Abstract
In present times, barcode decoders on mobile phones can extract the data content of QR codes. However, this convenience raises concerns about security issues when using QR codes to transmit confidential information, such as e-tickets, coupons, and other private data. Moreover, current secret hiding techniques are unsuitable for QR code applications since QR codes are module-oriented, which is different from the pixel-oriented hiding manner. In this article, we propose an algorithm to conceal confidential information by changing the modules of the QR Code. This new scheme designs the triple module groups based on the concept of the error correction capability. Additionally, this manner can conceal two secret bits by changing only one module, and the amount of hidden confidential information can be twice the original amount. As a result, the ordinary data content (such as URL) can be extracted correctly from the generated QR code by any barcode decoders, which does not affect the readability of scanning. Furthermore, only authorized users with the secret key can further extract the concealed confidential information. This designed scheme can provide secure and reliable applications for the QR system.
Highlights
Quick Response (QR) codes are widely used in our daily lives since they are convenient and can accommodate a large amount of data [1,2]
The security of QR code e-tickets remains an unsolved question. It is necessary for companies or e-ticketing systems to hide or protect sensitive QR code content, allowing only authorized users to retrieve it [7]
The proposed algorithm takes three modules as a group, and only one module being changed can help hide two bits of confidential information. This method can effectively reduce the adjustment to the QR modules, enhance the embedded sensitive information, and retain the error correction capability of the QR code
Summary
Quick Response (QR) codes are widely used in our daily lives since they are convenient and can accommodate a large amount of data [1,2]. Mobile devices can scan the QR code and obtain the data content for public transmission. In 2011, Taiwan High Speed Rail (THSR) released a trial of e-ticketing, in which users could download a QR code after purchasing a ticket via smartphones. These codes replaced paper tickets for entering and exiting the train gate. The security of QR code e-tickets remains an unsolved question. It is necessary for companies or e-ticketing systems to hide or protect sensitive QR code content, allowing only authorized users to retrieve it [7]
Sign-in/Register to view highlights & summary Sign-in/Register to access full text options 
Free) 
Talk to us
Join us for a 30 min session where you can share your feedback and ask us any queries you have
Schedule a call
