Drumlin - PDF Security

Adobe Document Center to Close on April 2nd (now delayed to July 2nd)

2011-03-09T02:05:00.000-08:00

The Adobe Document Center (http://dc.adobe.com) service is to close on April 2nd, much to the annoyance of some of its users. The service has not been a runaway success and has had its fair share of technical problems.

The message from Adobe to its customers reads:

Important: This means that after the Service shuts down you, or anyone you have distributed documents protected via the Service, will no longer be able to open/access these documents. We strongly encourage you to use Adobe Acrobat to un-protect these documents before the Service is shut down. To un-protect your documents and remove security protection follow the steps below:

Open the secured document using Adobe Acrobat (version 8 or later). If the document is in an envelope, click on the document link in the envelope to open the actual document.

Select the Remove Security option from the Secure button on the tool bar or from the Advanced | Security menu.

Select OK from the dialog box confirming that you want to remove the security from the document. Your document will now be un-protected.

Save a copy of this un-protected document using the Save As option in the File menu.

Once you have un-protected your documents, please notify any existing recipients of previously protected documents to no longer try to access them and provide them alternative versions of the documents as needed.

Drumlin launches new "Click and Go" secure PDFs

2010-11-04T03:00:00.000-07:00

Drumlin Security, specialists in strongly secured PDF distribution, have long appreciated the need for a range of security options for PDF files. With the rise in demand for electronic document distribution combined with a need for greatly increased simplicity, Drumlin have released the beta version of their "Click and Go" secure PDF reader. "Click and Go" combines a secured PDF document and a new fast PDF reader into one DRM-protected package. The customer purchases the single EXE file, runs the EXE and is prompted for an authorization code (which may be automatically filled in for them using a linked digital authorization file) and clicks OK - the secure PDF is authorized, and if OK the customer can view and/or print the document, depending on the publisher's settings. The file cannot be used on another computer or copied, as it has the same level of protection as other Drumlin secured PDF files (in DRMX format).

You can try the "Click and Go" secure PDF option now - just download the zip file from the link below, unzip the contents to any local directory, and double-click the exe file to authorize and run it

Drumlin "Click and Go" sample

http://www.drumlinsecurity.co.uk/

Ebook piracy on the rise

2010-11-04T02:41:00.000-07:00

A recent (Oct 2010) study suggests that ebook piracy is on the rise, partly as a result of the increased availability of ebooks in many formats, and partly as a result of increased piracy activity. The study, by "interested player" Attributor (http://www.attributor.com/) comes as no surprise to industry watchers... indeed, the problem has been present for many years, it is just becoming more visible!

More EBook conversion news...Adobe Digital Editions, Kindle etc broken

2010-11-04T02:27:00.000-07:00

As reported earlier this year, a number of organizations have produced screen capture software for specific ebook systems, which they then save as PDF files, thereby removing their protection from copying and printing. Amongst these is http://www.ebook-converter.com/ whose step-by-step system for Adobe Digital Editions, Kindle and similar ebook readers appears to work and is simple and cheap.. the results are OK if not wonderful. Because the screen capture is an image process, the resulting file is essentially a set of screen shots (images) which are stored as PDF pages... so just pictures, no text capture. Furthermore, OCR recognition on the captured images will not work as typical screen resolutions are well below that required for successful OCR (needs to be 144dpi or higher).

Kindle eReader hacked (again)

2010-01-12T01:36:00.000-08:00

In the latest hack of the Amazon Kindle eReader and Israeli programmer has managed to break the DRM security on the Kindle eReader and converted the source to PDF, thereby making all such content freely available. Although it is expected that the Kindle team will try to improve the security, the problem is that one break is sufficient to prejudice the security of all Kindle documents. Read more at the link provided!

Converting Adobe Digital Editions to PDF

2009-09-17T11:01:00.001-07:00

A number of products have appeared in the last year or two which are designed to bypass most document security systems, such as Adobe's Digtal Editions (ADE) and their DRM services. These are typically based on automated screen grabbing, which are set in operation once you have opened and displayed your secured file. These include Copistar, Gadwin and CaptureWiz and they work by grabbing each screen and navigating to the next page. This is far from ideal but does result in a set of image files and/or a PDF version of the source - unless of course they are detected and made ineffective by screen grab protection. This is provided in Drumlin and LockLizard but is not generally supported in other products. I am not aware of any direct conversion software which save an ADE file as a PDF, but maybe someone out there does know of such a facility?

