These forums are now Read Only. If you have an Acrobat question, ask questions and get help from one of our experts.

128 - 256, a practical difference ?

Forum Index > Security > 128 - 256, a practical difference ?
2008-09-25 21:51:42
sinc
Registered: Jun 3 2008
Posts: 19

I am about to post a copy of my book in PDF form for free distribution. I have disabled printing and copying (and am selling a printed version as my source of revenue). I am using a long password (20 random characters).

Is there any significant difference between using 256 encryption (Acrobat 9) and 128 encryption (Acrobat 7 & 8)? I understand that it would take military strength to decrypt 128, which should be more than enough for commercial use.

Do I need 256 to be safe in protecting my content, or will 128 be enough?

Any other suggestions?

I am also signing the book with a digital signature, although I believe this is not relevant to my question.

Thanks for your answers.

Joseph T. Sinclair
Publisher
RealEstateInvestmentCenter.com

My Product Information:
Acrobat Pro 9.0, Windows
Top
2008-09-26 00:56:34
#1
George_Johnson
Expert
Registered: Jul 6 2008
Posts: 1875
If you're not using an Open password, there's not much practical difference. If a PDF can be opened, there is software available to instantly remove any restrictions you have placed. PDF consumers (programs that read PDFs) are expected to honor any restrictions that have been placed with standard security.

If you've included an Open password, it would be difficult for someone who did not know the password to open the file (assuming a strong password). Much more difficult with 256-bit encryption than 128-bit. If you used a public key to encrypt for certain users it would be difficult for someone without the corresponding private key(s) to open the PDF. But if the Open password is known, any restrictions can be removed (or ignored), assuming standard security.

You're right about your digital signature not being relevant. It is used to verify the integrity of the file and that you are the one who applied the signature, not to enforce any restrictions.

There are DRM (Digital Rights Management) solutions for PDFs that you might want to look into.

George
Top
2008-09-26 11:10:46
#2
sinc
Registered: Jun 3 2008
Posts: 19
OK, I appreciate your reply. Now let me get this straight, because my knowledge is very limited.

If I use a secure password for either Open Password or Change Permission Password, it would be difficult for someone to remove restrictions. It would be more difficult with 256 than 128.

The question remains is whether it's worth it to use 256 knowing than only the 9.0 Reader will read the PDF, or whether 128 is really enough and 7.0-9.0 Readers will be able to read the PDF? I know this is a judgment call, but what do you think?

I'm assuming there's really no difference in security whether you use the Open Password or the Change Permissions Password. Is that correct?

My purpose is to let anyone read it but allow no one to change it or print it.

Thanks.

Joseph T. Sinclair
Publisher
RealEstateInvestmentCenter.com

Top
2008-09-26 11:27:46
#3
George_Johnson
Expert
Registered: Jul 6 2008
Posts: 1875
If a PDF can be opened, restrictions can be easily removed, but not with Acrobat (unless the Change password is known). Other software is required, but it is readily available. Using an Open password doesn't change this. An Open password prevents someone who does not know the password from opening it.

DRM approaches might be able to give you what you want. Using standard security will not.

It really boils down to this: If you absolutely don't want anyone to be able to print or change your PDF, then don't make it available. If you want to prevent MOST people from printing or changing your PDF, then standard security is adequate.

George
Top
2008-09-26 11:46:48
#4
gkaiseril
Online
Expert
Registered: Feb 23 2006
Posts: 4307
If you use "password" open protection in Acrobat make sure you take into consideration the older versions of Reader or Acrobat that your end users will be using.

George Kaiser

Top