LibreOffice 6.3 contains a new “redaction” feature. This feature allows editors to quickly redact (= remove) sensitive or confidential information from documents.
In this article, we show the risks of leaking information in documents, and the new redaction feature of LibreOffice.
Always stay in the loop!
Subscribe to our RSS/Atom feeds.
Wrongly redacted means leaked
In general, the process of removing sensitive information from documents is called “sanitization”. “Redaction” is about blacking out sensitive text in documents. As a moviegoer, you likely saw sanitized documents since there are shown in many movies about espionage, secret government activities, and other 007s.
However, even as a private individual you may want to remove sensitive information from your documents. For instance, you are a club member and your task is to write and publish meeting minutes. Such meeting minutes might contain sensitive information like names or locations. While this information needs to be there for internal purposes, you likely want to remove it before you publish documents online. This can go wrong as shown in the screenshot below.
In fact, you leak sensitive information if it is not correctly redacted. In 2014, the New York Times accidentally exposed the name of an NSA agent due to the same error.
The redaction feature of LibreOffice
LibreOffice 6.3 introduced a new feature to help you redacting content. The feature is available in multiple applications of LibreOffice, e.g., in Writer, Calc, and Impress. In the following, we show the feature in Writer.
Step 1: Start the redaction feature
After writing or opening your document, which contains sensitive information, start the redaction feature. The location of it depends on your user interface, for example:
- User Interface Standard Toolbar: Go to “Tools”. There you find “Redact”.
- User Interface Tabbed: Go to “Review”. There you find “Redact”.
Step 2: Select the appropriate tool
After clicking on “redact”, a new window is opened since the redaction tool actually starts LibreOffice Draw, and a small toolbar. Here you can select (from left to right):
- Rectangle Redaction
- Freeform Redaction
- Redacted Export (exports a sanitized version)
- Export Directly as PDF (exports an insecure version for review purposes, see warning in step 4)
To redact content, either use the Rectangle Redaction or Freeform Redaction tool.
Step 3: Redact sensitive information
After selecting the appropriate tool, redact your text. In the screenshot, we used Rectangle Redaction. Normally, these boxes are 50% transparent, and automatically made opaque later.
Step 4: Export your redacted version
Finally, you export your document to a PDF file by choosing either Redacted Export (Black) or Redacted Export (White). Depending on your choice, LibreOffice will change transparent redaction markings to opaque black/white shapes.
The result is a PDF file containing sanitized and compressed images of your text. Keep in mind that there is no selectable text in it.
A simple trick: Redact, print, scan
If you don't know how to redact information or if you don't have the right tools for it, simply highlight black text with black color or add black rectangles over the text. Then, physically print your document, and scan it again. Afterwards, you also get a sanitized document. Don't forget to check your sanitized version again for sensitive information!
Follow us on Mastodon:
If you (or your company) frequently must redact information, define a process for this. Which types of information need to be redacted? How should this information be redacted? How is the sanitized document reviewed?
Raise awareness of wrong redaction and possible data leaks. Moreover, keep in mind that even a correctly sanitized document may leak information unintentionally due to metadata, context of redacted information, and/or the length of redacted passages in the text.
Happy sanitizing, and never forget to check your sanitized version again for sensitive information!
- LibreOffice 6.3: Release Notesexternal link