The proposed two-layer image encryption system leverages the concept of switched systems to dynamically alternate between multiple chaotic subsystems during the encryption process. Unlike traditional single-map chaotic encryption techniques, the switched system introduces time-varying behavior, which significantly increases randomness and makes cryptanalysis more difficult. The switching mechanism depends on pixel position and system parameters, ensuring that even minor variations in the key values produce entirely different encrypted outputs. This design improves key sensitivity and strengthens resistance against brute-force and statistical attacks.

To improve usability while maintaining security, the system adopts a compact key representation strategy. Instead of storing or sharing a large key matrix, a short array of numerical values and a single switching parameter are used to deterministically regenerate the chaotic behavior required for decryption. This approach reduces memory overhead and simplifies key handling for users, making the system suitable for practical web-based applications. Decryption is strictly controlled by verifying user-provided keys against database records, ensuring that only authorized users can recover the original image.

The system is implemented using a Django-based web framework, providing secure user authentication, session management, and role-based access control for both users and administrators. Each encrypted image is associated with a specific user, enabling secure history tracking and preventing unauthorized access to encrypted data. Experimental evaluation shows that the encrypted images exhibit uniform histograms, low adjacent pixel correlation, and high sensitivity to key variations, indicating strong security characteristics. Overall, the proposed system successfully balances security, efficiency, and usability, making it a reliable solution for secure image storage and transmission.

Keywords: Two-layer image encryption, switched system approach, chaotic encryption, image security, confusion and diffusion, key sensitivity, user authentication, access control, secure image transmission, and web-based cryptographic implementation.