Adobe 12020596 User Guide - Page 16
Standard Security Handler
View all Adobe 12020596 manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 16 highlights
Adobe Acrobat SDK Adobe® Supplement to the ISO 32000 Syntax (Chapter 3 in PDF Reference) 3.5.2 Standard Security Handler 16 Algorithm 3.1a Encryption of data using the AES algorithm 1. Use the 32-byte file encryption key for the AES-256 symmetric key algorithm, along with the string or stream data to be encrypted. Use the AES algorithm in Cipher Block Chaining (CBC) mode, which requires an initialization vector. The block size parameter is set to 16 bytes, and the initialization vector is a 16-byte random number that is stored as the first 16 bytes of the encrypted stream or string. The output is the encrypted data to be stored in the PDF file. 3.5.2 Standard Security Handler Revise the first paragraph on page 122 to read as follows. If revision version 4 or 5 is specified, the standard security handler supports crypt filters (see Section 3.5.4, "Crypt Filters"). The support is limited to the Identity crypt filter (see Table 3.23) and crypt filters named StdCF whose dictionaries contain a CFM value of V2 or AESV2 and an AuthEvent value of DocOpen. For version 4, the filter CFM value may be V2 (RC4) or AESV2 (AES-128). For version 5, the filter CFM value shall be AESV3 (AES-256). Standard Encryption Dictionary Table 3.19 shows the encryption dictionary entries for the standard security handler (in addition to those in Table 3.18). Add three new entries, OE, UE and Perms, to Table 3.19, and modify the other entries as shown. Unchanged content is shown in gray. TABLE 3.19 Additional encryption dictionary entries for the standard security handler KEY TYPE VALUE R number (Required) A number specifying which revision of the standard security handler should be used to interpret this dictionary: ● 2 if the document is encrypted with a V value less than 2 (see Table 3.18) and does not have any of the access permissions set (by means of the P entry, below) that are designated "Revision 3 or greater" in Table 3.20 ● 3 if the document is encrypted with a V value of 2 or 3, or has any "Revision 3 or greater" access permissions set ● 4 if the document is encrypted with a V value of 4 ● 5 (ExtensionLevel 3) if the document is encrypted with a V value of 5