Skip to content
Log In

Microsoft Office System 2013 Security Technical Implementation Guide

Rules, Groups, and Values defined within the XCCDF Benchmark

  • Changing permissions on rights managed content for users must be enforced.

    This setting controls whether Office 2013 users can change permissions for content that is protected with Information Rights Management (IRM). The Information Rights Management feature of Office 20...
    Rule Medium Severity
    Show

  • SRG-APP-000328

    Group
    Show

  • Office must be configured to not allow read with browsers.

    The Windows Rights Management Add-on for Internet Explorer provides a way for users who do not use the 2013 Office release to view, but not alter, files with restricted permissions. By default, IRM...
    Rule Medium Severity
    Show

  • SRG-APP-000340

    Group
    Show

  • SRG-APP-000488

    Group
    Show

  • SRG-APP-000488

    Group
    Show

  • Hyperlink warnings for Office must be configured for use.

    Unsafe hyperlinks are links that might pose a security risk if users click them. Clicking an unsafe link could compromise the security of sensitive information or harm the computer. Links that Offi...
    Rule Medium Severity
    Show

  • SRG-APP-000488

    Group
    Show

  • Document Information panel Beaconing must show UI.

    This policy setting controls whether users see a security warning when they open custom Document Information Panels that contain a web beaconing threat. Web beacons can be used to contact an exter...
    Rule Medium Severity
    Show

  • SRG-APP-000429

    Group
    Show

  • Rights managed Office Open XML files must be protected.

    When Information Rights Management (IRM) is used to restrict access to an Office Open XML document, any metadata associated with the document is not encrypted. This configuration could allow potent...
    Rule Medium Severity
    Show

  • SRG-APP-000429

    Group
    Show

  • Encrypt document properties must be configured for OLE documents.

    This policy setting allows a document's properties to be encrypted. This applies to OLE documents (Office 97-2003 compatible) if the application is configured for CAPI RC4. Disabling this setting...
    Rule Medium Severity
    Show

  • SRG-APP-000456

    Group
    Show

Node 2

siemur/test-space

The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.

Capacity
Modules