This behavior is expected. The FRP file filter driver acts transparently to whatever application is calling the file. By default, differentiation is not made between an FTP application calling a file from the file system or a word processor application.
To address this, Blocked Processes are used in FRP. By listing the application process names as Blocked in the FRP policy, files are not decrypted for these applications when called on. Instead, the files are given in an encrypted state.
NOTES:
- Blocked Processes are not intended to be used for sharing encrypted files (for example, over email or FTP). Although it might work, it is not officially supported.
- For the files to be decrypted when called by the application, you must have access to the encryption key used to encrypt the file. The files can't be decrypted without first being properly authenticated.
