Technical Whitepapers

In-depth technical documentation of PDF Pro's cryptographic architecture, security model, and privacy engineering. Written for security-conscious users, auditors, and reviewers.

Published: April 16, 2025 Last updated: April 16, 2026 Version: 2.0

Whitepapers Index

  1. End-to-End Encrypted File Transfer
  2. Privacy-First Cryptographic Document Signing

End-to-End Encrypted File Transfer

PDF Pro Whitepaper WP-001 — Architecture and Security Analysis

1.1 Abstract

Content.

1.2 Architecture Overview

Content.

1.3 Encryption: AES-256-GCM via Web Crypto API

Content.

1.4 Key Generation & Transport

Content.

1.5 Data Flow

Content.

1.6 What the Server Stores vs. What It Never Sees

Content.

1.7 Auto-Expiry and Burn-on-Read

Content.

1.8 Threat Model and Mitigations

Content.

1.9 Limitations and Honest Disclosure

Content.

Privacy-First Cryptographic Document Signing

PDF Pro Whitepaper WP-002 — Architecture and Security Analysis

2.1 Abstract

Content.

2.2 Architecture Overview

Content.

2.3 Signing Algorithm: ECDSA P-256 / SHA-256

Content.

2.4 Key Management: Ephemeral vs. Persistent

Content.

2.5 Private Key Protection: PBKDF2 + AES-GCM → IndexedDB

Content.

2.6 Detached Signature Model

Content.

2.7 Signed Payload Schema v1.0

Content.

2.8 Verification Flow

Content.

2.9 Audit Trail: Hash-Chained Events

Content.

2.10 Identity Levels

Content.

2.11 Threat Model

Content.

2.12 Honest Disclosure

Content.