE file for details.
Group 2 - Desinformation and Geomedia
- Ahmad
- Ajay
- WenHao
- Prince
- Mobile Application: Enhanced camera interface, gesture controls, theme system
- Web Platform: Administrative dashboard, verification portal, interactive architecture
- Backend Services: Cryptographic security, steganography engine, API development
- DevOps & Testing: Containerization, CI/CD, comprehensive testing suite
For questions, issues, or contributions:
- π Bug Reports: GitHub Issues
- π¬ Discussions: GitHub Discussions
- π Documentation: Check the individual component READMEs for detailed guides
- π± Mobile App: GeoCam App Documentation
- π Web Frontend: Frontend Documentation
- βοΈ Backend Services: Backend Documentation
This project is part of the Desinformation and Geomedia research initiative, exploring technological solutions to combat misinformation through verifiable digital media and secure authentication systems.
π Main Repository β’ π± Mobile App β’ π Web Frontend β’ βοΈ Backend Services
Built with β€οΈ for digital authenticity and truth
GeoCam Platform - Securing Digital Media Through Innovation