Protect the Temporary Directory
XML Export writes temporary files to the temporary directory. These temporary files frequently include the contents of files that XML Export is processing, including decrypted parts of encrypted files. Sensitive information is therefore exposed in the temporary directory, so it is important that only users who are permitted to access this information can access the temporary directory.
By default, XML Export uses the system temporary directory. Many other programs might use this directory, so OpenText recommends that you configure XML Export to use another location, KVCFG_SETTEMPDIRECTORY
flag. When you run XML Export out-of-process, you must make this call to KVXMLConfig() before you call KVXMLStartOOPSession()
You can then protect the configured temporary directory by setting directory permissions to allow access only to sufficiently privileged users.