What Is PDF Encryption? AES, RC4, and How It Works
PDF encryption scrambles file content using AES or RC4 so only authorized viewers can access it. Learn how PDF encryption works, what it protects, and its limitations.
PDF encryption scrambles the content of a PDF file using a symmetric encryption algorithm — either RC4 (older, now deprecated) or AES (current standard) — so that the file cannot be read without the correct decryption key, which is derived from a password. Encryption is what makes a password-protected PDF genuinely secure, rather than just permission-restricted.
How PDF Encryption Actually Works
When you encrypt a PDF with a password, the following happens:
- An encryption key (typically 128 or 256 bits) is derived from the password using a key derivation function
- Each content stream, image data, and string in the PDF is encrypted individually using that key
- The PDF's file structure (object numbers, xref table) remains in plaintext so the reader can locate objects, but the objects themselves are ciphertext
- When you open the PDF and enter the password, the reader derives the same key, decrypts each object on the fly, and renders the content
Without the password, an attacker sees only random bytes in the content streams — they cannot read text, view images, or extract data.
Encryption Algorithms: RC4 vs AES
RC4 was the original PDF encryption algorithm, used in PDF 1.1 through 1.7 with key sizes of 40 and 128 bits. RC4 is now considered cryptographically weak — 40-bit RC4 can be brute-forced in seconds on modern hardware, and 128-bit RC4 has known vulnerabilities. PDF 2.0 formally deprecated RC4.
AES-128 was introduced in PDF 1.6 and is the minimum acceptable standard today. AES-256 (introduced in PDF 1.7, extended revision 6, and standardized in PDF 2.0) is the current best practice. AES-256 is computationally infeasible to brute-force with current technology when using a strong password.
User Password vs Owner Password
PDF supports two separate passwords: the user password (also called "open password") is required to open and view the document. The owner password is required to change security settings and permissions. When both are set, encrypting the file uses both to derive separate key variants. When only an owner password is set — which is the most common configuration for permission-restricted PDFs — the file opens without a password but the content is still encrypted; the user just doesn't need a password because the encryption key is stored in an obfuscated form in the file.
What Encryption Protects — and Doesn't
Encryption protects content at rest and in transit. A properly encrypted PDF cannot be read without the password, even if intercepted over a network or found on a lost device. However, encryption has limits: once a legitimate user opens the PDF, the content is decrypted in memory and can be screenshotted, printed to another PDF, or extracted by screen capture tools. Encryption is a distribution control, not a DRM system.
Checking Encryption Status
In Adobe Acrobat: File → Properties → Security tab shows the encryption level, algorithm, and which operations are permitted. The "Security Method" field will show "Password Security" and the key length if encrypted. In the PDF file itself, the Encryption dictionary in the file trailer specifies the algorithm (/Filter /Standard), key length (/Length), and revision (/R).
Try Protect PDF Now — Free
Browser-based, private, and instant. No account or software required.
Open Protect PDF