Quote:
Originally Posted by vaughnmr
I shudder when I think it would be possible for someone to include not only my name, but also my credit card number, in some book I want to buy.
|
This information isn't in the ebook, instead an encryption key is generated from the credit card info and this key is in the ebook. If the key is well designed there is no going backwards to recover your original info from the key.
Adobe's FAQ says:
Quote:
Q: Does the use of a credit card number as the password present any security risks or considerations for end-users?
A: The information that is stored in the protected document and cached on reading systems after encountering an ID/password pair for the first time is a non-reversible one-way hash of these strings. However, because users type these strings into a dialog prompt, they should be alert to potential malware “key logger” programs that attempt to record keystrokes and obtain sensitive information. Hence, typing a credit card number into a PC, smartphone or dedicated reading device is always something that should be approached with caution. Many users frequently type in credit card numbers to buy goods online without incident. Additionally, because the ID and password hash is cached after first use and never again requested, the risk can be considered minor.
|