You are viewing limited content. For full access, please sign in.

Question

Question

Laserfiche security issue

Administration
Updated August 27, 2014
asked on May 10, 2013 Show version history

I have a scenario here whereby the customer wants to store their manuals and documents into the repository to allow students to refer to it. The students only have read-only access to view the files. The customer does not want the students to be able to export or copy the files out of Laserfiche.


If we scan it in PDF, they are still able to save it out using a PDF reader. If we choose to scan using TIFF format, the machines the customer use have a limitation of not being able to scan color and multi-page together.

Please advice on how we can cater to the customer's needs with minimal processes for them.

0 0

Answer

APPROVED ANSWER
replied on May 10, 2013 Show version history

This is a difficult request, because if a user has read access to a document, then there isn’t much that is stopping them from making copies of it. Like you mentioned, electronic files such as PDFs can be opened in their native application and saved on the user’s computer. And even if you store the files as TIFF, they can still use screen-capture methods to make copies. My recommendation would be to place watermarks on the pages (using tag watermarks) – that way, even if the student exports the manuals, there will be some sort of indication on the pages that they were not supposed to be exported/distributed to other parties.

 

I should add that, even though your email is titled “Laserfiche security issue,” this is not really a Laserfiche security issue. Laserfiche has very strong security to control who can see what, but once a piece of information is transmitted to a user’s workstation and displayed on the screen, it is out of Laserfiche’s control at that point. I think this is very important to communicate to the customer.

 

0 0

Replies

replied on August 26, 2014

Do you have some solution for this issue

0 0
replied on August 27, 2014

As Presales said, this is not specifically a "Laserfiche security issue" this is a more general problem with applications that allow you to display a document on the user's own computer. To start, you should be using TIFF images and denying users export right.

 

If you are using the desktop Client to view the images and the user does not have the export right, we already automatically disable print screen for those users.

 

If you are using WebLink, this forum thread discusses some ways you can make print screen more difficult for the user, but, like any other web application, you cannot completely prevent a determined user from getting a screen capture of the information.

 

If you use tag watermarks as Presale suggested, your documents can be marked with "Do Not Distribute" or whatever watermark text you choose, ensuring that if the user does manage to store an image of the document, it will be marked clearly as an unauthorized copy of the document.

 

If it is of utmost importance that no copies even with watermarks are distributed, I would recommend using a terminal or kiosk.

0 0
You are not allowed to follow up in this post.

Sign in to reply to this post.

Details
Related Posts
Loading ...