NSA: Redacting with Confidence

["Richard M. Smith" <rms () computerbytesman com>]

<outbind://109-00000000B112761FCD9B474A8F2A5DD102D5B05EC4E44201/www.fas.org/
sgp/othergov/dod/nsa-redact.pdf> www.fas.org/sgp/othergov/dod/nsa-redact.pdf


Redacting with Confidence: How to Safely Publish Sanitized Reports Converted
> From Word to PDF 

National Security Agency

Abstract

There are a number of pitfalls for the person attempting to sanitize a Word
document for release.

This paper describes the issue, and gives a step-by-step description of how
to do it with confidence that inappropriate material will not be released.

SUMMARY

Both the Microsoft Word document format (MS Word) and Adobe Portable
Document (PDF) are complex, sophisticated computer data formats. They can
contain many kinds of information such as text, graphics, tables, images,
meta-data, and more all mixed together. The complexity makes them potential
vehicles for exposing information unintentionally, especially when
downgrading or sanitizing classified materials. Although the focus is on MS
Word, the general guidance applies to other word processors and office
tools, such as WordPerfect, PowerPoint, Excel, Star Office, etc.

This document does not address all the issues that can arise when
distributing or downgrading original document formats such as MS Word or MS
PowerPoint. Using original source formats, such as MS Word, for downgrading
can entail exceptional risks; the lengthy and complicated procedures for
mitigating such risks are outside the scope of this note.

_______________________________________________
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.