Planning web page security for images and media

Creating the most secure environment

The first step in securing your project has already commenced because CopySafe is the only solution that can effectively protect your web content from all threats. Under constant development and scrutiny since 1998, CopySafe Web is not only the solution for developers seeking real copy protection, but it can be used on any web site delivered from any web server type at your disposal.

Care needed

The CopySafe Web software includes all the tools that you need for copy protection of almost any content that can be displayed on a web page. The default examples and templates enable you to copy protect images on normal html web pages, however care is needed when customizing the code or you may expose your content. The things to consider:

  • Should protected pages be linked to your main pages?
    Here you need to decide as to whether you want search engines to access the content on these pages, and if you want to allow direct access from the web without first visiting your introductory or menu pages.
  • Should you allow direct access from the web?
    We strongly recommend the benefits of not allowing direct access to protected web pages. By ensuring that your visitors progress to a protected page from an index beforehand, their web browser can be checked for the CopySafe plugin, checked that JavaScript is enabled and that they have the minimum required version of java installed (and enabled).
  • Do not allow folder view!
    Folders on Windows servers are protected by default from folder view where a list of the folder' contents are given if a default index page is missing or wrongly assigned. Only Linux servers if the index page is missing or wrongly assigned, the folder's contents are listed instead. Folders and sites may be set to use index.html, default.htm, default.asp, and so on. To protect from folder view, ensure that you have the appropriately named index file in that folder.
  • The pros and cons of using robots.txt
    While the purpose of the robots.txt file is to prevent search engines from spidering a specific folder, the rule only applies to friendly search engines and most of them are not. Also, anyone on the web can type the link into your robots.txt file and download it or view it in their web browser... getting a list of all the folders that they are not supposed to see.
  • Using a codebase
    JavaScript cannot be served from below the root level of your web site, but all your Java and image class files can be. For more info on using codebases.


By employing Copysafe security levels at full strength you can have a truly secure site at your disposal for deployment to any web site. By using server side scripting such as ASP, CFM, PHP, CGI, etc., or when deployed within a corporate network, you can have the most secure site imaginable!

Depending on your target market, full strength security may not be needed. However if you really want to copy protect anything, please be aware that any trade-off to appease your site visitors, no matter how innocent that you think them, will only expose your content to those who will be the greatest threat... your competitors, plagiarisers, copyright thieves and others who use the web for a source of images and page copy to use in their own projects.

Lesser options

Firstly, digital watermarking is not protective. The digital watermark is merely a tag added to the image file for a note about the author. It is not embedded and not visible when viewing an image. The tag is easily displaced by opening the image in an editor and re-saving. Digital watermarks do have a use by photographers as a means of recognition when when submitting images to ad agencies.

Visible watermarking is an effective means of branding an image but creates an eye sore... the image is visibly impaired and ugly to view, often blocking the focal point of the article being presented. Visible watermarks and copyright notices placed towards the edge of an image can easily be cropped or removed in editing.

Image splicing is futile. While it may hinder mouse saving of the entire image, a save of the page with contents or a simple Printscreen can grab the complete image (same as with screen capture).

Web page and script encryption not only slow down the page download, but is likely to not be supported in all web browsers causing crashes. The simple encryption is easily circumvented as it is based on a well known JavaScript function. A web search will provide the links to many pages where all you have to do is copy'n'paste the code into a web form and click the button for the content to be seen in plain text.

Any solution based entirely on client side scripting cannot be secure. Web content is downloaded to the client browser and it is only with the use of a client side plugin such as Copysafe Web that content can be properly protected. CopySafe Web encrypted images cannot be decrypted away from your web site.


Those with anything worth protecting are a very minute minority. Those who comprise the front against copy protection are the vast majority who selfishly and greedily want everything for free... with no concern for copyright, privacy or the ends endured to produce the content that they steal.

Back in 1998 all developers considered the possibility of copy protection for the internet impossible. Some couldn't even see a use for it, possibly because they didn't posses anything worth protecting. We proved them wrong and also seen competition in this field... a couple of public funded start ups cashing in our developments that soon fell on their face due to the limited marketability of copy protection and the fact that they could only secure sites on a dedicated server, plus several "monkey brains" peddling ineffective and unoriginal solutions to what must be a very naive audience.

Today a web search on copy protection will reveal hundreds of entities promoting image splicing, watermarking, simple image applets, disable right-click and web site encryption scripts as a means of preventing theft. These methods and solutions are not only easily circumvented by anyone who has a little html experience (anyone who has built their own web site and edited html) but they are all plagiarized from each other.


As mentioned previously, the masses do not want copy protection and software publishers are only to willing to cater for their need and make sales. There are currently hundreds of screen capture programs that do little more than one can easily do by using the Printscreen key, a multitude of programs available for downloading other people's web sites in entirety and search engines dedicated to spidering sites for images.

But the worst threat and our greatest challenge has always been the providers of web browsers! To appease the masses and make their browser popular, they have developed tools and functions for stealing and saving anything on the web, which is why every time a new browser version has been released, a new CopySafe Web version has been released.

CopySafe Web licensees pay a one time registration fee and get free software and plugin upgrades for life.

Return to top