pdf encryption to encrypt pdf

PDF Encryption

What is PDF encryption and how to encrypt PDF documents & files

Protect IP

Encrypt PDF documents without useless passwords:

Stop unauthorized access
Stop sharing and distribution
Strong US Gov strength encryption, DRM and licensing controls

Restrict Use

Set Expiry

Revoke Access

Watermark

Log Use

Comply Law

Benefits

Free Trial & Demo

“Fantastic product… outstanding support.”

“We would recommend Locklizard to others”

“The clear leader for PDF DRM protection”

“Our ebook sales have gone through the roof”

“Simple & secure – protects IPR from theft”

Trusted by:

How to encrypt a PDF file using Safeguard PDF Encryption Software

Encrypting a PDF without Passwords

Encrypting a PDF or multiple PDF files is simple and secure with Safeguard PDF Security.

To encrypt PDF files, right-click on them in Windows File Explorer and select the menu option ‘Make Secure PDF’.

Strong PDF Encryption with DRM controls

Safeguard PDF security takes PDF encryption to the next security level. It encrypts PDFs with US Gov strength AES encryption to prevent unauthorized access, and applies DRM to control what authorized users can do with your PDF files:

stop sharing
stop copying
stop editing and modifying
stop or limit printing
stop screen grabbing
control expiry (how long your PDFs can be used for)
revoke access at any stage
apply dynamic watermarks to identify users
lock PDFs to country and IP locations
log document use

Safeguard provides strong PDF encryption with total document control:

PDFs are locked to individual devices
content is only ever decrypted in memory
there are no passwords to enter or manage, or for users to share or forget

protect pdf file

Is Adobe PDF encryption secure?

Why you do NOT use passwords to encrypt PDF files

users can share passwords and thus ‘protected’ PDFs with others
passwords are easily removed with password recovery software
Adobe PDF permissions (stop copy, print etc.) can be removed without using any tools
once the user has the password they can unprotect the PDF and do what they like with it

“I just wanted to let you know how impressed I am by your PDF security product.

I was looking for a way to protect my GCSE revision books (which I write and sell online) and prevent unauthorised distribution.

The whole system works flawlessly, my customers love it and appreciate the fact that I can alter their order (for example authorising more prints) from my end.

So thanks again for providing such a great PDF encryption product that does exactly what it promises.”

“By using Safeguard PDF DRM we are immediately cutting the costs of distributing by printing and mailing. In that sense the software pays for itself quickly.”

PDF Encryption Articles

Learn more about PDF encryption:

How to encrypt a PDF
PDF Security and Encryption
Encryption is not enough for DRM

Encrypting PDF files

What is encryption and PDF encryption?

Encryption is the use of a mathematical system (algorithm) to make information secret from anyone not authorized to use it. Encryption uses a secret key to scramble information in files so that only those with the correct key can view them. PDF encryption is therefore the encryption of PDF files, the result of which is an encrypted PDF file.

Encryption keys are sometimes taken from passwords, but passwords are a poor choice for encryption keys – see PDF password protection. It does not matter what the strength of the encryption algorithm is if the implementation is not secure.

Why encrypt PDF documents?

There are many reasons why you would want to use PDF encryption.

The information in the PDF document is confidential and only a restricted number of people should be able to see it. This could include training courses, price lists, bid documents, takeover plans, healthcare records, and so on. The information is valuable – you sell it – perhaps a newsletter, or an analyst’s report, or a consulting report or a periodical or a book. You obviously don’t want to give it away!

If you don’t encrypt the PDF file then anyone can read it and the value of your information is lost. But if you are going to encrypt PDF files then you need to use PDF encryption software that uses a reliable encryption method.

Is PDF encryption secure?

PDF encryption prevents those who are not authorized from using the PDF document. But those who are authorized to use it can decrypt it and then do whatever they wish with it – copy it, send it to friends, edit it, print it and so on. In some instances, such as transferring financial data for computer processing, encryption on its own provides all the requirements. But to protect information in published documents you need additional controls to actively prevent a user who is authorized to see the PDF from misusing the document.

DRM controls work in addition to encryption by providing protection once the document has been decrypted. They limit what authorized users can do with a document and prevent them sharing it with others. However, you also need:

a secure method of transferring the key such as public key technology
the ability to lock keys to devices to ensure they cannot be shared with others
decryption of PDF content in memory and not to temporary files so that decrypted content is never made available
to prevent simple ways of grabbing decrypted content such as screen grabbing and printing to file drivers

PDF encryption can be made secure, but it requires:

a strong implementation that does not rely on passwords
that decrypted content is not made available
DRM controls to enforce what can be done with the document once it is decrypted

For more information on extending controls beyond PDF encryption see PDF security and PDF digital rights management.

