PUID for encrypted PDF's
Paul Young
We have been looking at identifying PDF’s which contain encryption to ensure their accessibility. I wanted to get opinions on whether people would like to see this capability added to PRONOM like we have for office documents with fmt/754 and fmt/494.
Looking at PDF specs, http://www.adobe.com/content/dam/Adobe/en/devnet/acrobat/pdfs/pdf_reference_1-7.pdf p115 talks of encryption and that if in the trailer dictionary there is an entry for ‘Encrypt’ then the document is encrypted and if it is absent then it is not. P55 of this seems to conform with that http://wwwimages.adobe.com/content/dam/Adobe/en/devnet/pdf/pdfs/PDF32000_2008.pdf let me know if you interpret this differently.
This allows us to create a signature which would pick up PDF’s which have encryption. I suggest from the EOF up to around a 2048 byte offset looking for the /Encrypt (2F456E6372797074) sequence in the trailer dictionary. This marker does however appear whenever there is any level of PDF encryption, including setting permissions for copying or printing, not just password protection.
If we added it to PRONOM we could have one new PUID entry for encrypted PDF’s v1.1-1.7 and possible other entries covering pdf formats which allow encryption.
Paul Young
Digital Archivist
The National Archives, Kew, Richmond, Surrey TW9 4DU
Paul Wheatley
Isn't this confusing the core aim of what PRONOM and PUIDs are for? A PUID is used to identify a file format, and possibly a version of a file format (admittedly this in itself is a fuzzy concept). What you are suggesting (if I'm understanding correctly) is using a PUID to identify a set of files of a particular file format with a particular characteristic. In that case, how far does this go? How many characteristics will get PUIDs? Clearly this would become very confusing very quickly. What about PDF password protection? Does that qualify?
Paul
Andy Jackson
I generally agree with Paul W. on this, but I think it's a moot point, because in PDF 'Encrypted' doesn't mean what you'd think.
Prior to PDF 1.5, any PDF that had access restrictions (can't print/copy/modify/annotate) was required to be encrypted with an empty 'owner' password. This means that the only way you can tell the difference between a accessible PDF and a locked PDF is to attempt to decrypt it with the shared password. All PDF parser implementations have to do this.
Therefore, this cannot be done unless you actually implement the PDF decryption algorithm. I think this is probably out of scope for DROID.
Best wishes,
Andy Jackson
Matt Palmer
We discussed this during DROID development - we had some plans to identify encrypted documents, as there are clear preservation issues when material is encrypted. Knowing which material is (potentially) encrypted would be useful.
However, we came to the same conclusion at the time that there are many characteristics which we may want to know about a file, and this was merely one of them, and it wasn't necessarily possible to identify all encrypted material reliably. We did imagine an extension of DROID which would allow for adding arbitrary characteristics to a file (e.g. a format characteristics table), and signatures to identify them. This wouldn't alter the PUID of the format - it would just add an arbitrary list of characteristics if they existed. I still think this is a nice idea, but it's a fair amount of work to add new types of signatures and alter the underlying data model.
Of course, nothing stops particular institutions adding signatures that they find useful, and creating their own PUIDs (maybe in a slightly different format, e.g. chr/1, instead of fmt/1). Might be nice to change DROID so it can download signature files from different locations without requiring the PRONOM web service on the other end, in the same way it currently handles container signatures as a simple HTTP file download. Then people could easily host their own signature files for DROID, adding whichever ones they wanted to the standard PRONOM sigs.
Regards,
Matt.
Paul Young
Lehane, Richard
agree that probably best to keep these “characterisation” type signatures out of PRONOM-core but that they might still be worth pursuing as optional add-ins & I like Matt’s “chr” namespace suggestion.
Paul – in terms of thinking about *where* to make such signatures available, suggest it might be worth pursuing the ideas in Ross’s blog post re. using Github repos: http://openpreservation.org/blog/2015/08/11/proposal-github-to-enable-a-federated-approach-to-distributing-and-utilising-custom-droid-signatures/ & https://github.com/exponential-decay/droid-signature-files.
Cheers
Richard
Hi,
Paul
Regards,
Matt.
Best wishes,
Andy Jackson
Just my twopenneth
Cheers
Paul
--
You received this message because you are subscribed to the Google Groups "droid-list" group.
To unsubscribe from this group and stop receiving emails from it, send an email to droid-list+...@googlegroups.com.
To post to this group, send email to droid...@googlegroups.com.
Visit this group at https://groups.google.com/group/droid-list.
For more options, visit https://groups.google.com/d/optout.
______________________________________________________________________
This email has been scanned by the Symantec Email Security.cloud service.
For more information please visit http://www.symanteccloud.com
______________________________________________________________________
______________________________________________________________________
This email has been scanned by the Symantec Email Security.cloud service.
For more information please visit http://www.symanteccloud.com
______________________________________________________________________
Andy Jackson
+1 to using GitHub.
Andy
Matt Palmer
--
You received this message because you are subscribed to a topic in the Google Groups "droid-list" group.
To unsubscribe from this topic, visit https://groups.google.com/d/topic/droid-list/OgeJX6oEaAc/unsubscribe.
To unsubscribe from this group and all its topics, send an email to droid-list+unsubscribe@googlegroups.com.