WebApp Sec: Re: Re: Securing PDF file on a Website

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

WebApp Sec mailing list archives

Re: Re: Securing PDF file on a Website

From: andres.desa () paladion net
Date: 23 Jul 2005 11:01:38 -0000

Streaming a PDF file to the user`s browser will help in adding an authentication mechanism. 

A script file can be called to stream the PDF file. This script should authenticate the user based upon the credentials 
supplied. Also, this script can add cache-control headers, which will prevent the PDF file being stored in the local 
cache on the user's machine.

A whitepaper discussing these issues is available at
http://www.paladion.net/papers/Document_Security_in_Web_Applications.pdf


Andres Desa
Paladion Networks,
Mumbai - India

Application Security Magazine
http://palisade.paladion.net

By Date By Thread

Current thread:

Securing PDF file on a Website echow (Jul 23)
- Re: Securing PDF file on a Website Andrew van der Stock (Jul 23)
  - Re: Securing PDF file on a Website Kurt Seifried (Jul 23)
- Re: Securing PDF file on a Website focus (Jul 23)
- Re: Securing PDF file on a Website Paul Laudanski (Jul 24)
- <Possible follow-ups>
- Re: Re: Securing PDF file on a Website andres . desa (Jul 23)
- Re: Re: Securing PDF file on a Website andres . desa (Jul 23)
- Re: Re: Securing PDF file on a Website andres . desa (Jul 23)
  - RE: Re: Securing PDF file on a Website Auri Rahimzadeh (Jul 23)