Is Adobe PDF encryption secure?

Adobe PDF security uses encryption to protect PDFs and allows you to apply permissions to control what a user can do with a document (print or edit it). The PDF is encrypted with a password (the encryption key) but weak passwords (short or non-complex passwords) can be easily removed in seconds with password recovery or removal software.

Many people think that using Adobe AES 256 bit encryption is much stronger than using 128 bit encryption. However the Adobe implementation of 256 bit encryption (introduced in Acrobat 9) uses just one call to verify the password instead of the 71 calls for 128 bit encryption. Brute-force password attacks therefore became much quicker – back in 2008 Elcomsoft said that a single GPU could process 100 million passwords per second. Adobe released an update to resolve the issue using PDF 1.7 Extension Level 8 (Acrobat X and above) which became part of the PDF 2.0 specification. When you encrypt a PDF it is therefore not a good idea to provide backwards compatibility for PDF v9 files (PDF 1.7 Extension Level 3 or below).

PDF permissions (restrictions) can be easily removed regardless of how strong the password is or the encryption algorithm used, and are therefore completely useless – see Removing PDF Passwords.

What PDF encryption algorithm should I use?

The US government approved an algorithm called AES for protecting US government information that is confidential. It has two key lengths, 128 bit and 256 bit (16 or 32 bytes of data). Other algorithms may be available in PDF encryption software but they do not have the recommendation of the US Government.

The PDF 2.0 specification recommends AES 256 bit. However, either key length is perfectly fine – AES 128 bit has a stronger key schedule whereas AES 256 bit is more resitant to brute force attacks. AES 128 bit is faster and more efficient, and cracking AES 128 with a quantum computer would take about 200 times longer than the universe has existed. As they say, size does not always matter – it is what you do with it that counts…

The most important factor is the password length and complexity (a strong password will use multiple unicode characters). Using AES 128 bit with a complex 32 character password is more secure than using AES 256 bit with a complex 16 character password. This is because password crackers attack the password and not the encryption algorithm because they are much easier to break.

However, as mentioned above, even if the PDF encryption software uses AES encryption, if the implementation is not secure then the protection is useless.

Types of PDF Encryption: encrypt PDF with certificate vs password

Password Encryption
PDF password encryption is included with Adobe Acrobat and other PDF creator software. A password is used to encrypt the PDF file. The same password is used to decrypt it.

You can choose the encryption algorithm and strength (key length) in Adobe Acrobat to support backwards compatibility with older versions. However, AES is the most secure.

Encrypting PDF files with a password is not recommended if you want to protect PDF files from unauthorized use and distribution because:
- Passwords can be shared – they have to be sent in readable form so users can copy and forward them
- The password interface has to be exposed so can be readily attacked by password recovery programs – see Removing PDF Passwords
- Strong passwords are difficult to set up and use, so weak passwords are normally used
- If you use different passwords for each PDF document then you have to manage lists of passwords – this can become complicated
- Regardless of how strong the Permissions password used (the password used to restrict PDF document use) it can be easily removed – see Removing PDF Passwords – and therefore provides NO protection
- Once a user has the password they can unprotect the PDF and do what they like with it unless DRM controls have also been used
Certificate Encryption
Certifcate Encryption (Public Key Encryption) is more secure than password encryption.

It is used to:
- protect the secret decryption key, preventing the user or attacker from finding it
- create a digital signature which establishes that the document has not been altered and verifies the sender
Unlike password encryption, the key is not exposed to the user so cannot be attacked. In addition there are no passwords to manage, for users to share with others, or forget.

So if you want to encrypt a PDF for email transmision then certificate encryption is a more secure approach since there is no password to distribute.

However, using certificate encryption requires users to generate a key pair (public and private key) and give other users their public key so they can encrypt PDF files for them. If you are selling PDF files then this is clearly an impractical approach. Certificate encryption is therefore more suited to internal company use where key management systems are in place, such as Certificate Servers. This is the approach taken by Adobe for PDF encryption and used in Adobe LiveCycle Rights Management which provides both password and certificate encryption for the protection of PDF documents.

Passwords or certificates for encryption – which is best?

Certificates are more secure than passwords because they cannot be readily hacked since they consist of long random keys – so it is a much better method of encrypting PDF files if you want to send them securely to others. However you need to have the public key of the user(s) you want to encrypt PDF files for.

