如何保护和加密你的 PDF 文档

PDF files are the standard, universal format people use to share documents of every kind, but what they can actually contain in fact goes far beyond merely the text visible to the naked eye on the surface. Hidden metadata, author information, revision history, and embedded tracking data can all, entirely inadvertently on your part, expose any number of sensitive details that you never intended to share in the first place.

为什么要在分享前保护 PDF

当你从 Word 或 Google Docs 导出 PDF 时,它通常会携带作者的真实姓名和所属机构、创建和编辑时间戳、软件版本,有时还有修订记录或“已解决”的批注——这些在页面上都看不到。对于发给对方的法律、医疗、金融或商业文件来说,这隐藏的一层是实实在在的保密风险。(关于隐藏数据的完整清单、PDF 加密的工作原理以及有据可查的泄露案例,详见 PDF 安全的 Learn 文章。)

五步保护 PDF

  • 1先检查元数据。在你的 PDF 查看器中打开文档属性,查看其中嵌入的作者姓名、机构、创建软件和修改记录——每次分享文件时,这些都会被自动一并传送出去。
  • 2要正确涂黑,绝不能只是看上去涂黑。真正的涂黑会覆盖掉底层文字;只画一个黑色矩形,下面的文字仍可被完整选中和搜索。请使用一款能确凿删除数据、而非只是遮盖数据的工具。
  • 3去除元数据。用 PrivaPDF 这样基于浏览器的工具,在文件发出前删除其中嵌入的作者、机构、软件和修订记录——或从一个全新的查看器中“打印为 PDF”,以丢弃其中的大部分。
  • 4添加 AES-256 密码保护。设置一个打开密码(查看时必需),并在支持的情况下设置一个权限密码,以阻止收件人复制、打印或编辑。
  • 5安全送达。通过与文件本身不同的渠道发送密码(打电话或发消息——绝不要用同一封邮件),然后请收件人确认收到,这样你就可以从云存储和已发送文件夹中删除副本。

PDF 安全最佳实践

When you need to obtain a clean version of a document that contains no metadata whatsoever, always regenerate it using the "Print to PDF" function from within a clean application, rather than taking the easy route of exporting directly from the original source file, which often carries the metadata right along with it. For legally required content redaction, use dedicated tools that can definitively overwrite and erase the content, rather than simply layering some shapes or colored blocks over the text just to muddle through. Be especially cautious and careful with PDF files of unknown origin and uncertain provenance — they may have embedded within them malicious JavaScript code, hidden hyperlinks pointing to tracking URLs, or exploit code crafted specifically to target vulnerabilities in PDF readers. Be sure to confirm that your PDF reader is always kept at the latest updated version; you should know that security vulnerabilities in PDF readers are a very common and dangerous point of entry for cyberattacks.

在浏览器中检查和保护你的 PDF 文档

Try PrivaPDF
为何重要 — 隐私风险PDF 安全与加密:保护您的文档