Adobe reader V9 security update

2009-07-20T11:05:00.001-07:00

In a comment to my last posting, Adobe's Leonard Rosenthol claims that the article I cite is not accurate, and that the new reader security system is actually much better than earlier versions as it requires a brute force attack. Although this appears to be the case, Elcomsoft (http://www.elcomsoft.com/apdfpr.html) are still happy to supply software to remove security from all versions of Adobe PDFs, including V9.x

Adobe Acrobat 9 security is worse than ever

2009-07-02T01:14:00.000-07:00

ElcomSoft, the company that discovered a security weakness in Adobe's eBook software back in 2001, has found vulnerability in another Adobe Product. While Adobe advertises Acrobat 9 as the most secure PDF production tool ever with enhanced 256-bit encryption, ElcomSoft has discovered that the new PDF protection system implemented in Acrobat 9 is even faster to recover than in previous versions. In fact, a hundred times faster. (from NET Security - see online full article for more details: see here )

Drumlin V4 to provide free PDF Security publishing and free DRM service

2009-06-15T02:59:00.001-07:00

June 15th - Drumlin Security confirm that the beta version of their Drumlin V4 PDF Security reader and publishing software, and associated DRM service is now available. The revised software offers the same publishing functionality as previous Drumlin releases, but will be provided as free software (no software license fees) and free DRM service (no charges for DRM facilities).

Adobe abandons Flashpaper product

2008-09-06T05:31:00.000-07:00

Adobe has just announced that it is abandoning it Flashpaper product, which will hit US sites like Scribd and Docstoc, and European sites like the UK’s edocr and Germany’s Twidox which only recently won funding. edocr currently bases all its document sharing on Flashpaper.

For full article see:
http://uk.techcrunch.com/2008/09/04/startups-in-chaos-as-adobes-flashpaper-discontinues/

LockLizard Unprotector?

2008-08-22T01:06:00.000-07:00

The following message was posted on the Adobe forum recently - whether it is true or simply a fake story it is difficult to judge, as the link site is in Russian!

07:58am Jun 4, 2008 Pacific - We've used LockLizard SafeGuard to secure our company documents but we've noticed that there is an Un-Protector for LockLizard Protected pdc files "LockLizard PDC Un-Protector" which has been released by a pirate group DVT which can extract the raw pdfs from LockLizard protected pdc Files. It's a very bad news for us. We do not know which drm company we can really trust.

Fumblin' with Drumlin

2008-06-08T09:03:00.000-07:00

Read the blog from a new Drumlin customer who ".. quickly discovered that the built in security and the cost of the drm offerings from the major players both left a lot to be desired"... his blog entries describe their requirements and how Drumlin was selected and tailored to meet these.

Secure PDF publishing for Apple Mac

2008-04-29T07:21:00.000-07:00

Drumlin now supports a range of Windows emulators on Apple Mac and other computers. See www.drumlinsecurity.co.uk/applemac.html PDF Security site for more details

A recent discussion thread, shown below, suggests that there remains few if any solutions that provide true PDF handling with security in the Mac OS environment:
http://forum.maccast.com/index.php?showtopic=14868

New Adobe Javascript virus - Acrobat 8.1.1 and earlier

2008-02-15T03:10:00.000-08:00

McAfee Avert Labs is tracking an active exploitation of a recently patched vulnerability in Adobe Acrobat Reader now in the wild. The current vulnerability can be embedded in a PDF file and manipulated through Adobe JavaScript.

The first evidence of such maliciously crafted PDF files was posted to an Italian message forum from an alert administrator who noted that three of his workstations had been infected. Successful exploitation leads to the embedded JavaScript being executed on the victim’s machine. The script attempts to download a Trojan from an IP address in the Netherlands.
This exploit works for both browser-based and email attack vectors and affects the following Adobe products:

Adobe Reader 8.1.1 and earlier versions
Adobe Acrobat Professional, 3D, and Standard 8.1.1 and earlier versions

http://www.avertlabs.com/research/blog/index.php/2008/02/11/another-adobe-pdf-exploit-in-the-wild/

