Authentication beside Private URL

[Data CUHK]

Hi everyone,

We have been using private URL to share access to unpublished datasets, but we don't have any authentication to verify if the users who access the dataset via private URL are the intended audience. 

For instance, the sharing process of private URL maybe be intercepted or the private URL could be leaked, and then unauthorized access via private URL could happen.

So we wonder if there is practice or strategy to prevent this from happening to enhance security of data transfer.

Thanks,

Jack