Passwords can be a simple way to encrypt PDF files as long as you have a secure means of transmitting the password to others.

However, neither system stops users removing PDF restrictions. Once a PDF file has been successfully opened by the recipient they can do what they want with it. That is why you also need DRM controls to restrict PDF use.

Locklizard PDF DRM software uses public key encryption instead of passwords. This is because if the key can be readily attacked then the DRM controls would be useless. However, rather than using certificates we provide a secure and transparent key exchange mechanism, securely delivering decryption keys to an encrypted keystore that is locked to a user’s device. There is no key management for document Publishers or users to worry about.

Encrypted PDF Files

Once a PDF has been encrypted it should only be possible to decrypt it if the user has the correct decryption key. However, it the PDF has been encrypted with a password then users can share those passwords with others.

This is also true of secure data room systems that require entry of login credentials to gain access to encrypted PDF documents – there is nothing preventing users sharing those credentials with others. In fact secure data rooms are not that secure – they provide only adequate PDF protection since they have a number of security weaknesses including decrypting PDF documents on a cloud server where they could be exposed to hackers.

Encrypted PDF files should only be able to be decrypted on authorized devices (which is why Locklizard lock PDF files to machines) and decryption keys should never be exposed to users so they cannot be shared or attacked (broken by a password recovery system for example). Locklizard provide a secure and transparent key exchange between an authorized user’s device and the licensing server to ensure decryption keys are only made available to our Secure PDF Readers for processing. There are no passwords or login credentials for users to enter. We use our own secure PDF Reader for processing encrypted PDF files so that decryption takes place in memory without the use of insecure temporary files.

How to send encrypted PDF files

Locklizard encrypted PDF files can be distributed just like any other file – send by email, upload to a file sharing site or web site, distribute PDFs securely on USB, etc.

You don’t need to worry about stopping PDF downloads or providing secure or time limited links – it does not matter who downloads encrypted PDF files since they can only be viewed by authorized users.

And unlike browser based sytems, users don’t have to be online to view encrypted PDF documents – encryption and DRM controls are always enforced whether your PDF files are viewed on or offline.

Why Locklizard for PDF Encryption?

PDF Encryption Software – Encrypt PDF files without passwords

Locklizard provides US Gov strength PDF encryption with licensing and DRM controls.

Our DRM PDF Security products enable you to share documents securely without insecure passwords or plug-ins, and enforce access, location, expiry, and usage controls.
Batch encrypt PDF files, automate protection, and add DRM controls using our command line PDF encryption.
Unlike Adobe Permissions which can be easily removed, our DRM controls persistently protect your PDF files and enable you to revoke PDFs at any time regardless of where they are.
Our DRM technology ensures your secure PDF files remain safe no matter where your documents reside. No keys are exposed to users or interfaces and documents are only ever decrypted in memory.
Our easy to use adminsitration system provides simple user and document management and unlike passwords, keys are transparently managed for you.

See our customer testimonials and case studies to see why thousands of organizations use Locklizard PDF security to securely share PDF documents and sell PDF files securely.

	PDF Encryption
	PDF Security
	PDF Digital Rights Management
	PDF Protection
	PDF Password Protection
	PDF Copy Protection
	PDF Lock
	Protected PDF
	Restrict PDF
	PDF Watermarks
	Adobe Content Server
	LiveCycle Rights Management
	Adobe Digital Editions
	PDF Tracking
	PDF Expiry
	Secured PDF
	Secure PDF Forms

	Security Learning Center
	Document Security Papers
	Information Security Glossary
	Regulatory Compliance
	Intellectual Property Theft

PDF Encryption

What is PDF encryption and how to encrypt PDF documents & files

Free Trial & Demo

Trusted by:

How to encrypt a PDF file using Safeguard PDF Encryption Software

Encrypting a PDF without Passwords

Strong PDF Encryption with DRM controls

Is Adobe PDF encryption secure?

Why you do NOT use passwords to encrypt PDF files

Protect your IPR

PDF Encryption Articles

Encrypting PDF files

What is encryption and PDF encryption?

Why encrypt PDF documents?

Is PDF encryption secure?

PDF encryption can be made secure, but it requires:

Is Adobe PDF encryption secure?

What PDF encryption algorithm should I use?

Types of PDF Encryption: encrypt PDF with certificate vs password

Passwords or certificates for encryption – which is best?

Encrypted PDF Files

How to send encrypted PDF files

Why Locklizard for PDF Encryption?

PDF Encryption Software – Encrypt PDF files without passwords