The BIRT Viewer application ensures that only authenticated users can access the BIRT Viewer application, therefore ensuring only authenticated users can execute BIRT reports.
The inclusion of an additional security measure in form of entitlement checking or authorization checking is not included in the BIRT Viewer application at present. It is critical this is reviewed if any steps are taken to include BIRT content in an externally facing (public facing) client application.