Skip to content

Latest commit

 

History

History
89 lines (67 loc) · 3.15 KB

encryption.md

File metadata and controls

89 lines (67 loc) · 3.15 KB

Encryption

The Encryption Module defines how a given resource has been encrypted or obfuscated, and provides relevant information for decryption by a User Agent.

Encrypted

The encrypted key is a Link Property and contains an Encryption Object.

Encryption Object

The Encryption Object has the following keys:

Key Semantics Type Required?
algorithm Identifier of the algorithm used to encrypt the resource. URI Yes
scheme Identifier of the encryption scheme used to encrypt the resource. URI No
profile Identifier of the encryption profile used to encrypt the resource. URI No
compression Compression method used on the resource before encryption. String No
originalLength Original length of the resource in bytes before compression and/or encryption. Integer No

compression

The compression property should only be present if the content has been compressed before encryption. The absence of this property, or the presence of an empty string as a value, indicate that the content was not compressed before encryption.

The only allowed value for the compression property is currently:

Value Semantics
deflate Deflate algorithm, as defined by the Zip specification

LCP Encrypted Resource

Any type of publication can be protected by the Readium LCP DRM.

On each encrypted resource, scheme, profile and algorithm are required and their values are defined by the LCP specification and the definition of the LCP profile which is applied.

Example of an XHTML resource encrypted using LCP in its basic profile, compressed before encryption

{
  "href": "chapter_001.xhtml",
  "type": "application/xhtml+xml",
  "properties": {
    "encrypted": {
      "scheme": "http://readium.org/2014/01/lcp",
      "profile": "http://readium.org/lcp/basic-profile",
      "algorithm": "http://www.w3.org/2001/04/xmlenc#aes256-cbc",
      "compression": "deflate",
      "originalLength": 13810
    }
  }
}

Example of a PDF resource encrypted using LCP in its 1.0 profile

{
  "href": "publication.pdf",
  "type": "application/pdf",
  "properties": {
    "encrypted": {
      "scheme": "http://readium.org/2014/01/lcp",
      "profile": "http://readium.org/lcp/profile-1.0",
      "algorithm": "http://www.w3.org/2001/04/xmlenc#aes256-cbc"
    }
  }
}

Font obfuscation

Font obfuscation is only used in EPUB publications (see the EPUB Profile).

Font obfuscation is indicated by the algorithm property, which MUST take the value http://www.idpf.org/2008/embedding, as defined in EPUB 3.2 - Specifying Obfuscated Resources.

Example of an obfuscated font

{
  "href": "fonts/sandome.obf.ttf",
  "type": "application/vnd.ms-opentype",
  "properties": {
    "encrypted": {
      "algorithm": "http://www.idpf.org/2008/embedding"
    }
  }
}