funsec mailing list archives
NSA: Redacting with Confidence
From: "Richard M. Smith" <rms () computerbytesman com>
Date: Tue, 24 Jan 2006 15:12:32 -0500
<outbind://109-00000000B112761FCD9B474A8F2A5DD102D5B05EC4E44201/www.fas.org/ sgp/othergov/dod/nsa-redact.pdf> www.fas.org/sgp/othergov/dod/nsa-redact.pdf Redacting with Confidence: How to Safely Publish Sanitized Reports Converted
From Word to PDF
National Security Agency Abstract There are a number of pitfalls for the person attempting to sanitize a Word document for release. This paper describes the issue, and gives a step-by-step description of how to do it with confidence that inappropriate material will not be released. SUMMARY Both the Microsoft Word document format (MS Word) and Adobe Portable Document (PDF) are complex, sophisticated computer data formats. They can contain many kinds of information such as text, graphics, tables, images, meta-data, and more all mixed together. The complexity makes them potential vehicles for exposing information unintentionally, especially when downgrading or sanitizing classified materials. Although the focus is on MS Word, the general guidance applies to other word processors and office tools, such as WordPerfect, PowerPoint, Excel, Star Office, etc. This document does not address all the issues that can arise when distributing or downgrading original document formats such as MS Word or MS PowerPoint. Using original source formats, such as MS Word, for downgrading can entail exceptional risks; the lengthy and complicated procedures for mitigating such risks are outside the scope of this note.
_______________________________________________ Fun and Misc security discussion for OT posts. https://linuxbox.org/cgi-bin/mailman/listinfo/funsec Note: funsec is a public and open mailing list.
Current thread:
- NSA: Redacting with Confidence Richard M. Smith (Jan 24)
- Re: NSA: Redacting with Confidence Stephen J. Smoogen (Jan 24)