Validate Content Credentials from your Browser with the Digimarc C2PA Content Credentials Extension
November 30, 2023
By Dominique Guinard,
VP of Innovation
A few weeks ago, we wrote about the rise of generative artificial intelligence (GenAI), and the heightened risk of image manipulation. Specifically, we discussed the need for an industrywide solution to content protection – referencing C2PA’s new Content Credentials, an official “icon of transparency.” A standard called C2PA (Coalition for Content Provenance and Authenticity) adds machine-readable and verifiable metadata to track the origin and history of online assets. Using this technology, content creators add provenance data to original digital assets allowing content consumers to click the new Content Credentials pin icon (“CR”) to reveal and verify that the data tied to an asset is authentic.
While this approach allows the independent validation of an asset, it requires a significant effort from users. This is where our new C2PA Content Credentials Google Chrome web browser extension helps: once installed, it automatically checks for manifests attached to images on the browsed pages. If an image has a manifest, the new extension will validate it and make the results available via a click on the C2PA “CR” pin icon.
Under the hood, the extension builds upon the open source C2PA-JS library created by the team at contentauthenticity.org (kudos for their great work!) to perform various validation steps on the manifest. Aside from checking if the manifest file is syntactically correct, it also checks each manifest’s claims (e.g., author, image composition, modifications, AI generation, etc.), digital certificates and signatures.
For content consumers, our new Content Credentials Chrome extension turns a web browser into an agent capable of certifying the source and history (aka provenance) of images, allowing consumers to make better decisions about what or who should and shouldn’t be trusted. The extension available on the Chrome Web Store and the source code is available on GitHub. Once installed you can test it on any JPEG picture that embeds a C2PA manifest. I took one of the photos last winter, the other image was generated by artificial intelligence. Both pictures embed a C2PA manifest and are protected using Digimarc Validate digital watermarks. Can you guess which one is real? The extension will help you!
Above and beyond the beta release of the new extension, we are actively working to add more features such as the ability to use digital watermarks to recover missing manifests or detect manifests swapped by malicious actors.
As C2PA continues to roll out new tools and applications, we will certainly embed native rendering and validation of manifests. Until this happens, we believe this extension can help bootstrap the digital ecosystem by allowing users to render and validate provenance manifests quickly and conveniently. Related, we are eager to hear your feedback and suggestions and encourage you to post comments via GitHub.
About the Author
VP of Innovation
Dom Guinard is a technologist, entrepreneur, and researcher with about 20 years of hands-on experience in building the Internet of Things with a particular focus on tagging technologies and supply chain. He co-chaired the GS1 Digital Link standard and is an active contributor to the Digital Product Passport, EPCIS 2.0 and the C2PA Content Credentials standards. Dom is VP of Innovation at Digimarc and co-founder & CTO of EVRYTHNG (acquired by Digimarc in 2022).