Changes In Fdf Behavior; Examples Of Prevented Behavior - Adobe 22002484 Manual

Security guide

Hide thumbs Also See for 22002484:

Using manual (380 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

page of 149

/ 149
Contents
Table of Contents
Bookmarks

Table of Contents

Acrobat Family of Products

Security Feature User Guide

8.1.2 Changes in FDF Behavior

FDF files are data exchange files. Like acrobatsecurity files, they help you move certificate, server, and

other data from one machine to another. This data transfer usually involves some mechanism such as data

injection into a PDF form field, installing files, executing a script, and so on. These actions represent a

potential security risk, and in some environments that risk may be unacceptable. Enhanced Security

disables some FDF functionality unless those FDF files originate from a specifically privileged file, folder, or

server.

Table 3

Table 3 Rules for opening a PDF via FDF

FDF

Action

location

Opening a target PDF

local

Opening a target PDF

local

Opening a target PDF

https

server

Opening a target PDF

https

server

Data injection

n/a

Data injection

server

Data injection

server

Data injection

Varied

Script injection

Any

Examples of Prevented Behavior

The following are examples of disallowed actions when Enhanced Security is on:

lists the high level rules defining FDF behavior.

Tip:

If you need to configure your environment for enhanced security or need to troubleshoot

FDF workflows that may not be working as expected, see

PDF

location

8.x behavior

local

PDF opens and no

authentication required.

http server

PDF opens

http server

PDF opens and no

authentication required.

local

Blocked

n/a

Allowed

browser

Allowed

Application Allowed

Varied

Allowed

Any

Allowed

External Content and Document Security

Changes in FDF Behavior

"Enhanced Security" on page

9.x behavior

Same.

User authorization required unless trusted via

enhanced security feature.

Same.

Http hosted FDFs cannot open local files.

Allowed if:

Data retuned via a form submit with



url#FDF.

FDF has no /FDF key.



cross-domain policy permits it.



Allowed if:

Link to PDF contains #FDF=url.



FDF has no /FDF key.



x-domain policy permits it.



Allowed if:

PDF makes EFS POST/GET and FDF sends



data in https response to same PDF.

x-domain policy permits it.



Authorization required if enhanced security is on and

document is not set as a privileged location.

Injection is blocked unless if enhanced security is on

and FDF is not in a privileged location.

95.

Table of Contents

This manual is also suitable for:

Acrobat 9.0 Reader 9.0

Changes In Fdf Behavior; Examples Of Prevented Behavior - Adobe 22002484 Manual

8.1.2 Changes in FDF Behavior

Examples of Prevented Behavior

Related Manuals for Adobe 22002484

Related Content for Adobe 22002484

This manual is also suitable for:

Table of Contents