Adobe announces update - users rebel

2008-02-08T10:59:00.000-08:00

Adobe has just announced the latest update to its Acrobat Reader, to address a variety of security and other issues. Judging from the comments on The Register, see:

http://www.theregister.co.uk/2008/02/07/stealth_adobe_reader_update/comments/#c_150380

the huge size of this latest update is just one of the many complaints users have about this software... but to be fair to Adobe, it is very functionally rich, and 'free' (ish)

Joost plans visible on 'secured' PDF

2008-01-31T06:07:00.000-08:00

May 18th 2007

See the article at:
http://mashable.com/2007/05/18/joosts-deal-plans-hidden-in-pdf-presentation/

Market demand

2007-09-21T05:50:00.000-07:00

Jim Minatel's piece accessible at:

http://wroxblog.typepad.com/minatel/2005/05/market_demand_f.html

provides interesting reading on both market demand for e-books and the pitfalls of most current e-book and DRM services - Drumlin seeks to avoid such problems by using the most advanced encryption and tracking facilities available, but we expect unscrupulous people will attempt to break the system if they can.

Users of the service are recommended to take advantage of the free Update option in the software (Help menu item) to keep their reader/publisher software up-to-date and using the latest and strongest encryption levels.

For corporates, requiring very strong controls, additional facilities are available and/or can be added to meet specific needs

Prof Dave Touretzky

2007-08-29T04:06:00.000-07:00

Prof Dave Touretzky of Carnegie Mellon University maintains a web page on Adobe and PDFs http://www.cs.cmu.edu/~dst/Adobe/Gallery,
and via his site, Bryan Gruinyard's white paper on Adobe's PDF security (or lack of it!):
http://www.cs.cmu.edu/~dst/Adobe/Gallery/PDFsecurity.pdf

Security holes in Adobe ActiveX-based PDF readers

2007-08-20T00:50:00.001-07:00

Several so-called secure PDF Readers make use of the Adobe ActiveX control, with some kind of wrapper around this to provide the security and/or offer online (web-based) only reading. These readers are far from secure:

Online readers - If the Adobe Acrobat reader is displayed within a browser, with no toolbars, it may appear that it is secure. Perhaps it has been setup to disable printing and copying from the screen. However, the toolbar can easily be enabled using the + icon at the lower left of the screen (as shown below):

When the toolbar is available the document may be saved to disk, and assuming it has been password encrypted it can then be read, with no restrictions, using one of the free or commercial password removal programs we have mentioned elsewhere. In fact the security is often even weaker than this, because the indivdual pages of the pdf are sent unencrypted, opening the possibility of reading the document from the transmission stream or worse still, by printing the "secure" PDF to a PDF or Image printer device, providing a completely reusable/viewable/printable copy.

Offline readers - these tend to be some form of wrapper, e.g. an executable program that wraps around the ActiveX control, AcroPDF which comes together with Acrobat Reader. Basically, this control is used for opening PDF in browsers. With this control the PDFs can only be loaded from a disk file. Using the ProcessExplorer you can see that several tmp files are created in folder:
C:\Documents and Settings\\Local Settings\Temp. They are called something like: Acr331C.tmp and can be copied and read/converted to a standard PDF. So, these kind of programs are not secure either, whatever their publicity may say.

PDF Security news

2007-07-10T01:52:00.000-07:00

PDF security is a hot topic. Here are some useful items to review

Holes in the Adobe Acrobat Reader were reported by the BBC in early 2007 - see http://news.bbc.co.uk/1/hi/technology/6234181.stm for details

PDF security implemented in Adobe Acrobat (all versions) can be removed using a wide range of free and low cost software - Elcomsoft (http://www.elcomsoft.com/apdfpr.html), a Microsoft Partner software house based in Moscow, were amongst the first to provide such software. As their site states:
"This program (Advanced PDF Password Recovery, or APDFPR) is intended to decrypt password-protected and restricted Adobe Acrobat PDF files, which have "user" password set (required to open/view the file), and/or "owner" password (when the file is only protected from editing, printing etc), i.e. remove the protection and/or break the PDF password. Restricted files are being unprotected instantly, while decryption of files with "open" password may be time-consuming. The program is also able to convert Kinko's Document Format (KDF) files to PDF files (without any protection). "

Welcome to Drumlin

2007-06-29T02:30:00.000-07:00

This blog has been established to allow news on Drumlin usage and views on the product set. Sample applications, documents and support information will be provided