Security Best Practices
This section outlines some security best practices to consider when using KeyView.
-
Protect the Temporary Directory. Some of the data Export writes to the temporary directory will contain sensitive information, so this location must be protected. See Protect the Temporary Directory.
-
Run Export with Minimal Privileges. In the event that a malicious actor causes Export to behave dangerously, the potential damage is limited if Export is running with fewer privileges. See Run PDF Export with Minimal Privileges.
-
Prevent DLL Pre-loading Attacks. When your application attempts to load the
kvpdf
shared library and it is not found, the Operating System may search various locations, which can lead to a DLL pre-loading attack. For ways to prevent this, see Mitigate Against DLL Pre-Loading. -
Keep Export Up to Date. New Export releases may include security updates, including updates to third-party libraries. See Third-Party Library Upgrade Policy.