Microsoft Office System 2013 Security Technical Implementation Guide
Rules, Groups, and Values defined within the XCCDF Benchmark
-
SRG-APP-000516
<GroupDescription></GroupDescription>Group -
The Office Telemetry Agent must be configured to obfuscate the file name, file path, and title of Office documents before uploading telemetry data to the shared folder.
<VulnDiscussion>This policy setting configures the Office Telemetry Agent to disguise, or obfuscate, certain file properties that are reporte...Rule Medium Severity -
SRG-APP-000141
<GroupDescription></GroupDescription>Group -
The Opt-In Wizard must be disabled.
<VulnDiscussion>The Opt-in Wizard displays the first time users run a 2013 Microsoft Office application, which allows them to opt into Intern...Rule Medium Severity -
SRG-APP-000141
<GroupDescription></GroupDescription>Group -
The Customer Experience Improvement Program for Office must be disabled.
<VulnDiscussion>When users choose to participate in the Customer Experience Improvement Program (CEIP), Office applications automatically sen...Rule Medium Severity -
SRG-APP-000141
<GroupDescription></GroupDescription>Group -
Automatic receiving of small updates to improve reliability must be disallowed.
<VulnDiscussion>Having access to updates, add-ins, and patches on the Office Online website can help users ensure computers are up to date an...Rule Medium Severity -
SRG-APP-000141
<GroupDescription></GroupDescription>Group -
The Internet Fax Feature must be disabled.
<VulnDiscussion>Excel, PowerPoint, and Word users can use the Internet Fax feature to send documents to fax recipients through an Internet fa...Rule Medium Severity -
SRG-APP-000141
<GroupDescription></GroupDescription>Group -
Online content options must be configured for offline content availability.
<VulnDiscussion>The Office 2013 Help system automatically searches MicrosoftOffice.com for content when a computer is connected to the Intern...Rule Medium Severity -
SRG-APP-000141
<GroupDescription></GroupDescription>Group -
The video informing a user about signing into Office365 must be disabled.
<VulnDiscussion>Office 365 is a subscription-based service which offers access to various Microsoft Office applications. Access to Office 36...Rule Medium Severity -
SRG-APP-000141
<GroupDescription></GroupDescription>Group -
The first-run prompt to sign into Office365 must be disabled.
<VulnDiscussion>Office 365 functionality allows users to provide credentials for accessing Office 365 using either their Microsoft Account, o...Rule Medium Severity -
SRG-APP-000141
<GroupDescription></GroupDescription>Group -
The ability to sign into Office365 must be disabled.
<VulnDiscussion>Office 2013 can be configured to prompt users for credentials to Office365 using either their Microsoft Account or the user I...Rule Medium Severity -
SRG-APP-000141
<GroupDescription></GroupDescription>Group -
The ability to automatically hyperlink screenshots within Word, PowerPoint, Excel and Outlook must be disabled.
<VulnDiscussion>The ability to automatically bind hyperlink to a screenshot inserted through the Insert Screenshot tool introduces the possib...Rule Medium Severity
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.