Cybersecurity: Data Protection Using Hybrid Encryption and Steganography

Abstract

In the evolving landscape of digital communication and data storage, cybersecurity remains a paramount concern. This project proposes a hybrid security framework that combines hybrid encryption (AES + ECC) with image-based steganography to provide enhanced protection for user data stored on centralized or decentralized servers. The hybrid encryption approach ensures that data cannot be decrypted even if malicious actors obtain partial keys, as it uses both symmetric and asymmetric algorithms. Additionally, steganography conceals sensitive messages within image files, enabling covert data transmission while maintaining the appearance of innocuous media. To further ensure data integrity, the system generates a unique hash code for each uploaded file, allowing verification at any time. Access control is fortified through multi-factor authentication, combining traditional credentials with OTP-based email verification. Beyond security operations, the platform also includes user-education tools, providing learning materials and cybersecurity news updates. Developed using Python and MySQL, the application empowers users to encrypt files, hide data in images, retrieve decrypted files, and stay informed about modern threats—all through a secure and interactive web interface. By layering encryption, steganography, hashing, and multi-factor authentication, the proposed system provides a self-secured, tamper-resistant environment that addresses insider threats and the limitations of single-layer protection.